3f3c31dfbbff4499576e61d76df69fb7

Sharing

Copy URL Twitter E-mail

General

Target

3f3c31dfbbff4499576e61d76df69fb7
Size

304KB
MD5

3f3c31dfbbff4499576e61d76df69fb7
SHA1

ac23f07ab27a9b760e6310d17cbdcf9112b9bdc8
SHA256

67c770c5d856b43a5b7be0dae3eafc0abc5af88e47964d20e68f32602f00621b
SHA512

6c090048416eec7f5decce7034b609f32705e8405d50dfc3ac29e118fc4c7a9993112e486cd77c976f779c865d356d22a32eca783a72a49c7a67291b58bce262
SSDEEP

6144:0vW+BE4FulCyuQKX18U2I9sZrV5df/8zAdu/VHkisx:0vW+7ucpQKX+J5M/Vj8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f3c31dfbbff4499576e61d76df69fb7

Files

3f3c31dfbbff4499576e61d76df69fb7
.exe windows:4 windows x86 arch:x86

bc7c52d0bb7013b647eac668f1c77a4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueW
RegSetValueExW

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
CreateFileA
LoadLibraryA
ReadFile
InitializeCriticalSection
CreateFileW
InterlockedExchange
FlushFileBuffers
GetStringTypeW
GetStringTypeA
VirtualQuery
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
SetStdHandle
IsBadWritePtr
VirtualAlloc
SetEndOfFile
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
HeapSize
GetCurrentProcess
TerminateProcess
ExitProcess
HeapReAlloc
CloseHandle
HeapAlloc
LCMapStringW
LCMapStringA
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
SetLastError
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteFileA
MoveFileA
GetLastError
HeapFree
GetVersionExA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
MultiByteToWideChar
CompareStringA
WideCharToMultiByte
GlobalSize
GlobalLock
GlobalAlloc
GlobalUnlock
GetFileAttributesA
GlobalReAlloc
GlobalFree
MulDiv
GetProcAddress
GetModuleFileNameW
GetVersionExW
CompareStringW
SetEnvironmentVariableA

user32

DialogBoxParamW
CreateDialogParamW
EndDialog
CreateWindowExW
SetMenuDefaultItem
CheckMenuItem
GetClipboardOwner
OpenClipboard
CloseClipboard
RegisterClipboardFormatW
IsClipboardFormatAvailable
GetClipboardData
EmptyClipboard
SetClipboardData
GetSystemMetrics
TrackPopupMenu
LoadMenuW
GetSubMenu
LoadBitmapW
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringW
ModifyMenuW
DestroyMenu
FindWindowW
MessageBeep
GetMessageW
IsWindow
IsDialogMessageW
TranslateMessage
DispatchMessageW
UnhookWindowsHookEx
MessageBoxA
PostQuitMessage
RegisterWindowMessageW
GetCursorPos
SetForegroundWindow
PostMessageW
GetMenuDefaultItem
SetWindowsHookExW
LoadIconW
UpdateWindow
BringWindowToTop
RegisterClassExW
MessageBoxW
SetFocus
SetCursor
GetSysColor
GetSystemMenu
LoadStringW
AppendMenuW
GetFocus
GetDlgCtrlID
DestroyWindow
EnableWindow
GetDesktopWindow
GetWindowRect
SetWindowPos
IntersectRect
IsWindowVisible
ScreenToClient
ShowWindow
SetWindowTextW
CallWindowProcW
InflateRect
DrawFrameControl
GetWindowTextW
DrawStateW
DrawFocusRect
GetClientRect
DestroyIcon
InvalidateRect
SetWindowLongW
DefWindowProcW
GetWindowLongW
GetDlgItem
LoadImageW
GetDC
GetTopWindow
GetWindow
ReleaseDC
SendMessageW
SendDlgItemMessageW
DestroyCursor

gdi32

GetDeviceCaps
GetTextExtentPoint32W
SetBkMode
CreateSolidBrush
GetObjectW
CreateFontIndirectW
EnumFontFamiliesExW
SelectObject
Rectangle
SetTextColor
GetStockObject
DeleteObject
BitBlt
CreateCompatibleDC
ExtTextOutW
SetBkColor
DeleteDC

shell32

ShellExecuteW

ukhook35

ord6
ord4
ord7
ord11
ord8
ord5
ord12
ord9
ord10

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bc7c52d0bb7013b647eac668f1c77a4f

Headers

File Characteristics

Imports

comdlg32

advapi32

kernel32

user32

gdi32

shell32

ukhook35

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 24KB - Virtual size: 46KB

.rsrc Size: 24KB - Virtual size: 22KB

.text Size: 120KB - Virtual size: 120KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 24KB - Virtual size: 46KB

.rsrc
Size: 24KB - Virtual size: 22KB

.text
Size: 120KB - Virtual size: 120KB