3a510261a06d57d1047259b8b957dc5d

Sharing

Copy URL Twitter E-mail

General

Target

3a510261a06d57d1047259b8b957dc5d
Size

157KB
MD5

3a510261a06d57d1047259b8b957dc5d
SHA1

116e0cb2621594bbda2f50e5530959ff9dfa1f5f
SHA256

cd272db7a83b7f061e0bf769ae97df9b442fd0c30a4be30543987f73133f6e9f
SHA512

0b31293644a5d7a0ac30e8330991ef3c98226b61fb2e1481035404c9772ca47352444f0cb428eb2c0b7ab87f2207b939d5344814fa33f0d4ec7406109126148f
SSDEEP

3072:uJMkCHrljCzaBAWl7Ot0dPT1LWP48CY6Ik5MsaRteWIxE6qSDM6lM1:ZHxrAWlytKpWlDhMzHyuDMCM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a510261a06d57d1047259b8b957dc5d

Files

3a510261a06d57d1047259b8b957dc5d
.exe windows:5 windows x86 arch:x86

bf8007a51a1dff301fde92710b8712f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetViewportOrgEx
Ellipse
CreatePatternBrush
CreateSolidBrush
GetCurrentPositionEx
GetTextExtentPoint32W
GetNearestColor
CombineRgn
LineTo
FillRgn
DeleteObject
SetPaletteEntries
StartPage
LPtoDP
SetTextColor
GetDeviceCaps
RectVisible
RestoreDC
GetBrushOrgEx
SetRectRgn
ExtCreateRegion
FrameRgn
ExtTextOutA

kernel32

TryEnterCriticalSection
GlobalLock
FindClose
GetUserDefaultLCID
MapViewOfFile
lstrlenW
VirtualQuery
FlushInstructionCache
MultiByteToWideChar
GetProcessHeap
GetModuleHandleA
CloseHandle
EnumCalendarInfoA
UnhandledExceptionFilter
GetVolumeInformationA
WaitForMultipleObjects
CreateFileW
CreateFileMappingA
CreateFileMappingW
GlobalAlloc
TerminateProcess
GetTimeZoneInformation
GlobalMemoryStatus
VirtualQueryEx
GlobalAlloc
FreeResource
SetThreadPriority
CopyFileA
ResumeThread
GlobalFindAtomA
GetVersionExA
CompareStringW
GetVersion
GetTempPathA
UnmapViewOfFile
FileTimeToDosDateTime
GetSystemTime

user32

GetMessagePos
RemoveMenu
SetRectEmpty
InflateRect
GetMessageTime
EnumClipboardFormats
GetForegroundWindow
DispatchMessageW
ActivateKeyboardLayout
ClientToScreen
GetSystemMetrics
ScrollWindow
ReuseDDElParam
CharLowerA
WindowFromPoint
SetWindowPlacement
GetDlgItem
GetDC
GetCapture
IsIconic
SetClassLongA
RegisterClassW
SetPropA
ClipCursor
UnregisterClassA
FindWindowA
GetScrollInfo
IsZoomed
SetCursor
CharUpperBuffA
DestroyWindow
DeleteMenu
ShowCaret
CallWindowProcA
IsWindowVisible
IsWindow
GetLastActivePopup
MsgWaitForMultipleObjects
GetComboBoxInfo
DeferWindowPos
RemovePropA
SetWindowsHookExA
CreateWindowExW

comctl32

ImageList_DragEnter
ImageList_GetDragImage
ImageList_Destroy
ImageList_DragShowNolock

winmm

timeBeginPeriod

dpvaaenh

_FCosh
_FDscale
_LPoly
_Strcoll
_FDtest
_Stof
_Strxfrm

shell32

SHGetDesktopFolder
SHBrowseForFolderA
ShellExecuteA
SHGetPathFromIDListA
DragFinish

wininet

InternetErrorDlg
InternetConnectA
InternetSetOptionA
HttpSendRequestA

imm32

ImmSetCompositionWindow

oleaut32

SafeArrayPtrOfIndex
GetErrorInfo
SafeArrayCreateVector

ole32

CoUninitialize
CoCreateGuid
StringFromCLSID
IsEqualGUID

comdlg32

GetSaveFileNameA
FindTextA

Sections

.text
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf8007a51a1dff301fde92710b8712f5

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

user32

comctl32

winmm

dpvaaenh

shell32

wininet

imm32

oleaut32

ole32

comdlg32

Sections

.text Size: 148KB - Virtual size: 148KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 148KB - Virtual size: 148KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB