37edbd0b78ce10af94eb7e388e897bda

Sharing

Copy URL Twitter E-mail

General

Target

37edbd0b78ce10af94eb7e388e897bda
Size

340KB
MD5

37edbd0b78ce10af94eb7e388e897bda
SHA1

76d807ebdda9f4b3a72f395de41923c98601018d
SHA256

c9d00398321548180862ccd04ccbccac1fe3682241c4cd9f648e4885ad737117
SHA512

db3b1886cf3c4afc31361f64689a37ef19cf82403ea8150b704018fc3f36d8770112bd3d20601e5709a5b7b65b5832b92779d4d7069d7a846765ded34f3ae78e
SSDEEP

6144:n0Fx2okmd//bfJ58VOHfF3Fq3LacQ1KFY41w57NR+sVLxAl1uzAZZBMpBG:nO2BI/LJ57W+cQ+whz+4Al0AX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37edbd0b78ce10af94eb7e388e897bda

Files

37edbd0b78ce10af94eb7e388e897bda
.exe windows:4 windows x86 arch:x86

65270462fa68e0ea34180ab86c45a5aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegNotifyChangeKeyValue
RegQueryInfoKeyW
CryptEnumProvidersW

gdi32

AbortPath
GetRasterizerCaps
GetMetaFileA
GetTextExtentPoint32W
CreateScalableFontResourceW
GetMetaFileW
AnimatePalette
EnumICMProfilesW
FixBrushOrgEx
CancelDC
GetCharWidthFloatA
PlayEnhMetaFile
DPtoLP
GetMiterLimit
GetTextFaceW
PlayEnhMetaFileRecord
GetFontLanguageInfo
GetColorSpace
CreatePenIndirect
SetSystemPaletteUse
CreatePolygonRgn
ModifyWorldTransform
CreateEllipticRgnIndirect
CreateMetaFileW

kernel32

SetStdHandle
GetCurrentProcess
FreeLibrary
GetConsoleCP
GetTimeZoneInformation
GetFileAttributesA
GetModuleHandleA
VirtualQuery
IsDebuggerPresent
GetCurrentThreadId
HeapReAlloc
OpenMutexA
CloseHandle
GetCurrencyFormatW
HeapAlloc
SetLastError
TlsFree
GetStringTypeA
LoadLibraryA
GetLocaleInfoW
InterlockedExchange
GetCurrentProcessId
TerminateProcess
GetCommandLineW
InterlockedDecrement
ReadFile
IsValidLocale
lstrcat
SetEnvironmentVariableA
GetProcAddress
GetModuleFileNameW
CompareStringW
FileTimeToSystemTime
EnumSystemLocalesA
MultiByteToWideChar
GetEnvironmentStringsW
SetUnhandledExceptionFilter
TlsGetValue
WriteFile
GetCPInfo
GetTempPathA
SetConsoleCtrlHandler
GetCommandLineA
FindNextFileW
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
TlsSetValue
CreateFileA
GetStdHandle
LCMapStringW
GetACP
RtlUnwind
GetModuleHandleW
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentThread
GetLocaleInfoA
GetUserDefaultLCID
FlushFileBuffers
HeapDestroy
WideCharToMultiByte
GetFullPathNameA
InterlockedIncrement
FindFirstFileExW
HeapFree
GetStartupInfoW
WriteConsoleW
WriteConsoleA
Sleep
TlsAlloc
GetVolumeInformationA
GetDateFormatA
InitializeCriticalSectionAndSpinCount
GetFileType
IsValidCodePage
GetTimeFormatA
GetOEMCP
LCMapStringA
CreateMutexA
ExitProcess
HeapSize
VirtualLock
DeleteCriticalSection
GetTickCount
GetConsoleOutputCP
SetFilePointer
UnhandledExceptionFilter
QueryPerformanceCounter
GetConsoleMode
VirtualFree
VirtualAlloc
GetStringTypeW
HeapCreate
GetLastError
CompareStringA
GetStartupInfoA

comdlg32

FindTextA

comctl32

DrawStatusTextA
DrawInsert
ImageList_LoadImage
ImageList_GetImageRect
DrawStatusTextW
ImageList_LoadImageA
ImageList_GetFlags
DrawStatusText
ImageList_Copy
CreateStatusWindowA
ImageList_GetDragImage
ImageList_DragShowNolock
CreatePropertySheetPage
ImageList_SetOverlayImage
ImageList_Add
ImageList_EndDrag
ImageList_SetIconSize
ImageList_SetImageCount
InitMUILanguage
ImageList_Duplicate
ImageList_DragMove
InitCommonControlsEx
CreateStatusWindowW
ImageList_ReplaceIcon

user32

DeleteMenu
SetProcessDefaultLayout
BringWindowToTop
GetDialogBaseUnits
GetMenu
InsertMenuW
SetWindowTextA
InvertRect
InflateRect
ReleaseCapture
DdeFreeDataHandle
SetScrollPos
SetScrollRange
SetCursorPos
SetClassLongW
OpenDesktopW
OpenWindowStationW
GetActiveWindow
CharNextA
SetWindowTextW
RegisterClassA
GetWindowRect
DlgDirListW
LoadCursorA
GetMenuStringW
CheckRadioButton
DestroyWindow
GetDlgCtrlID
DefWindowProcW
GetIconInfo
IsDialogMessage
IsCharLowerA
PtInRect
SetWindowLongW
EnumWindowStationsW
TileChildWindows
CreateAcceleratorTableW
DlgDirSelectComboBoxExA
SetDlgItemInt
SetDlgItemTextA
AdjustWindowRect
MessageBoxExW
DdeClientTransaction
TrackMouseEvent
PostThreadMessageW
UnpackDDElParam
LoadBitmapA
WaitForInputIdle
PeekMessageW
IsDialogMessageA
wsprintfA
DlgDirSelectComboBoxExW
SendDlgItemMessageW
OpenClipboard
CharLowerBuffA
WINNLSGetIMEHotkey
TranslateMDISysAccel
MapVirtualKeyExW
SystemParametersInfoW
GetWindowRgn
ChildWindowFromPoint
EnumDisplaySettingsExW
DdeGetData
DdeCreateStringHandleA
SendIMEMessageExW
DrawFocusRect
MessageBoxIndirectW
BroadcastSystemMessage
AppendMenuW
GetKeyNameTextA
IsClipboardFormatAvailable
ScrollWindow
CallMsgFilter
GrayStringA
CopyRect
UnregisterClassA
DdeReconnect
LoadIconW
GetMenuItemInfoA
RemovePropW
OemToCharA
IsMenu
DdeSetQualityOfService
DrawTextExA
CreateWindowExA
SetCursor
CallMsgFilterW
CharToOemBuffA
SendMessageTimeoutW
MessageBoxA
GetTabbedTextExtentA
SetSysColors
DrawIconEx
GetTabbedTextExtentW
EnumDisplaySettingsA
SetMenuItemBitmaps
RegisterClassExA
GetDoubleClickTime
IsDialogMessageW
GetMenuInfo
ShowWindow
AnyPopup

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65270462fa68e0ea34180ab86c45a5aa

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

comdlg32

comctl32

user32

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 100KB - Virtual size: 109KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 100KB - Virtual size: 109KB

.rsrc
Size: 28KB - Virtual size: 25KB