3dce72a303ad757cb184ab3381687957

General

Target

3dce72a303ad757cb184ab3381687957
Size

288KB
MD5

3dce72a303ad757cb184ab3381687957
SHA1

06a0fe85988611e944e6a33a62fb3edd4af3608d
SHA256

6b0e5b05532886ba5dc76813165923f27a85938534d153d8e328f44ff0bc8a75
SHA512

98a8f49753bd7a12c4708618a076047b86367e0c5e6cd4d59b2f20c7ae8f2b604a3920ed1ac0dee5f36c6e148697baea05d5370ff80a0981c1b2d0c78882104d
SSDEEP

3072:CSHSJYsnUoPMjCs1kqphlmSettChXTwu9HB:e99tChpB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dce72a303ad757cb184ab3381687957

Files

3dce72a303ad757cb184ab3381687957
.exe windows:4 windows x86 arch:x86

0754e7fab5fa94cb2c0f950dea3d9863

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
CloseHandle
GetFileSize
CreateFileA
GetTickCount
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
GetModuleFileNameA
GetFileAttributesA
lstrlenA
WaitForSingleObject
CreateProcessA
SetEndOfFile
WriteFile
SetFilePointer
CopyFileA
MapViewOfFile
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
GetCommandLineA
UnmapViewOfFile
lstrcmpiA
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetStringTypeW

user32

DestroyWindow
IsDlgButtonChecked
GetDlgItemInt
wsprintfA
LoadIconA
SendMessageA
DialogBoxParamA
SendDlgItemMessageA
CheckDlgButton
LoadBitmapA
GetWindowLongA
SetWindowLongA
SetTimer
MessageBoxA
MessageBoxIndirectA
KillTimer
GetClassNameA

gdi32

SetBkMode
CreatePatternBrush
DeleteObject

comdlg32

GetOpenFileNameA

shell32

DragAcceptFiles
DragQueryFileA
DragFinish

Sections

.text
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0754e7fab5fa94cb2c0f950dea3d9863

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

Sections

.text Size: 30KB - Virtual size: 32KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 20KB

.rsrc Size: 236KB - Virtual size: 236KB

.text
Size: 30KB - Virtual size: 32KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 20KB

.rsrc
Size: 236KB - Virtual size: 236KB