3770022c0cb3be93e1cb415e82bed2e9

Sharing

Copy URL

Twitter E-mail

General

Target

3770022c0cb3be93e1cb415e82bed2e9
Size

84KB
MD5

3770022c0cb3be93e1cb415e82bed2e9
SHA1

4af986b89784d544513df3304013ac509344e642
SHA256

50f16150c1bd8bf7597973f098905c1cd1c79182cb52a99b114ab917ab9ae047
SHA512

45c3761ac6ed19426327508e7ac3819284704fb857687d401cdd618c87267b2a186263cdc5e3ede6025abe109c423802f930797c95c12de1b7e4bac32811ace0
SSDEEP

1536:LZXIITaO1l9BOBaqCxf2o3ZW3q2yDGatBLxMgVB:xh9qtXSBLSI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3770022c0cb3be93e1cb415e82bed2e9

Files

3770022c0cb3be93e1cb415e82bed2e9
.exe windows:4 windows x86 arch:x86

53e4d80b8f2edc278ee60a30380c283f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegFlushKey
RegDeleteKeyA
RegReplaceKeyW
RegDeleteValueA
RegCreateKeyExW
RegQueryValueExW
RegQueryInfoKeyW
RegReplaceKeyA
RegQueryValueA
RegDeleteValueW
RegOpenKeyA
RegQueryValueW
RegEnumKeyA
RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyExA
RegLoadKeyW
RegGetKeySecurity
RegEnumKeyExW

comctl32

ImageList_AddMasked
ImageList_Read
ImageList_AddIcon
ImageList_DrawEx
ImageList_BeginDrag
ImageList_GetImageRect
ImageList_LoadImage
ImageList_Create
ImageList_LoadImageW
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DrawIndirect
ImageList_Destroy
ImageList_Copy
ImageList_EndDrag
ImageList_GetIcon
ImageList_DragLeave
ImageList_Replace
ImageList_LoadImageA

user32

DrawIcon
EndDialog
AlignRects
DrawTextA
AppendMenuW
GetFocus
LoadCursorA
GetWindowTextA
DialogBoxParamW
InsertMenuA
CreateIcon
DrawIconEx
GetWindowTextLengthA
CopyRect
GetMenu
DrawTextW
CopyImage

kernel32

SetLastError
GetLastError
ReadFile
GetCPInfo
DeleteFileA
CopyFileA
FindAtomA
CreateThread
GetConsoleMode
OpenFile
GetFileTime
CopyFileW
ReadConsoleA
GetCommandLineA
Sleep
GlobalFree
GetFileSize
OpenFileMappingA
CopyFileExA
WriteFile

gdi32

AddFontResourceExA
GetBitmapBits
GetPixel
GetDCOrgEx
AddFontResourceExW
CloseMetaFile
CopyMetaFileA
AbortPath
ExtTextOutA
GetPixel
GetClipBox
CloseFigure
DeleteObject
AddFontResourceTracking
AddFontResourceA
SetTextColor

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 64KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53e4d80b8f2edc278ee60a30380c283f

Headers

File Characteristics

Imports

advapi32

comctl32

user32

kernel32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 112KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 112KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB