38f2ed01bb5a9941ad4dec0668ef3816

Sharing

Copy URL Twitter E-mail

General

Target

38f2ed01bb5a9941ad4dec0668ef3816
Size

158KB
MD5

38f2ed01bb5a9941ad4dec0668ef3816
SHA1

b5a766e7dbd4e6f8b5fd470007604cdbe6b82a08
SHA256

e67a3556134b67bcb2f3bf3513f9c198859b4c33614476377df22e7258bf4d6c
SHA512

4000aca790b5b4aae8ec731e112aba7dfd111db39f80bc3c1807a1fb762bb77aa5780825a8b49e1f20956505239de6f5fcb34a28eb8198a9d24d09df05aabb61
SSDEEP

3072:ZOJpSF0lEbAN3+G99S3JBbS9OFC81Lxu545Uy6QCTqp8RuL:grSF0OKZbGjSQ4kLxe45UQp8RA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38f2ed01bb5a9941ad4dec0668ef3816

Files

38f2ed01bb5a9941ad4dec0668ef3816
.exe windows:4 windows x86 arch:x86

6b7e2e731d1554477a75b79afdb06e7e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shlwapi

SHSetValueA
SHQueryValueExA
SHGetValueA
SHStrDupA
PathIsDirectoryA

advapi32

RegDeleteValueA
RegQueryValueA
RegEnumValueA

ole32

CoCreateGuid
CreateOleAdviseHolder
CoUnmarshalInterface
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
OleRegGetUserType
CoGetMalloc
StgOpenStorage
CoDisconnectObject
CoReleaseMarshalData

user32

IsDialogMessageW
SetPropA
SetMenuItemInfoA
GetWindowDC
DestroyWindow
IsRectEmpty
PeekMessageA
SetWindowsHookExA
GetClassLongA
RegisterWindowMessageA
SetScrollInfo
GetFocus
ActivateKeyboardLayout
GetMessagePos
CloseClipboard
GetClassInfoA
ScreenToClient
SetCapture
GetKeyboardLayoutList
SetWindowPlacement
IsChild
SetScrollPos
FrameRect
ReleaseDC
InflateRect
SetMenu
UnregisterClassA
wsprintfA
UpdateWindow
RedrawWindow
TranslateMDISysAccel
SetWindowLongW
ReleaseCapture
GetWindowTextLengthA
GetMenuItemCount
GetMenu
CharLowerBuffA
PeekMessageW
GetKeyboardState
GetMenuItemID
DrawAnimatedRects
DefMDIChildProcA
GetWindowLongA
EnableWindow
MessageBoxA
WaitMessage
EqualRect
SetScrollRange
IsCharLowerA
GetSysColor
FillRect
IntersectRect
UnhookWindowsHookEx
CreateMenu
PostMessageA
InvalidateRect
CharLowerA
EndPaint
EnableScrollBar
TranslateMessage
EnumThreadWindows
EmptyClipboard
SystemParametersInfoA
DestroyMenu
IsDialogMessageA
GetKeyNameTextA
LoadIconA
DrawFrameControl
SetWindowPos
DestroyIcon
GetIconInfo
GetClassNameA
PtInRect
GetScrollRange
DefWindowProcA
InsertMenuA
ChildWindowFromPoint
PostQuitMessage
OemToCharA
RemoveMenu
IsZoomed
SetTimer
DispatchMessageW
FindWindowA
CreateIcon
GetClipboardData
KillTimer
LoadBitmapA
GetForegroundWindow
GetCursorPos
CreatePopupMenu
GetWindowPlacement
CallWindowProcA
GetKeyState
MapWindowPoints
DrawIcon
GetParent
BeginPaint
AdjustWindowRectEx
LoadCursorA
DispatchMessageA
TrackPopupMenu
EnumWindows
DrawEdge
GetKeyboardLayoutNameA
GetDlgItem
GetPropA
RegisterClipboardFormatA
IsWindowUnicode
ShowOwnedPopups
CallNextHookEx
GetClientRect
SetFocus
DestroyCursor

gdi32

CreateDIBSection
GetPaletteEntries
GetBkColor
GetRgnBox
GetBkMode
CreateDIBitmap

shell32

SHGetDiskFreeSpaceA

comdlg32

GetFileTitleA
GetOpenFileNameA

comctl32

ImageList_Add
ImageList_DrawEx
ImageList_Destroy

oleaut32

SafeArrayCreate
SafeArrayGetElement
SysStringLen
RegisterTypeLib
SafeArrayGetUBound

kernel32

VirtualAlloc
GetLocalTime
lstrlenA
GetModuleFileNameA
VirtualAllocEx

version

VerFindFileA
VerQueryValueA
VerInstallFileA

Exports

Exports

_Zj8@8
_Ewq@16
_CkC
FMv@20

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 125KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b7e2e731d1554477a75b79afdb06e7e

Headers

File Characteristics

Imports

shlwapi

advapi32

ole32

user32

gdi32

shell32

comdlg32

comctl32

oleaut32

kernel32

version

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 125KB - Virtual size: 196KB

.tls Size: 1024B - Virtual size: 728B

.rdata Size: 1024B - Virtual size: 784B

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 125KB - Virtual size: 196KB

.tls
Size: 1024B - Virtual size: 728B

.rdata
Size: 1024B - Virtual size: 784B

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 15KB