3dce5bb6cfa2a02353d3cb53c0ed9dcb

Sharing

Copy URL

Twitter E-mail

General

Target

3dce5bb6cfa2a02353d3cb53c0ed9dcb
Size

380KB
MD5

3dce5bb6cfa2a02353d3cb53c0ed9dcb
SHA1

f88ee1618d175e1e8f672b59b1330aef24139ddf
SHA256

6f23e7886704d91a4fa4759e16314434594211e55af5f6f15aa80636cfb96d85
SHA512

ca7bb56faea55798d006a1be04124388ac8adb170f0fdbfb89b825cdd33d179fc30dc404c939733131f8d643cec227b774736fe839f0a4b3b6ea40c8c067b818
SSDEEP

6144:oK5IwgE5uP3iZ4v+SqCf3wiROfbE2HwXf10d2cux5tSi3NS/ukuSj:oK5ISYiwOjE2mw2N5tdo/L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dce5bb6cfa2a02353d3cb53c0ed9dcb

Files

3dce5bb6cfa2a02353d3cb53c0ed9dcb
.exe windows:4 windows x86 arch:x86

4e658da3f6de6ffc831d78d7b8281656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetSystemPaletteUse
GetEnhMetaFileDescriptionA
CreateDCA
GetObjectA
StretchDIBits
GetWorldTransform
LineTo
DeleteObject
GetGlyphOutlineW
DeleteDC
GetDeviceCaps

user32

GetClipboardSequenceNumber
DdeCreateStringHandleA
RegisterClassA
GetCaretPos
GetSubMenu
CreateWindowExW
SetPropW
EnumDisplaySettingsW
TrackMouseEvent
DestroyWindow
SendInput
DdePostAdvise
ShowWindow
DdeFreeDataHandle
ValidateRect
MessageBoxA
GetClassLongW
CreatePopupMenu
RegisterClassExA
DefWindowProcW
MsgWaitForMultipleObjects
IsDlgButtonChecked
IsZoomed
GetWindowModuleFileNameA
LoadCursorW
MapWindowPoints
MoveWindow

shell32

ShellExecuteA
SHGetDataFromIDListA
SHFreeNameMappings
ShellExecuteExA
ShellExecuteEx

comdlg32

FindTextA
PrintDlgA
GetOpenFileNameA
FindTextW

comctl32

ImageList_DragEnter
ImageList_Write
ImageList_LoadImage
InitMUILanguage
ImageList_Create
CreateToolbarEx
CreatePropertySheetPage
ImageList_GetIconSize
ImageList_Replace
ImageList_SetIconSize
CreatePropertySheetPageA
ImageList_GetImageInfo
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_Read
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_SetBkColor
ImageList_Remove
CreateStatusWindow
ImageList_GetImageCount
DrawStatusTextA
DrawStatusText
ImageList_GetImageRect
ImageList_SetOverlayImage

wininet

InternetGetCertByURLA
InternetConnectA

kernel32

GetStartupInfoW
GetConsoleTitleW
GetCurrentProcess
GetSystemTime
CreateMutexA
GetCurrentProcessId
MultiByteToWideChar
WritePrivateProfileStructW
GetModuleFileNameA
HeapReAlloc
GetLocaleInfoA
EnumSystemLocalesA
GetDateFormatA
GetEnvironmentStrings
HeapCreate
GetSystemInfo
FreeEnvironmentStringsW
WritePrivateProfileStringW
IsBadWritePtr
EnumCalendarInfoExA
DeleteFileA
SetConsoleOutputCP
TlsSetValue
GetUserDefaultLCID
SetHandleCount
IsValidCodePage
HeapSize
OpenFile
SetConsoleScreenBufferSize
TlsFree
DeleteCriticalSection
LoadLibraryW
TerminateProcess
GetCurrentThread
CompareStringA
LoadModule
GetStringTypeW
IsValidLocale
OpenProcess
CompareStringW
InterlockedExchange
ReadConsoleA
FlushFileBuffers
FindAtomA
TlsAlloc
HeapFree
SetEvent
FindResourceA
GetProcAddress
LCMapStringW
HeapAlloc
GetComputerNameA
HeapDestroy
GetTimeFormatA
GetOEMCP
GetTickCount
VirtualProtect
VirtualFree
GetAtomNameW
GetLocaleInfoW
SetStdHandle
GetEnvironmentStringsW
EnumDateFormatsW
GetACP
FindNextChangeNotification
FillConsoleOutputCharacterW
GetModuleFileNameW
GetCommandLineW
GetLastError
VirtualAlloc
WriteFile
QueryPerformanceCounter
RtlUnwind
SetFilePointer
GetStartupInfoA
CreateDirectoryW
CloseHandle
GetProcessAffinityMask
LoadLibraryA
GetVersionExA
GetCPInfo
GetModuleHandleA
GetCurrentThreadId
FreeEnvironmentStringsA
ExitProcess
TlsGetValue
VirtualQuery
GetStringTypeA
GetSystemTimeAsFileTime
GetFileType
InitializeCriticalSection
WideCharToMultiByte
UnhandledExceptionFilter
GetStdHandle
EnterCriticalSection
GetCommandLineA
LoadLibraryExA
LeaveCriticalSection
GetTimeZoneInformation
EnumCalendarInfoExW
EnumDateFormatsA
SetEnvironmentVariableA
WaitForMultipleObjects
GetVersionExW
LCMapStringA
RemoveDirectoryA
ReadFile
OpenMutexA
CreateWaitableTimerW
GetTempFileNameA
FindFirstFileA
SetLastError

Sections

.text
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e658da3f6de6ffc831d78d7b8281656

Headers

File Characteristics

Imports

gdi32

user32

shell32

comdlg32

comctl32

wininet

kernel32

Sections

.text Size: 136KB - Virtual size: 133KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 96KB - Virtual size: 99KB

.rsrc Size: 40KB - Virtual size: 37KB

.text
Size: 136KB - Virtual size: 133KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 96KB - Virtual size: 99KB

.rsrc
Size: 40KB - Virtual size: 37KB