37930e6b5a46ed9742f89cdb47dd9dfc

Sharing

Copy URL Twitter E-mail

General

Target

37930e6b5a46ed9742f89cdb47dd9dfc
Size

47KB
MD5

37930e6b5a46ed9742f89cdb47dd9dfc
SHA1

b07e18712aa29bead207a1168cfad41e3c139163
SHA256

8193f3588a4bfd184a1f5708d097a9c6f2a4cb692f3d31c3d630c3b9d2ce3a37
SHA512

0b1d30d5c3d56814a452282defda3b7d7c2f9ccf5766f71f5d065376f8799e6ee0427f2938f954a7ce9aaa2bf906d3f6a706b7e3668c33363692b5fc37408697
SSDEEP

768:/mLgKaCcnMg2T0aYfwWA54mwfdC6gaV3I0E7y:/JnDnMg2TOs4mO9VpE7y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37930e6b5a46ed9742f89cdb47dd9dfc

Files

37930e6b5a46ed9742f89cdb47dd9dfc
.exe windows:5 windows x86 arch:x86

af49253540d038e3b8de269e0a8e36f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageTimeoutW
DialogBoxParamW
DefDlgProcW
EnableScrollBar
FindWindowExA
SetDlgItemTextA
SetWindowRgn
CharNextExA
GetMonitorInfoW
GrayStringW
GetWindowTextA
KillTimer
GetWindowLongW
PostThreadMessageA
LoadBitmapW
CascadeWindows
GetWindowLongA
ChildWindowFromPointEx
GetWindowTextW
GetMessagePos
GetMenuItemID
CreatePopupMenu
SetScrollPos
SetCaretPos
IsDialogMessageA
InsertMenuItemW
CheckDlgButton
GetFocus
IntersectRect
SetFocus

kernel32

lstrcatA
CreateMailslotW
CallNamedPipeW
EscapeCommFunction
GetStartupInfoW
OpenFileMappingA
SetMailslotInfo
CopyFileW
ConnectNamedPipe
GetCurrentProcessId
GlobalGetAtomNameW
GetTempPathA
GetOverlappedResult
GlobalDeleteAtom
HeapAlloc
lstrcpyA
HeapValidate

comdlg32

GetFileTitleW
GetOpenFileNameA
ChooseFontW

ntdll

memset

gdi32

GetTextFaceW
SetViewportExtEx
RectInRegion
GetTextExtentPointW
SetBitmapBits
SetStretchBltMode
OffsetViewportOrgEx
CreateRectRgnIndirect
RealizePalette
CreateRoundRectRgn
GetROP2
SetDIBColorTable
GetTextExtentExPointW

shlwapi

UrlGetPartW
ColorRGBToHLS
StrSpnW

Exports

Exports

?BMFRSplkkjca_kvyunZ__R@@YGEEPAF@Z

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af49253540d038e3b8de269e0a8e36f4

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

ntdll

gdi32

shlwapi

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 26KB

.idata Size: 3KB - Virtual size: 2KB

.data Size: 6KB - Virtual size: 38KB

.rsrc Size: 8KB - Virtual size: 12KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 26KB

.idata
Size: 3KB - Virtual size: 2KB

.data
Size: 6KB - Virtual size: 38KB

.rsrc
Size: 8KB - Virtual size: 12KB

.reloc
Size: 1KB - Virtual size: 1KB