3ca5109fb23883cfa12115e8b4c9635e

Sharing

Copy URL Twitter E-mail

General

Target

3ca5109fb23883cfa12115e8b4c9635e
Size

540KB
MD5

3ca5109fb23883cfa12115e8b4c9635e
SHA1

17b033cb21ec2dd36013e7f255c00f47d40f3fbd
SHA256

d4d009d333e5a0f6435ffbc5c5f600a9b376333f8d3431e3244db7d12580df0d
SHA512

33527f2c2c9ed65b2a00c5f28ce5927a6dcb18a1119cc40dbb022d1445cece43b1114e423d5155fc570a6765848bee9df09b51a5a95e1ccbc0b9af3d95dc32f8
SSDEEP

12288:9kyQ+8Yo7zQrttgknCK/XNHNqk0mde8nWlSq6P:90+8YkQrtthnhpT0mk8uW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ca5109fb23883cfa12115e8b4c9635e

Files

3ca5109fb23883cfa12115e8b4c9635e
.exe windows:4 windows x86 arch:x86

07b90f97b387463ff7013a32090dc3fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateStatusWindowW
CreateMappedBitmap
InitCommonControlsEx
GetEffectiveClientRect
ImageList_GetImageInfo
CreateStatusWindow
ImageList_GetImageCount
ImageList_GetImageRect

kernel32

GetCurrentDirectoryA
InterlockedIncrement
WideCharToMultiByte
FormatMessageA
GetEnvironmentStrings
TerminateProcess
GetCommandLineW
FreeEnvironmentStringsA
FlushFileBuffers
GetCalendarInfoA
SetLastError
LCMapStringA
GetCurrentProcess
EnterCriticalSection
HeapAlloc
VirtualAlloc
GetVersion
CompareStringA
GetNumberFormatA
CompareStringW
HeapReAlloc
DeleteCriticalSection
RtlUnwind
SetConsoleCursorInfo
GetModuleFileNameW
GetTimeZoneInformation
GetFileType
GetStringTypeW
HeapDestroy
GetEnvironmentStringsW
UnhandledExceptionFilter
CloseHandle
LoadLibraryExA
GetProfileStringW
GetStartupInfoA
GetLocalTime
GetLocaleInfoA
WriteConsoleOutputAttribute
AddAtomW
TlsAlloc
GetCurrentProcessId
SetCurrentDirectoryA
ResetEvent
GetDateFormatW
EnumSystemCodePagesW
GetTickCount
MultiByteToWideChar
HeapCreate
FindNextFileA
GlobalGetAtomNameW
SetEvent
OpenMutexA
VirtualFree
CreateMutexA
FlushViewOfFile
VirtualQuery
GetSystemTime
WriteFile
GetProfileStringA
GetStdHandle
WriteProfileSectionA
WaitNamedPipeA
InterlockedExchange
FreeLibraryAndExitThread
HeapFree
InterlockedDecrement
FillConsoleOutputCharacterA
EnumCalendarInfoA
IsBadReadPtr
QueryPerformanceCounter
SetStdHandle
RtlZeroMemory
LCMapStringW
LeaveCriticalSection
GetStringTypeA
GetProcAddress
InitializeCriticalSection
ExitProcess
TlsFree
GetCurrentThread
OpenWaitableTimerA
GetModuleFileNameA
OpenProcess
FreeEnvironmentStringsW
GetModuleHandleA
GetFileAttributesA
TlsSetValue
GetAtomNameA
SetEnvironmentVariableA
IsBadWritePtr
SetFilePointer
ConnectNamedPipe
GetCurrentThreadId
GetCPInfo
TlsGetValue
SetHandleCount
GetConsoleMode
SystemTimeToFileTime
GetCommandLineA
GetSystemTimeAsFileTime
GetLastError
ReadFile
GetStartupInfoW
GlobalFlags
LoadLibraryA

advapi32

CryptGetHashParam
DuplicateTokenEx
RegOpenKeyA
CryptEnumProvidersW
RegCloseKey
CryptGetProvParam
LookupAccountSidA
LookupSecurityDescriptorPartsA
LookupPrivilegeDisplayNameW
CryptHashData
LookupPrivilegeValueW
RegDeleteValueA
CryptSetHashParam
RegQueryValueExW
CryptSignHashW
RegQueryMultipleValuesA
CryptHashSessionKey
CryptSetProviderW

comdlg32

ChooseColorA
GetSaveFileNameA
PageSetupDlgA
ChooseColorW

wininet

GetUrlCacheEntryInfoExA
InternetTimeToSystemTimeA

user32

VkKeyScanA
GetScrollBarInfo
AnimateWindow
SetWindowsHookExW
IsWindowEnabled
WindowFromPoint
GetClipboardData
RedrawWindow
IsCharAlphaA
IsCharLowerW
SetUserObjectSecurity
DefWindowProcW
GetKeyboardLayoutList
SetMenuItemInfoW
GetInputState
GetTitleBarInfo
GetMenuState
GetIconInfo
RegisterClassExW
SendIMEMessageExW
SendMessageW
CallMsgFilterW
GetFocus
CreateWindowExW
EnumWindows
RegisterClassA
WinHelpW
DialogBoxParamW
CallMsgFilter
SetMessageExtraInfo
DrawFrameControl
WindowFromDC
SetCursor
CharToOemW
CopyRect
DrawEdge
InsertMenuW
DestroyWindow
CheckMenuItem
SetWindowLongW
RegisterClassExA
SetWindowRgn
GetUserObjectSecurity
DefFrameProcA
LoadBitmapW
TranslateAccelerator
AppendMenuA
GetDlgCtrlID
ShowWindow
IsDialogMessage
SetWindowContextHelpId
DlgDirSelectComboBoxExW
GetUserObjectInformationW
SendMessageA
MapVirtualKeyExA
GetClassInfoExW
wsprintfA
InsertMenuA
DdeFreeDataHandle
MsgWaitForMultipleObjectsEx
OemToCharBuffW
MessageBoxA
ScreenToClient
SetClassWord
ChangeMenuW
IsDialogMessageW
PostQuitMessage
ActivateKeyboardLayout
ChangeDisplaySettingsExA
SetForegroundWindow
DispatchMessageW

Sections

.text
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07b90f97b387463ff7013a32090dc3fb

Headers

File Characteristics

Imports

comctl32

kernel32

advapi32

comdlg32

wininet

user32

Sections

.text Size: 152KB - Virtual size: 148KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 112KB - Virtual size: 137KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 152KB - Virtual size: 148KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 112KB - Virtual size: 137KB

.rsrc
Size: 24KB - Virtual size: 20KB