3b725c62a2f372aefbdc4355d2d808de

Sharing

Copy URL Twitter E-mail

General

Target

3b725c62a2f372aefbdc4355d2d808de
Size

660KB
MD5

3b725c62a2f372aefbdc4355d2d808de
SHA1

32201bff2ea96f20e2ddbc56b766d87c4f42e60f
SHA256

e2595205cc5162ccc983f6e868cd1eedd476834f37fc609401b57d7dd6233c7f
SHA512

b2fef1abb86b520a35478ad0753c34e47e5894709b71cc03e2ba7dbbfdfafe683a14c10fccd7c1c9ddb0235498b981e453fb5892e85abb0de97eda6e3ccea21a
SSDEEP

12288:sTiKURQuAa8W+C0CnZ5IrFPTcNPFw4DoP7IP4TuDV0h+QX:pAUPa9cNPN+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b725c62a2f372aefbdc4355d2d808de

Files

3b725c62a2f372aefbdc4355d2d808de
.exe windows:4 windows x86 arch:x86

3e8995db0ed035033348ed4d269e7baf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetCaretPos
LoadImageW
RealGetWindowClass
RegisterDeviceNotificationW
CreateWindowStationW
ReuseDDElParam
UnregisterClassW
SetMenuContextHelpId
GetKeyboardLayoutNameA
RegisterClassA
DdeCreateDataHandle
GetClipboardFormatNameA
UpdateWindow
IsChild
MessageBoxIndirectW
DefDlgProcA
ChangeMenuA
SetWindowLongA
GetClassLongA
CharToOemA
DdeGetData
RegisterClassExA
CreateDesktopA
IsCharLowerW

kernel32

IsValidLocale
InterlockedIncrement
TlsSetValue
GetStdHandle
CloseHandle
LockFileEx
GetACP
RaiseException
LoadLibraryA
TlsFree
DebugBreak
RtlUnwind
FlushFileBuffers
SetEnvironmentVariableA
WriteConsoleW
HeapAlloc
ReadConsoleA
GetLocaleInfoA
OutputDebugStringW
GetPriorityClass
IsBadReadPtr
GetThreadSelectorEntry
OutputDebugStringA
GetTimeFormatA
GetDiskFreeSpaceExW
ReadFile
LCMapStringW
TerminateProcess
GetModuleHandleA
LCMapStringA
OpenMutexA
QueryPerformanceCounter
VirtualAlloc
DeleteCriticalSection
GetShortPathNameA
InterlockedDecrement
UnhandledExceptionFilter
MultiByteToWideChar
HeapValidate
SetUnhandledExceptionFilter
GetCurrentThreadId
WriteFile
EnumSystemLocalesA
GlobalFlags
CompareStringW
EnumTimeFormatsA
InitializeCriticalSection
WideCharToMultiByte
GetTimeZoneInformation
GetConsoleCP
GetVersionExA
GetConsoleMode
GetLastError
GetEnvironmentStrings
LoadLibraryW
GetModuleFileNameW
IsDebuggerPresent
GetStringTypeA
GetStartupInfoA
FreeEnvironmentStringsW
GetLocaleInfoW
GetCPInfo
ExitProcess
GetProcessHeap
GetUserDefaultLCID
VirtualFree
GetFileType
GetCurrentThread
SetStdHandle
WriteConsoleA
TlsGetValue
SetEvent
lstrlenA
InterlockedExchange
SetConsoleCtrlHandler
HeapDestroy
HeapFree
HeapReAlloc
FreeLibrary
HeapCreate
VirtualQuery
CreateFileA
CopyFileExA
CreateNamedPipeW
SetLastError
FreeEnvironmentStringsA
GetConsoleOutputCP
GetDateFormatA
TlsAlloc
GetVolumeInformationA
CreateMutexA
CompareStringA
GetStringTypeW
GetCommandLineA
GetCurrentProcess
EnterCriticalSection
SetFilePointer
FormatMessageW
GetEnvironmentStringsW
IsValidCodePage
OpenSemaphoreA
GetTickCount
CopyFileA
GetCurrentProcessId
LeaveCriticalSection
SetHandleCount
GetModuleFileNameA
GetSystemInfo
GetProcAddress
GetSystemTimeAsFileTime
GetOEMCP

Sections

.text
Size: 464KB - Virtual size: 463KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e8995db0ed035033348ed4d269e7baf

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 464KB - Virtual size: 463KB

.rdata Size: 78KB - Virtual size: 102KB

.data Size: 104KB - Virtual size: 104KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 464KB - Virtual size: 463KB

.rdata
Size: 78KB - Virtual size: 102KB

.data
Size: 104KB - Virtual size: 104KB

.rsrc
Size: 12KB - Virtual size: 12KB