4a3ad16b66b8b02ef0f776633ba7e38e

Sharing

Copy URL

Twitter E-mail

General

Target

4a3ad16b66b8b02ef0f776633ba7e38e
Size

115KB
MD5

4a3ad16b66b8b02ef0f776633ba7e38e
SHA1

01c8731a5d5e0f799c6adbc171f282956ead4a77
SHA256

dc288ba1ccf9006c5a352415fceb015c4c7ad5d411986e50508982553f4acee9
SHA512

06ccde116a687be3e7582a39fff56faaf78cbcebdc0f66929f0b76891df8a082e67452e96dbcc5e53c48f367930418af0b3bed5ac8f64be08cfc8da25b2d1699
SSDEEP

3072:BYJwta3L3nvYVKo4yDZINNBYZUTMW//tdg54S:RMDYZCB4iMW/16

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a3ad16b66b8b02ef0f776633ba7e38e

Files

4a3ad16b66b8b02ef0f776633ba7e38e
.exe windows:4 windows x86 arch:x86

cac4a2bd8e046624a0070fc4228fcb33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CallWindowProcA
SetCursor
GetSystemMetrics
DestroyMenu
GetKeyboardLayout
EndPaint
SystemParametersInfoA
GetWindowPlacement
SetWindowPos
CharNextW
GetCapture
SetWindowLongA
MsgWaitForMultipleObjects
GetWindowDC
OpenClipboard
WindowFromPoint
TranslateMessage
UpdateWindow
EnableMenuItem
CallNextHookEx
CreateWindowExA
CreateIcon
LoadStringA
GetKeyboardLayoutList
GetScrollPos
IsWindowVisible
SendMessageW
SendMessageA
OffsetRect
SetParent
AdjustWindowRectEx
SetMenu
SetMenuItemInfoA
SetScrollPos
ScreenToClient
EnumChildWindows
PostQuitMessage
DestroyIcon
EmptyClipboard
CheckMenuItem
ReleaseDC
CharUpperBuffA
RegisterClipboardFormatA
GetMenuState
GetScrollInfo
DrawMenuBar
GetSubMenu
BeginPaint
GetActiveWindow
GetMenu
RegisterClassA
MapVirtualKeyA
RemoveMenu
PeekMessageW
IsWindow
SetTimer
IsDialogMessageW
ShowScrollBar
IsWindowEnabled
FindWindowA
DrawIcon
GetPropA
GetLastActivePopup
wsprintfA
RegisterWindowMessageA
LoadCursorA
GetMenuItemCount
GetClassLongA
CreatePopupMenu
MessageBoxA
RemovePropA
SetWindowTextA
IsWindowUnicode
EnumWindows
ChildWindowFromPoint
TranslateMDISysAccel
GetFocus
SetClassLongA
ShowWindow
CharToOemA
CharNextA
SetCapture
GetKeyboardLayoutNameA
ReleaseCapture
MessageBeep
DefMDIChildProcA
GetForegroundWindow
GetClipboardData
GetWindow
SetWindowLongW
SetPropA
GetCursorPos
IsZoomed
IsDialogMessageA
GetDesktopWindow
DefWindowProcA
SetWindowsHookExA
UnregisterClassA
GetClientRect
GetClassNameA
CreateMenu
DefFrameProcA
UnhookWindowsHookEx
EnableScrollBar
SetFocus
OemToCharA
MoveWindow
DrawEdge
SetScrollRange
SetActiveWindow
IntersectRect
FillRect
ShowOwnedPopups
DispatchMessageA
SetRect
CharLowerBuffA
GetMenuStringA
GetClassInfoA
InsertMenuItemA
KillTimer
CloseClipboard
InsertMenuA
DestroyWindow
IsChild
GetWindowThreadProcessId
IsIconic
MapWindowPoints
GetDlgItem
LoadIconA
GetScrollRange
SetForegroundWindow
DrawFrameControl
GetMenuItemID
DrawAnimatedRects
GetIconInfo
WaitMessage
DispatchMessageW
EnableWindow
GetMessagePos
GetCursor
EnumThreadWindows
PeekMessageA
SetClipboardData
InflateRect
ScrollWindow
GetMenuItemInfoA
GetSysColorBrush
GetWindowLongW
ActivateKeyboardLayout
CharLowerA
GetSystemMenu
GetTopWindow
DeleteMenu
PostMessageA
GetSysColor
EqualRect
DrawTextA
SetWindowPlacement
GetWindowTextA
GetKeyboardState
TrackPopupMenu
DestroyCursor
GetWindowLongA
RedrawWindow
PtInRect
GetDCEx
GetKeyState
GetKeyNameTextA
InvalidateRect
LoadKeyboardLayoutA
IsRectEmpty
DrawIconEx
LoadBitmapA
GetDC
ClientToScreen
FrameRect
GetKeyboardType

msvcrt

wcsncmp
acos
fabs
cos
memmove

kernel32

FindFirstFileA
LocalReAlloc
GetOEMCP
MulDiv
ExitThread
GlobalFindAtomA
HeapDestroy
lstrcmpiA
GetProcessHeap
GetLocaleInfoA
InitializeCriticalSection
LocalFree
GetLocalTime
LoadLibraryA
lstrcatA
FreeResource
GetFileSize
GetFullPathNameA
lstrcpynA
MoveFileA
GetStringTypeW
GetStartupInfoA
ResetEvent
GlobalDeleteAtom
GetSystemDefaultLangID
SetHandleCount
GetCurrentProcess
GetCurrentThread
SetLastError
GetUserDefaultLCID
CreateFileA
GetVersionExA
DeleteCriticalSection
SetEvent
SizeofResource
GetFileAttributesA
GetCurrentProcessId
GetProcAddress
LoadLibraryExA
LoadResource
GetStringTypeA
ExitProcess
GlobalAddAtomA
GetVersion
Sleep
HeapAlloc
GetEnvironmentStrings
lstrcpyA
SetEndOfFile
lstrcmpA
GetCurrentThreadId
CompareStringA
GetCommandLineA
VirtualFree
VirtualQuery
GetFileType
WaitForSingleObject
CreateThread
GlobalAlloc
GetStdHandle
DeleteFileA
GetTickCount
EnterCriticalSection
HeapFree
EnumCalendarInfoA
WideCharToMultiByte
LockResource
LocalAlloc
VirtualAlloc
WriteFile
ReadFile
GetCPInfo
GetModuleFileNameA
GetThreadLocale
FindClose
GetLastError
MoveFileExA
FormatMessageA
SetFilePointer
FreeLibrary
RaiseException
SetThreadLocale
GetModuleHandleA
VirtualAllocEx
SetErrorMode
lstrlenA
CreateEventA
CloseHandle
GetACP

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cac4a2bd8e046624a0070fc4228fcb33

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

Sections

.text Size: 102KB - Virtual size: 102KB

.bss Size: 7KB - Virtual size: 6KB

.edata Size: 4KB - Virtual size: 4KB

.text
Size: 102KB - Virtual size: 102KB

.bss
Size: 7KB - Virtual size: 6KB

.edata
Size: 4KB - Virtual size: 4KB