3a2687840ec72aa73236c5f3c2d2159a

Sharing

Copy URL Twitter E-mail

General

Target

3a2687840ec72aa73236c5f3c2d2159a
Size

125KB
MD5

3a2687840ec72aa73236c5f3c2d2159a
SHA1

b285dee6ef3b02979b60acb50abf93ac61e23f27
SHA256

d002abcd0c9ca0bc2c6d78d65a4fe7fc2a725ce41f8c886b05633c0c673f9e82
SHA512

c58e23d5276278e7c37993188afe03252252af52455a433b4c3c1e34146a0386f04d200a48eb623bdba5500ae81ece2b1330bf2ba325ddf15b2edbc2735f3d00
SSDEEP

1536:ng2LsWbDfcyZ+i+dgCEMZndVZnG59uAs8MS49yKOFGEmzH4BdxDUxh1kZe:nbDfTci+GClbl2S8SyKQmzYBdxDE1Se

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a2687840ec72aa73236c5f3c2d2159a

Files

3a2687840ec72aa73236c5f3c2d2159a
.exe windows:4 windows x86 arch:x86

3837d957ba56da38cadc64be5235fcf1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
GetFocus
AppendMenuW
GetCursor
LoadMenuA
DialogBoxParamW
DialogBoxParamA
GetWindowTextLengthA
DrawIconEx
GetMenu
IsMenu
LoadCursorA
CopyImage
CopyIcon
BlockInput
AppendMenuA
GetDlgItem
DrawTextW
AlignRects
DrawIcon
EndDialog
CloseWindow
DialogBoxParamW
LoadMenuA
BlockInput
GetWindowTextA
GetDC
LoadCursorA
DrawTextA
IsWindow
CopyIcon
AppendMenuA
CalcMenuBar
IsMenu
CreateIcon
DrawIconEx

advapi32

RegReplaceKeyW
RegEnumKeyExW
RegOpenKeyA
RegGetKeySecurity
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueW
RegOpenKeyExW
RegCreateKeyW
RegOpenKeyExA
RegEnumValueA
RegEnumKeyA
RegDeleteValueW
RegQueryValueExA
RegQueryInfoKeyA
RegEnumKeyW
RegQueryValueExW

kernel32

GetModuleFileNameA
GetModuleHandleA
GetFileAttributesA
SetLastError
lstrlenA
GetFileSize
GetCommandLineA
WideCharToMultiByte
GetCPInfo
lstrcpyA
FreeLibrary
CloseHandle
DeleteFileA
GetStringTypeA
GlobalFree
HeapFree
GetDateFormatA
lstrcmpA
Sleep

comctl32

ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_DrawEx
ImageList_Copy
ImageList_Create
ImageList_EndDrag
ImageList_BeginDrag
ImageList_GetIcon
ImageList_GetDragImage
ImageList_Draw
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Read
ImageList_LoadImageW
ImageList_DragShowNolock
ImageList_Replace
ImageList_GetIconSize
ImageList_Merge

Sections

.vaywpz
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.BDFuCN
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CsuqUq
Size: 6KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ftrhiw
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3837d957ba56da38cadc64be5235fcf1

Headers

File Characteristics

Imports

user32

advapi32

kernel32

comctl32

Sections

.vaywpz Size: 16KB - Virtual size: 15KB

.BDFuCN Size: 96KB - Virtual size: 95KB

.CsuqUq Size: 6KB - Virtual size: 151KB

.ftrhiw Size: 3KB - Virtual size: 3KB

.vaywpz
Size: 16KB - Virtual size: 15KB

.BDFuCN
Size: 96KB - Virtual size: 95KB

.CsuqUq
Size: 6KB - Virtual size: 151KB

.ftrhiw
Size: 3KB - Virtual size: 3KB