392f4dd97617e6bd70e75d856c480f46

Sharing

Copy URL

Twitter E-mail

General

Target

392f4dd97617e6bd70e75d856c480f46
Size

112KB
MD5

392f4dd97617e6bd70e75d856c480f46
SHA1

7706102c3246b2e5565b74c629fcdce15224e5d9
SHA256

774f1698068ec3c7acbb12d52f3610fcc9b441c22988670d1d7b13ed09d3867a
SHA512

cabf514afb4c8771da763831657055558fd41fc7b9e503d9de176e73cfd550a940331630625a833084e4e9b685be4028d6da4c95a8d7fe8673a4e3c193a96c2f
SSDEEP

3072:ItK4WABOC7sYNETQM8G//clJu/5Rwx1p6:IpBhsY6R8yclJYUx18

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
392f4dd97617e6bd70e75d856c480f46

Files

392f4dd97617e6bd70e75d856c480f46
.exe windows:4 windows x86 arch:x86

6e66bdb901b119625bc151f6f0742207

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
CreateCompatibleDC
GetBitmapBits
CreateDIBitmap
RestoreDC
CreateBrushIndirect
GetPixel
SetBkMode
CreateCompatibleBitmap
CreatePalette

comctl32

ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Destroy
ImageList_Create
ImageList_Draw
ImageList_Read
ImageList_Write
ImageList_Remove
ImageList_Add

shell32

SHGetDesktopFolder
SHGetDiskFreeSpaceA
DragQueryFileA

version

GetFileVersionInfoA
VerQueryValueA

oleaut32

SafeArrayCreate
OleLoadPicture
SysAllocStringLen
SysStringLen
SafeArrayGetElement
VariantChangeType
SafeArrayPtrOfIndex

ole32

CLSIDFromProgID
CoRegisterClassObject
CoReleaseMarshalData
CreateOleAdviseHolder
CreateBindCtx
CoDisconnectObject
OleCreateStaticFromData
CoGetObjectContext
CreateStreamOnHGlobal
CoFreeUnusedLibraries

user32

CloseClipboard
SetMenu
GetDCEx
DrawIconEx
SetForegroundWindow
GetClassInfoA
GetCursor
IsWindowEnabled
IsDialogMessageA
GetKeyState
DispatchMessageW
ActivateKeyboardLayout
SetScrollPos
GetForegroundWindow
GetMenuState
IsChild
InsertMenuItemA
DrawIcon
FindWindowA
TranslateMessage
GetClipboardData
GetWindowLongA
GetSystemMenu
TrackPopupMenu
LoadCursorA
ReleaseCapture
CreateIcon
GetKeyboardLayoutNameA

kernel32

ExitThread
GetTickCount
EnumCalendarInfoA
SetFilePointer
VirtualAlloc
GetModuleHandleA
GetProcAddress
LocalAlloc
LocalReAlloc
SetThreadLocale
GetVersionExA
GlobalAlloc
LockResource
GetOEMCP
LocalFree
lstrlenA

Sections

CODE
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 761B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e66bdb901b119625bc151f6f0742207

Headers

File Characteristics

Imports

gdi32

comctl32

shell32

version

oleaut32

ole32

user32

kernel32

Sections

CODE Size: 29KB - Virtual size: 28KB

.idata Size: 76KB - Virtual size: 75KB

.tls Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 94B

.rdata Size: 1024B - Virtual size: 761B

CODE
Size: 29KB - Virtual size: 28KB

.idata
Size: 76KB - Virtual size: 75KB

.tls
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 94B

.rdata
Size: 1024B - Virtual size: 761B