3ab2813193f9df1e700bc77c36568175

Sharing

Copy URL

Twitter E-mail

General

Target

3ab2813193f9df1e700bc77c36568175
Size

96KB
MD5

3ab2813193f9df1e700bc77c36568175
SHA1

6f08776dcba12f089c35d5dcd4a120b8b8f6ea61
SHA256

e70c8651b2698b9a5254df01df853e1241f5fb2ad9f89c2b7b23ca290c79eb58
SHA512

fab1c6e37a4ba54f69331d656d1ce47f61d03ccfac3aec12d121996921c0c2f7c3b9ce593b09729b8d720480c38f165010a4b6430445f79f1ad4171790356311
SSDEEP

768:Xwzvo3+sYnjBaNYk+lCkZ18fbikxpLMitrJxM0Ijm2wnqP3vjoVHGaCSFiB9BrNq:gzqnYno+k2ZseuoM92oVkfNfwKo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ab2813193f9df1e700bc77c36568175

Files

3ab2813193f9df1e700bc77c36568175
.exe windows:4 windows x86 arch:x86

e8e2fcdf21e590dd394d26a608ce70b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
MulDiv
FindResourceA
GetTickCount
GetModuleHandleA
LoadResource
LockResource
SizeofResource
Sleep
CreateThread
GlobalAlloc
GlobalLock
CloseHandle
SetStdHandle
RaiseException
GetCPInfo
GetStringTypeW
SetFilePointer
GetLastError
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetACP
GetModuleFileNameA
FlushFileBuffers
SetThreadPriority
GetProcAddress
GetStringTypeA
LoadLibraryA
GetOEMCP
GetCommandLineA
HeapFree
HeapAlloc
ExitProcess
GetVersion
GetStartupInfoA

user32

EndDialog
SetCursor
ReleaseDC
GetDC
LoadCursorA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
DrawTextA
SetWindowTextA
LoadIconA
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
DialogBoxParamA
ShowWindow
DestroyCursor
DestroyIcon
PtInRect
ReleaseCapture
GetClientRect
LoadBitmapA
GetDlgItem
SetClassLongA
BeginPaint
EndPaint
GetCursor
SendMessageA

gdi32

GetDeviceCaps
CreateSolidBrush
SetTextColor
SelectObject
SetBkMode
DeleteObject
SetBkColor

shell32

ShellExecuteA

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

winmm

waveOutClose
waveOutOpen
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveOutReset
waveOutGetPosition

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8e2fcdf21e590dd394d26a608ce70b0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

oleaut32

winmm

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 47KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 47KB

.rsrc
Size: 16KB - Virtual size: 12KB