3a368e2e807266f62546e712f39ba738

Sharing

Copy URL Twitter E-mail

General

Target

3a368e2e807266f62546e712f39ba738
Size

144KB
MD5

3a368e2e807266f62546e712f39ba738
SHA1

5f89df779ffa121617a4daea51724b3c1d9c41c2
SHA256

aceae8afa673a8c529bebf54e290f933d42046d867907430967c531dfb62b3ff
SHA512

519d2bdcc59c9a710f3f093e2930c726fae4d2b9731d1d56ea54fb5d989710754d095eedcfc956557f8ba5a6b168e393d3973588751140937a888c85271adcc1
SSDEEP

3072:1h/RECs6u5fMyooXWwyHXgj29qxNZqXPSAWZVl89cpRC64Z/Q2EzCR:1h/R+jtXWr3e2JXPXWZVa9mRJD2Ez8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a368e2e807266f62546e712f39ba738

Files

3a368e2e807266f62546e712f39ba738
.exe windows:5 windows x86 arch:x86

247d92f215ab8ad17dc7d4e3735ceb0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

CommDlgExtendedError
GetOpenFileNameW
ChooseColorW
PrintDlgW
GetSaveFileNameA

user32

GetForegroundWindow
LoadIconW
UpdateWindow
GetNextDlgTabItem
GetAsyncKeyState
EnableScrollBar
TranslateAcceleratorA
DrawMenuBar
InsertMenuW
GetMessageTime
RemovePropW
DispatchMessageA
LoadMenuW
ShowOwnedPopups
ChangeMenuW
SetActiveWindow
ShowCursor
SystemParametersInfoW
LoadStringA
GetScrollRange
GetClassInfoExW
IsRectEmpty
DrawTextW
LoadAcceleratorsA
SendMessageW
ShowScrollBar
LoadIconA
GetKeyboardType
GetMenuItemCount
IsDlgButtonChecked
FindWindowExW
KillTimer
ShowWindow
InvalidateRect
GetSystemMetrics
FillRect
ToUnicodeEx
IsCharUpperA
IsZoomed
CharToOemBuffA
GetMenu
CallWindowProcW
DialogBoxIndirectParamW
DrawStateW
PostThreadMessageW
GetKeyNameTextW
CharPrevA
GetMessageW
GetUserObjectInformationA
FrameRect
ReplyMessage
SendMessageA
LoadCursorW
AdjustWindowRect
IsCharAlphaW
GetDlgCtrlID
GetWindowDC
OpenInputDesktop
GetMenuStringA
CreateIconFromResource
SendMessageTimeoutA
DrawTextExW
SetScrollPos
DrawFocusRect
DestroyMenu
CascadeWindows
OemToCharBuffA
GetClassLongW
GetClientRect
SetDlgItemTextA
CreateDialogIndirectParamW
SystemParametersInfoA
PostQuitMessage
WaitMessage
ClientToScreen
GetUpdateRect
InflateRect
DialogBoxIndirectParamA
IsCharLowerA
GetDlgItemInt
PostThreadMessageA
MessageBoxExA
GetDC
ValidateRect
GetDlgItemTextA
DialogBoxParamW
RegisterClassW
SetWindowPos
GetWindowTextLengthW
CharNextExA
CheckDlgButton
GetDoubleClickTime
EqualRect
FindWindowExA
IsCharAlphaNumericW
DrawEdge
InSendMessageEx
GetAltTabInfoA
SetPropW
GetClassLongA
GetKeyState
TrackPopupMenuEx
GetWindowRect
DispatchMessageW
SetCaretPos
GetDlgItemTextW
GetClassInfoA
SetRectEmpty
GetWindowTextW
GetMenuState
GetKeyboardLayout
CharUpperBuffA
OpenIcon
SetWindowTextW
TranslateMessage
SetRect
GetCaretPos
OpenDesktopW
ChildWindowFromPoint
CreateCaret
GetClipCursor
MessageBoxW
PostMessageA

shlwapi

UrlIsA

kernel32

LockResource
GlobalLock
GetVersionExW
DuplicateHandle
GetProcessHeap
LoadResource
LCMapStringW
HeapReAlloc
GetBinaryTypeA
FileTimeToDosDateTime
CreateSemaphoreW
GetSystemWindowsDirectoryW
GetSystemDefaultUILanguage
TlsSetValue
HeapFree
ReadFile
RemoveDirectoryA
GetShortPathNameA
GlobalGetAtomNameW
GlobalSize
HeapAlloc
FlushViewOfFile
CreateNamedPipeW
UnhandledExceptionFilter
LocalFree
GetFileAttributesExW
GetCommandLineW
IsDBCSLeadByteEx
IsBadReadPtr
CreateThread
GetUserDefaultUILanguage
GetFileSize
SetEndOfFile
HeapValidate
FormatMessageA
OpenEventA
SetHandleInformation
SystemTimeToFileTime
GetModuleHandleW
GetModuleFileNameA
HeapUnlock
lstrcpyA
Sleep
AreFileApisANSI
SetThreadPriority
GetAtomNameW
SetLocalTime
lstrlenW
HeapSize
lstrcatW
GetFileType
GetVersion
SetMailslotInfo
GetLocaleInfoA
CreateDirectoryW
FormatMessageW
VirtualFree
GetTempFileNameA
LocalLock

msvcrt

isdigit
wcsncpy
_controlfp
iswalpha
sprintf
printf
wcsstr
__set_app_type
toupper
mbstowcs
strcpy
__p__fmode
wcscspn
__p__commode
getenv
_amsg_exit
sscanf
mktime
malloc
fprintf
isalnum
atoi
_initterm
iswdigit
_ismbblead
_XcptFilter
gets
_exit
clearerr
bsearch
atol
fread
isprint
_cexit
__setusermatherr
islower
fputs
tolower
wcspbrk
fputc
gmtime
wcsrchr
isupper
__getmainargs
wcstombs
wcstod
strpbrk

Exports

Exports

?BinaryRedirectNetDYuyhDBH@@YGKGE[D

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

247d92f215ab8ad17dc7d4e3735ceb0d

Headers

File Characteristics

Imports

comdlg32

user32

shlwapi

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 9KB - Virtual size: 137KB

.rsrc Size: 111KB - Virtual size: 110KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 9KB - Virtual size: 137KB

.rsrc
Size: 111KB - Virtual size: 110KB

.reloc
Size: 2KB - Virtual size: 1KB