2ad1486fb44a3bb036634066544d1bf5

Sharing

Copy URL Twitter E-mail

General

Target

2ad1486fb44a3bb036634066544d1bf5
Size

142KB
MD5

2ad1486fb44a3bb036634066544d1bf5
SHA1

ef5135fbc65e0c6b68c80a06d5dc60c47f5d3277
SHA256

441f939148df7d82d136666522aa535ea9ba46c44240c4f43caa8cb954d4f187
SHA512

e492f31ab8f9856f15874fe3f309f3849fe461b2c8061a9a832f6d00918b0c2b40f18e61174bb3146ecacb2ce7d5e6d39a9a4ea904544419596e8d32b26ff70c
SSDEEP

3072:9G+Fh/ClmCciYIshdTibPkXTLnWsMwpbjEx5XzoIx8W3z7:3KciYIshdTOkXTLWOpbmJr3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ad1486fb44a3bb036634066544d1bf5

Files

2ad1486fb44a3bb036634066544d1bf5
.exe windows:5 windows x86 arch:x86

8c571cc27a610baa4bca062b7cf0f5d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlGetPartW

comctl32

ImageList_Write
ImageList_GetIconSize
PropertySheetA
ImageList_AddMasked
CreatePropertySheetPageW
PropertySheetW

msvcrt

fwrite
_controlfp
__set_app_type
strpbrk
wcstod
__p__fmode
mktime
strtoul
fputc
gmtime
wcscspn
putc
iswxdigit
fgets
remove
perror
fclose
__p__commode
_amsg_exit
_initterm
towlower
qsort
iswprint
_ismbblead
strerror
_XcptFilter
_exit
getc
system
_vsnwprintf
_cexit
isspace
isupper
srand
puts
__setusermatherr
ungetc
vsprintf
atoi
isalnum
__getmainargs
wcsstr
isxdigit
clock
towupper
realloc
fread
strstr

kernel32

CreatePipe
CompareStringW
GetSystemDirectoryA
GetLongPathNameW
GetOverlappedResult
RaiseException
EnumResourceNamesA
AreFileApisANSI
CompareStringA
GetFullPathNameW
FreeLibrary
GetCompressedFileSizeW
LockResource
FileTimeToLocalFileTime
SetEndOfFile
GetTickCount
TransactNamedPipe
CreateFileMappingW
FindFirstFileA
GlobalFlags
lstrcatA
SearchPathW
SetFileApisToOEM
VirtualQuery
GlobalSize
LCMapStringA
MapViewOfFile
VerSetConditionMask
IsDBCSLeadByteEx
CreateDirectoryA
MoveFileA
EscapeCommFunction
lstrcatW
ExitThread
GetStdHandle
IsValidLanguageGroup
GetComputerNameExW
DeleteAtom
lstrcpyW
GetModuleHandleW
FileTimeToDosDateTime
SetTimerQueueTimer
FindNextFileA
GetModuleFileNameA
DuplicateHandle
CompareFileTime
LockFile
GlobalGetAtomNameA
EnumResourceTypesA
AddAtomW
GetModuleHandleA
GetSystemTimeAdjustment
SetCurrentDirectoryA
SetThreadLocale
GetWindowsDirectoryW
ReleaseMutex

user32

GrayStringW
LookupIconIdFromDirectory
SetActiveWindow
SendDlgItemMessageW
SendDlgItemMessageA
GetClassLongW
SetWindowPos
SetWindowPlacement
SetWindowRgn
DrawStateW
SetWindowTextW
SwitchToThisWindow
SystemParametersInfoA
DrawEdge
CharLowerW
MessageBoxA
IsDialogMessageA
ShowWindowAsync
EndPaint
ClipCursor
IsWindow
IsZoomed
SetMenuItemInfoW
GetMessageA
RemoveMenu
IsCharAlphaA
InsertMenuW
ShowWindow
GetClientRect
IsChild
UpdateWindow
wsprintfW
BringWindowToTop
IsWindowVisible
GetClassInfoExW
GetScrollPos
IsCharUpperA
DefFrameProcW
SetDlgItemTextA
LoadImageW
CheckDlgButton
SetMenuDefaultItem
CheckMenuItem
LoadAcceleratorsA
CreateAcceleratorTableW
GetDlgCtrlID
GetMenuItemID
RemovePropW
GetMessageTime
SetDlgItemTextW
GetUserObjectInformationA
IsDlgButtonChecked
RegisterHotKey
GetMessagePos
GetMessageW
PostMessageA
MessageBoxExA
BeginDeferWindowPos
IntersectRect
DrawTextW
ShowCaret
keybd_event
GetKeyboardType
GetWindowTextW
GetParent
GetCursorPos
SetCaretPos
GetDlgItemTextW
SendMessageTimeoutA
OemToCharA
DragObject
SetWindowLongA
SetCursorPos
SendInput
DefDlgProcW
GetClassLongA
GetWindowLongA
IsWindowEnabled
GetClassInfoA
SendMessageW
FindWindowExA
IsCharLowerA
InvertRect
MoveWindow
GetMenuItemInfoW
DrawFocusRect
FindWindowW
SetScrollInfo
PostQuitMessage
GetWindowRect
DrawTextExW
GetWindowPlacement
CharLowerA
AppendMenuW
CheckMenuRadioItem
CreateDialogParamW
SetPropW
LoadIconW
AdjustWindowRectEx
wvsprintfA
TranslateAcceleratorW
SetFocus
SendNotifyMessageW
CharUpperW
GetCaretPos
GetMenuCheckMarkDimensions
DestroyMenu
SetMenu
DestroyCursor
CharNextA
DrawStateA
SetWindowTextA
GetDlgItem
DrawFrameControl
CheckRadioButton
ReleaseDC
RegisterClassExA
LoadIconA

Exports

Exports

?CreatDlgItemList@@YGKPBDDPAX:O

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cexp
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.regs
Size: 1KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.citab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$dbug
Size: 512B - Virtual size: 117B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lime
Size: 1024B - Virtual size: 767B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdat
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c571cc27a610baa4bca062b7cf0f5d2

Headers

File Characteristics

Imports

shlwapi

comctl32

msvcrt

kernel32

user32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 22KB

.cexp Size: 512B - Virtual size: 93B

.regs Size: 1KB - Virtual size: 122KB

.data Size: 2KB - Virtual size: 1KB

.citab Size: 6KB - Virtual size: 5KB

.$dbug Size: 512B - Virtual size: 117B

.lime Size: 1024B - Virtual size: 767B

.tdat Size: 1024B - Virtual size: 704B

.rsrc Size: 105KB - Virtual size: 105KB

.text
Size: 23KB - Virtual size: 22KB

.cexp
Size: 512B - Virtual size: 93B

.regs
Size: 1KB - Virtual size: 122KB

.data
Size: 2KB - Virtual size: 1KB

.citab
Size: 6KB - Virtual size: 5KB

.$dbug
Size: 512B - Virtual size: 117B

.lime
Size: 1024B - Virtual size: 767B

.tdat
Size: 1024B - Virtual size: 704B

.rsrc
Size: 105KB - Virtual size: 105KB