4976c3b974e789590a1725daa8294b8d

Sharing

Copy URL Twitter E-mail

General

Target

4976c3b974e789590a1725daa8294b8d
Size

68KB
MD5

4976c3b974e789590a1725daa8294b8d
SHA1

fc5baea6747382d8ce1ed477cd55c63bffc59d41
SHA256

6c76478618f084b845d5dd97859a4602e85f8e35edfbecc072a94f7d57bdf42f
SHA512

0bb975f9731e4013ec159ec42c1a52589f8ac9984feb006c115e8e8b427530c2f43d9b352208119223dc1212b409194d197804a0233304ca6de8ca66a5344e1d
SSDEEP

768:4LFNMwEjyR8zneQGt3J6+F427I1FvpAOo7w3z/4aS2WmgcTa6tI0gvhsMPQz8:MFNMJy2eQ8Z6l1JpAOvbN2l0gvh10

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4976c3b974e789590a1725daa8294b8d

Files

4976c3b974e789590a1725daa8294b8d
.exe windows:4 windows x86 arch:x86

377b6c1ec55b7273031087ca109c3cd6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegGetKeySecurity
RegReplaceKeyA
RegOpenKeyExA
RegDeleteValueW
RegQueryValueExA
RegEnumKeyW
RegOpenKeyA
RegFlushKey
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyW
RegEnumValueW
RegLoadKeyW
RegEnumKeyExA
RegCreateKeyW
RegCreateKeyExW
RegQueryValueW
RegEnumKeyA
RegOpenKeyExA
RegQueryInfoKeyW
RegEnumKeyExA
RegDeleteValueW
RegReplaceKeyA
RegEnumKeyA
RegDeleteValueA
RegLoadKeyW
RegEnumKeyExW
RegOpenKeyW
RegCreateKeyExW
RegEnumValueA
RegOpenKeyA
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyW
RegCreateKeyExA
RegQueryValueW
RegQueryInfoKeyA
RegGetKeySecurity
RegCreateKeyW
RegLoadKeyA
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumValueA
RegDeleteKeyW
RegQueryValueExA
RegQueryValueExW
RegGetKeySecurity
RegCreateKeyExA
RegQueryValueW
RegReplaceKeyW
RegOpenKeyW
RegOpenKeyExA
RegEnumKeyW
RegReplaceKeyA
RegLoadKeyW
RegDeleteValueA
RegFlushKey
RegDeleteValueW
RegLoadKeyA
RegEnumKeyA
RegEnumKeyExW
RegEnumKeyExA
RegOpenKeyA

user32

InsertMenuA
GetCursor
DialogBoxParamA
CloseWindow
GetMenu
CreateIcon
CalcMenuBar
BlockInput
GetWindowTextA
DialogBoxParamW
IsMenu
LoadMenuA
GetWindowTextLengthA
AlignRects
AppendMenuA
EndDialog
DrawIconEx
DrawTextA
IsWindow

comctl32

ImageList_DragMove
ImageList_BeginDrag
ImageList_GetDragImage
ImageList_DragLeave
ImageList_Draw
ImageList_Merge
ImageList_GetIconSize
ImageList_EndDrag
ImageList_GetImageCount
ImageList_Remove
ImageList_GetImageInfo
ImageList_Create
ImageList_GetIcon
ImageList_AddIcon
InitCommonControls
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_Replace
InitCommonControls
ImageList_BeginDrag
ImageList_GetDragImage
ImageList_GetImageInfo
ImageList_Create
ImageList_DragEnter
ImageList_Destroy
ImageList_Read
ImageList_DragShowNolock
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_EndDrag
ImageList_GetIcon
ImageList_AddIcon
ImageList_Merge
ImageList_DragMove
ImageList_DrawEx
ImageList_Remove
ImageList_Draw
ImageList_LoadImage
ImageList_Replace
ImageList_Remove
ImageList_AddIcon
ImageList_GetDragImage
ImageList_LoadImageW
ImageList_Copy
ImageList_EndDrag
ImageList_Draw
InitCommonControls
ImageList_LoadImage
ImageList_Merge
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_Read
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_Create
ImageList_DrawIndirect
ImageList_DragMove
ImageList_DrawEx
ImageList_GetIcon
ImageList_BeginDrag
ImageList_DragEnter
ImageList_Create
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_Replace
ImageList_DrawIndirect
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_AddIcon
ImageList_GetDragImage
InitCommonControls
ImageList_Remove
ImageList_Merge
ImageList_DragMove
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_DrawEx
ImageList_EndDrag
ImageList_Copy

kernel32

DeleteAtom
GetConsoleMode
FindAtomA
WriteFile
FindFirstFileA
SetLastError
DeleteFileA
GetLastError
CopyFileW
CreateProcessA
GetFileSize
CreateDirectoryA
GetFileTime
OpenFileMappingA
OpenFile
GetStdHandle
CopyFileExW
ExitThread
CreateThread
GetCPInfo
GetComputerNameA

gdi32

DeleteObject
AbortPath
ExtTextOutA
BitBlt
CreateSolidBrush
CancelDC
BeginPath
SetTextColor
GetPixel
GetBitmapBits
AddFontResourceA
AddFontMemResourceEx
AddFontResourceExW
DeleteDC
ClearBitmapAttributes
ExcludeClipRect
GetDCOrgEx
ClearBrushAttributes
RestoreDC
AddFontResourceTracking
CloseFigure
AddFontMemResourceEx
AddFontResourceA
RestoreDC
ClearBrushAttributes
SetTextColor
GetPixel
CancelDC
CreateSolidBrush
AddFontResourceExA
ExcludeClipRect
GetClipBox
ExtTextOutA
GetPixel
DeleteDC
AddFontResourceExW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

377b6c1ec55b7273031087ca109c3cd6

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 56KB - Virtual size: 139KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 56KB - Virtual size: 139KB

.rsrc
Size: 1KB - Virtual size: 1KB