37113278abd6b9d6b428d7988d834294

Sharing

Copy URL Twitter E-mail

General

Target

37113278abd6b9d6b428d7988d834294
Size

175KB
MD5

37113278abd6b9d6b428d7988d834294
SHA1

f3140eaea635972bb5bf1b251103a42c940c182c
SHA256

75efb63d952c831f6863bc36d81fe74b8660743ceda64bbaffd39287cd724987
SHA512

22acbaf3f5a4695c0d9016afd31a72a89e45385b914a21915254afb5f0eada4f41572bc8b15e2e28191f91fb5a55c7fede5e392c653d3f804332c24deaa86b39
SSDEEP

3072:X9qSyoZOkYKJ0Bn9BjF7l5lrYYWm8+pzKgcur1gLFV:pLskYKaBjP/dWm8+pOgcur1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37113278abd6b9d6b428d7988d834294

Files

37113278abd6b9d6b428d7988d834294
.exe windows:4 windows x86 arch:x86

ab479646cc907486597e5f0d312d2ff8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Write
ImageList_DrawEx
ImageList_Destroy

shlwapi

SHDeleteValueA
PathFileExistsA
PathIsDirectoryA
PathGetCharTypeA
SHDeleteKeyA

gdi32

CreateDIBSection
GetCurrentPositionEx
SelectPalette
CreateCompatibleBitmap
CreatePalette
RestoreDC
SetPixel
CopyEnhMetaFileA
CreateBitmap

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA

oleaut32

SysStringLen
RegisterTypeLib
OleLoadPicture

advapi32

RegOpenKeyExA
GetUserNameA

ole32

CoUninitialize
StringFromIID
CoFreeUnusedLibraries
CoTaskMemFree
CoUnmarshalInterface
CoRegisterClassObject
CoCreateGuid

shell32

SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
SHGetDesktopFolder

msvcrt

memcmp
memmove
log10

user32

SetWindowLongA
SystemParametersInfoA
ReleaseCapture
DispatchMessageW
CharLowerA
OffsetRect
DefMDIChildProcA
GetDCEx
CharLowerBuffA
BeginPaint
CheckMenuItem
CreatePopupMenu
DestroyIcon
GetCursor
SetWindowPos
SetClipboardData
RemoveMenu
GetMenuState
SetMenu
GetKeyNameTextA
MessageBeep
GetActiveWindow
DrawIcon
SetScrollInfo
PeekMessageA
MoveWindow
GetMenuStringA
RedrawWindow
wsprintfA
CharToOemA
IsWindowEnabled
GetClassNameA
MapVirtualKeyA
ScreenToClient
DestroyWindow
CharNextW
GetSysColor
TranslateMDISysAccel
GetForegroundWindow
GetCursorPos
EmptyClipboard
RemovePropA
TrackPopupMenu
IsWindowVisible
GetIconInfo
DispatchMessageA
InsertMenuItemA
LoadBitmapA
SetMenuItemInfoA
ReleaseDC
MsgWaitForMultipleObjects
EnumThreadWindows
SetRect
PtInRect
GetMenuItemID
GetScrollInfo
RegisterWindowMessageA
UnhookWindowsHookEx
SendMessageA
OemToCharA
IsChild
UpdateWindow
CreateWindowExA
GetWindow
DrawEdge
DrawMenuBar
CharNextA
DrawTextA
GetDesktopWindow
GetKeyState
InvalidateRect
SetCursor
GetClipboardData
LoadStringA
PostQuitMessage
RegisterClassA
GetKeyboardState
IsRectEmpty
DefWindowProcA
IsDialogMessageW
GetClientRect
KillTimer
GetWindowRect
EnableWindow
SetActiveWindow
IsIconic
MessageBoxA
InsertMenuA
GetMenuItemInfoA
GetSystemMetrics
GetScrollRange
FindWindowA
FrameRect
GetClassLongA
DestroyMenu
PostMessageA
SetWindowPlacement
GetKeyboardLayoutList
CharUpperBuffA
AdjustWindowRectEx
GetDC
UnregisterClassA
CallWindowProcA
EnableMenuItem
ShowScrollBar
SetPropA
GetLastActivePopup
TranslateMessage
GetParent
RegisterClipboardFormatA
GetWindowTextA
WaitMessage
DrawAnimatedRects
GetSystemMenu
GetScrollPos
GetCapture
IsZoomed

kernel32

VirtualAlloc
ExitThread
WaitForSingleObject
LoadLibraryExA
FreeLibrary
GetProcAddress
GetCommandLineA
GetModuleHandleA
ExitProcess
GetLocalTime
GetSystemDefaultLangID
LocalFree

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

CODE
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 139KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab479646cc907486597e5f0d312d2ff8

Headers

File Characteristics

Imports

comctl32

shlwapi

gdi32

comdlg32

oleaut32

advapi32

ole32

shell32

msvcrt

user32

kernel32

version

Sections

CODE Size: 31KB - Virtual size: 30KB

.edata Size: 512B - Virtual size: 444B

.idata Size: 139KB - Virtual size: 199KB

.bss Size: 1KB - Virtual size: 1KB

DATA Size: 1KB - Virtual size: 1KB

CODE
Size: 31KB - Virtual size: 30KB

.edata
Size: 512B - Virtual size: 444B

.idata
Size: 139KB - Virtual size: 199KB

.bss
Size: 1KB - Virtual size: 1KB

DATA
Size: 1KB - Virtual size: 1KB