45629b848e91495aaee6b355db916b4f

Sharing

Copy URL Twitter E-mail

General

Target

45629b848e91495aaee6b355db916b4f
Size

129KB
MD5

45629b848e91495aaee6b355db916b4f
SHA1

317c62183d91d9345d96281000a1e0aba9d9ed64
SHA256

9d77561da918a38fdd4e9502a9243c4a6921dcd510fd27be9c9b0f330e730ca1
SHA512

ca49ffa8e2cf3ae3ddf7250c0491fbfb08ddad29053a2e03d67663459295fb404b9b13756078fa17d7a4fd3cecd8e4601694bcad72c187ac7ec9b37fbfb3fa88
SSDEEP

3072:X9P1+KtcQNgkwV1to1gaPHyZbX43YjDAsuCLWgL9rL:aQDgvto1gaPyB432z5L93

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45629b848e91495aaee6b355db916b4f

Files

45629b848e91495aaee6b355db916b4f
.exe windows:4 windows x86 arch:x86

2240972acd7a00266ecedd2ead483764

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
InitializeCriticalSection
ExitProcess
GetCurrentProcessId
LoadLibraryA
SetThreadLocale
LocalReAlloc
CreateEventA
GetFileType
LoadLibraryExA
GetModuleHandleW
SetErrorMode
GetStringTypeA
FreeLibrary
VirtualFree
lstrlenA
GetCurrentThread
GetThreadLocale
GetTickCount
VirtualAlloc
IsBadReadPtr
VirtualQuery
WideCharToMultiByte

user32

GetWindowThreadProcessId
GetMenuItemID
IsChild
SetScrollPos
GetDCEx
DrawEdge
DrawFrameControl
GetCursorPos
FillRect
GetIconInfo
SetScrollRange
GetSystemMenu
EmptyClipboard
GetKeyState
GetMenuState
GetKeyboardLayoutList
InvalidateRect
DrawMenuBar
PtInRect
CallWindowProcA
GetPropA
TranslateMessage
SetRect
IsWindowUnicode
IsWindowEnabled
ReleaseDC
AdjustWindowRectEx
TranslateMDISysAccel
SetMenu
DefWindowProcA
WindowFromPoint
GetClassNameA
OpenClipboard
CreateMenu
SetWindowLongW
SetMenuItemInfoA
InflateRect
PostMessageA
DestroyIcon
GetMenuItemCount
LoadIconA
MessageBeep
RedrawWindow
MessageBoxA
GetTopWindow
OffsetRect
RemovePropA
SetWindowsHookExA
CreateWindowExA
ReleaseCapture
IsRectEmpty
GetMenuStringA
MapWindowPoints
CharNextW
IsDialogMessageW
EndDialog
SetClassLongA
ShowScrollBar
UnregisterClassA
EnableWindow
GetMenu
PeekMessageW
ActivateKeyboardLayout
DispatchMessageW
KillTimer
GetWindowRect
GetDesktopWindow
SetWindowPos
GetKeyboardLayout
GetDC
EnableScrollBar
ScrollWindow
CheckMenuItem
InsertMenuItemA
DestroyWindow
GetFocus
ShowWindow
IsWindow
IsMenu
GetParent
IsIconic
CharNextA
DrawAnimatedRects
GetKeyboardLayoutNameA
GetKeyNameTextA
EqualRect
IsDialogMessageA
EnumThreadWindows
SetFocus
GetWindowLongW
ChildWindowFromPoint
ScreenToClient
DeleteMenu
GetClassInfoA
IsWindowVisible
GetClipboardData
RemoveMenu
CallNextHookEx
MapVirtualKeyA
GetWindowDC
LoadCursorA
SendMessageW
DispatchMessageA
PeekMessageA
GetForegroundWindow
CharLowerBuffA
DestroyCursor
GetSubMenu
SetTimer
SetPropA
ClientToScreen
GetLastActivePopup
IsCharLowerA

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA
GetSaveFileNameA

gdi32

SetBkColor
GetDIBColorTable
GetPaletteEntries
GetDCOrgEx
CreateDIBitmap
CreatePenIndirect
GetCurrentPositionEx
SaveDC
CreateBitmap

shlwapi

SHGetValueA

Exports

Exports

_qKT2nlpSfGvZJ@20
_7QoWgByOAgLa
cII49c
AMoGgQKc@12
_1MVV4

Sections

.text
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2240972acd7a00266ecedd2ead483764

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

gdi32

shlwapi

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 96KB

.data Size: 113KB - Virtual size: 116KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 9KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 96KB

.data
Size: 113KB - Virtual size: 116KB

.rsrc
Size: 1024B - Virtual size: 4KB