45360ba2d6c76db0a38fbacdcaad37ea

Sharing

Copy URL Twitter E-mail

General

Target

45360ba2d6c76db0a38fbacdcaad37ea
Size

345KB
MD5

45360ba2d6c76db0a38fbacdcaad37ea
SHA1

3a431030c698a09b1f1cf663f06bf411d6638763
SHA256

3883ce9821a78bdc1357884ea7c5af3f0ca636a79f9c4fcc41531dba3ed7c41d
SHA512

b44581ec550a87f92df03265697b90c97d12f5d46cb015e2144c9fe21bb09490b822085239cd6e17c042571087889ca8ae748d88e01d6283c19ec4a6cbf5f1ed
SSDEEP

3072:Gvgwu089h8PPHNGuYk1PxfyMR/XJNi1jxfz4d3lkFtgZ1p4a2PBCfppcsPWWVngW:Fwk9GPtEahyMZBsFtM1aXCxWWVI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45360ba2d6c76db0a38fbacdcaad37ea

Files

45360ba2d6c76db0a38fbacdcaad37ea
.exe windows:4 windows x86 arch:x86

5c1c78e964c987115df8cd0fe396d10e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

sndPlaySoundA

kernel32

HeapAlloc
HeapFree
RaiseException
GetCommandLineA
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
GetStartupInfoA
HeapSize
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetOEMCP
GetCPInfo
WritePrivateProfileStringA
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetCurrentDirectoryA
lstrcmpA
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
GetLocaleInfoA
GlobalAlloc
GetVersionExA
CreateThread
SetThreadPriority
GetACP
FindResourceExA
LoadResource
WideCharToMultiByte
WinExec
GetLastError
GetUserDefaultLangID
GetModuleHandleA
GetModuleFileNameA
OpenFile
LoadLibraryA
GetPrivateProfileIntA
ExitProcess
GetPrivateProfileStringA
GlobalLock
GlobalUnlock
GetProcessVersion
SetErrorMode
GetFileSize
SystemTimeToFileTime
LocalFileTimeToFileTime
TlsSetValue
TlsGetValue
LocalReAlloc
LeaveCriticalSection
EnterCriticalSection
GlobalReAlloc
DeleteCriticalSection
GlobalHandle
LocalAlloc
TlsAlloc
InitializeCriticalSection
FileTimeToSystemTime
GlobalFlags
FileTimeToLocalFileTime
GetFileTime
GetDiskFreeSpaceA
GetTempFileNameA
GetVersion
SetFileTime
GetFileAttributesA
GlobalAddAtomA
lstrcatA
GlobalGetAtomNameA
GlobalDeleteAtom
GetCurrentThread
GlobalFree
GetCurrentThreadId
LockResource
FindResourceA
LocalFree
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
lstrlenA
GetProcAddress
FreeLibrary
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
lstrcpynA
SetLastError
MulDiv
IsBadReadPtr
IsBadWritePtr
GetStdHandle
GetFileType
HeapDestroy

user32

LoadIconA
IsDialogMessageA
SetWindowTextA
ShowWindow
InvalidateRect
IsIconic
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
WindowFromPoint
GetClassNameA
ClientToScreen
LoadCursorA
GetSysColorBrush
InsertMenuA
DeleteMenu
GetMenuStringA
DestroyIcon
FindWindowA
SystemParametersInfoA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScreenToClient
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetPropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
SetWindowLongA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
PostMessageA
PostQuitMessage
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
LoadStringA
SetCursor
ShowOwnedPopups
CharUpperA
wsprintfA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
ReleaseDC
GetDC
DestroyMenu
GetSystemMetrics
SendMessageA
PtInRect
DrawTextA
LoadCursorFromFileA
EnableWindow
MessageBoxA
UpdateWindow
SendDlgItemMessageA
RegisterWindowMessageA
SetWindowPos
RemovePropA
UnregisterClassA

gdi32

StretchDIBits
SetStretchBltMode
SelectPalette
CreatePalette
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
DeleteObject
RealizePalette
CreateFontIndirectA
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
GetObjectA
CreateBitmap
GetDeviceCaps
TranslateCharsetInfo
SetDIBitsToDevice

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegOpenKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyA
RegQueryValueExA
SetFileSecurityA
GetFileSecurityA
RegQueryValueA
RegDeleteKeyA

shell32

DragQueryFileA
ExtractIconA
DragFinish
SHGetFileInfoA
ShellExecuteA

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c1c78e964c987115df8cd0fe396d10e

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 141KB - Virtual size: 141KB

.rdata Size: 36KB - Virtual size: 36KB

.data Size: 18KB - Virtual size: 31KB

.rsrc Size: 148KB - Virtual size: 148KB

.text
Size: 141KB - Virtual size: 141KB

.rdata
Size: 36KB - Virtual size: 36KB

.data
Size: 18KB - Virtual size: 31KB

.rsrc
Size: 148KB - Virtual size: 148KB