4347f0c8db57ffb4ea6ac96cae0c1b60

Sharing

Copy URL Twitter E-mail

General

Target

4347f0c8db57ffb4ea6ac96cae0c1b60
Size

83KB
MD5

4347f0c8db57ffb4ea6ac96cae0c1b60
SHA1

35205328be24009fdf952168557183356d288b31
SHA256

cab8f3b61d0f51a58660f38338732c7c1b4dd8c651c394b9baf1ff499c12a2cc
SHA512

bf4859716438b5b20b8bd2f69658c6d4a5fdcdffa537102152b85f3ef807191591aed7bd29fa52533e04d09769e460f54e1c1debb4c2ea8c03e92e13df9f821c
SSDEEP

1536:4xBfdQrWO2zm7VxYDw7CIQops46hXrutfYaIYx31K78T6VL1A2nOT7t5dJA:4xBVQp2zYLkEp8cbRxw9F1A2OT7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4347f0c8db57ffb4ea6ac96cae0c1b60

Files

4347f0c8db57ffb4ea6ac96cae0c1b60
.exe windows:4 windows x86 arch:x86

5f522c542c5ad847a7c09e319a92874b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
OleRegGetUserType
CLSIDFromProgID
CoCreateInstanceEx
CreateOleAdviseHolder
ReleaseStgMedium

shlwapi

PathFileExistsA
SHStrDupA

shell32

Shell_NotifyIconA
SHGetDesktopFolder
SHFileOperationA
DragQueryFileA

msvcrt

wcschr
memmove
memcmp
mbstowcs
tolower
calloc
log
time
_acmdln
fabs
memcpy
malloc
sqrt
log10

gdi32

RestoreDC

kernel32

Sleep
GetModuleFileNameA
ExitProcess
WaitForSingleObject
GetLastError
HeapDestroy
GetModuleHandleA
GetDateFormatA
WriteFile
GetProcessHeap
LoadLibraryExA
lstrcpynA
HeapAlloc
VirtualAllocEx
ExitThread
EnumCalendarInfoA
LoadLibraryA
SetEndOfFile
SetFilePointer
SizeofResource
GetACP
GetStdHandle
WideCharToMultiByte
GetEnvironmentStrings
GetCurrentProcess
GetFileType
ResetEvent
GetSystemDefaultLangID
lstrcmpiA

advapi32

RegOpenKeyA
RegLoadKeyA

comdlg32

FindTextA
GetSaveFileNameA
ChooseColorA

user32

ClientToScreen
GetClientRect
GetCursor
HideCaret
GetMenuItemCount
DrawTextA
GetSysColor
CreateMenu
CallNextHookEx
GetSubMenu
EqualRect
GetFocus
EnumChildWindows
CharNextA
CreateIcon
ShowWindow
DrawEdge
GetDCEx
BeginDeferWindowPos
ShowScrollBar
SetWindowLongA
DispatchMessageW
SetWindowPos
DrawIconEx
CreateWindowExA
GetActiveWindow
SetTimer

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5f522c542c5ad847a7c09e319a92874b

Headers

File Characteristics

Imports

ole32

shlwapi

shell32

msvcrt

gdi32

kernel32

advapi32

comdlg32

user32

Sections

CODE Size: 36KB - Virtual size: 35KB

.data Size: 45KB - Virtual size: 84KB

.edata Size: 512B - Virtual size: 107B

CODE
Size: 36KB - Virtual size: 35KB

.data
Size: 45KB - Virtual size: 84KB

.edata
Size: 512B - Virtual size: 107B