3dd7bd041ca0194ca42c586b7d48e5cd

Sharing

Copy URL Twitter E-mail

General

Target

3dd7bd041ca0194ca42c586b7d48e5cd
Size

67KB
MD5

3dd7bd041ca0194ca42c586b7d48e5cd
SHA1

63a070733299fe5a9a428d94006f58a11f04438d
SHA256

b3bfa8563d1476cf37f20c94bc03b950dfeacd2ea50c8d063e1c4143ac67248e
SHA512

fc0743ab518c18c6b84f46a8cdc06bc817dfd05fd5fb7bf34d8b72d44e8ec98e5e97115612f76a9bd57ce888b7d2d5f7ed81937720c2924996733c8e7c088486
SSDEEP

1536:Je7Ky/Ssf+cL3gcL3MdB+9dc8QPJQhs6cw0:JeIlcTQIdZoQJc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dd7bd041ca0194ca42c586b7d48e5cd

Files

3dd7bd041ca0194ca42c586b7d48e5cd
.exe windows:4 windows x86 arch:x86

3b56a25b69cf594a0f846a959d05b2b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
CopyFileExA
GetFileTime
SetLastError
ReadFile
OpenFileMappingA
OpenFile
Sleep
FindAtomA
GetStdHandle
DeleteFileW
CreateProcessA
WriteFile
CreateDirectoryA
OpenFileMappingA
GlobalFree
GetStdHandle
WriteFile
GetCommandLineA
CopyFileExW
CopyFileA
Sleep
FindFirstFileA
GetLastError
ReadFile
CreateProcessA
GetConsoleMode
Sleep
OpenFileMappingA
DeleteAtom
GetLastError
CopyFileExA
FindAtomA
WriteFile
ReadConsoleA
FindFirstFileA
ExitThread
OpenFile
GetLastError
SetLastError
ReadFile
Sleep
CopyFileW
CopyFileExW
WriteFile
GetFileTime
CreateProcessA

user32

IsMenu
AlignRects
CopyImage
CalcMenuBar
DrawTextA
GetWindowTextA
IsWindow
CopyRect
CopyIcon
GetFocus
GetDlgItem
DrawIcon
CreateIcon
DrawTextW
EndDialog
GetCursor
LoadMenuA
GetFocus
GetWindowTextLengthA
AppendMenuA
GetWindowTextA
GetMenu
CopyRect
InsertMenuA
CopyIcon
DrawIcon
GetDC
DialogBoxParamW
IsWindow
DialogBoxParamA
CreateIcon
CopyImage
CopyRect
CloseWindow
LoadMenuA
EndDialog
GetFocus
DialogBoxParamA
IsMenu
GetMenu
CalcMenuBar
GetDlgItem

comctl32

ImageList_Destroy
ImageList_GetImageInfo
ImageList_Create
ImageList_DragLeave
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_DragMove
ImageList_DragEnter
ImageList_GetIconSize
ImageList_EndDrag

gdi32

GetBrushOrgEx
CreateSolidBrush
GetClipBox
GetBitmapBits
RestoreDC
CloseMetaFile
CloseFigure
GetPixel
ClearBitmapAttributes
CopyMetaFileA
AddFontResourceW
DeleteDC
AddFontMemResourceEx
ClearBrushAttributes
GetPixel
BeginPath
CopyMetaFileA
AbortPath
ClearBitmapAttributes
ExtTextOutA
GetCurrentPositionEx
GetClipBox
AddFontResourceTracking
CreateSolidBrush
AddFontResourceA
CloseMetaFile
CloseFigure
DeleteDC
AddFontResourceTracking
GetPixel
CloseMetaFile
AddFontResourceW
GetBitmapBits
CancelDC
RestoreDC
GetClipBox
GetPixel
DeleteDC
AbortPath
ExtTextOutA
ClearBitmapAttributes
DeleteObject
AddFontResourceExA
CopyMetaFileA
BeginPath
ClearBrushAttributes

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 83B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b56a25b69cf594a0f846a959d05b2b4

Headers

File Characteristics

Imports

kernel32

user32

comctl32

gdi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 57KB - Virtual size: 164KB

.rsrc Size: 1024B - Virtual size: 928B

.reloc Size: - Virtual size: 83B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 57KB - Virtual size: 164KB

.rsrc
Size: 1024B - Virtual size: 928B

.reloc
Size: - Virtual size: 83B