4cf3c97db056283ff0704b7ec1cf4b9d

Sharing

Copy URL Twitter E-mail

General

Target

4cf3c97db056283ff0704b7ec1cf4b9d
Size

155KB
MD5

4cf3c97db056283ff0704b7ec1cf4b9d
SHA1

61df3995a8dfec98d11fbeb4cb279f420526e62a
SHA256

d5d269eb6f620cb456932a6a873aec9d30c39c7305810a6480eb637989bb525a
SHA512

3cf6336131e10e7fcb8331be44fe7b490dfef090ff969e5084f1f3397e34b28b7813c12a2062de5790b7b6884facc565323107d754bc4424da665bd75fc9a539
SSDEEP

3072:8nWo2pTSYv9WNZAGu5JvbWBrq44TqPhebDygL4MW7GIMwxtK7hHj1Y:/o25ENZAP3WSu6ykWdU5j1Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cf3c97db056283ff0704b7ec1cf4b9d

Files

4cf3c97db056283ff0704b7ec1cf4b9d
.exe windows:5 windows x86 arch:x86

d00256c3a7b9dfdaa766a6152c1c128e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanW
GetWindowRect
MessageBoxExW
GetKeyboardLayout
GetWindowDC
SetWindowRgn
IsWindowUnicode
PostQuitMessage
GetMessageExtraInfo
GetMenuCheckMarkDimensions
wsprintfW
GetClipCursor
SetCaretPos
SetScrollRange
wvsprintfW
MoveWindow
EnableMenuItem
IsCharUpperA
SetCursor
GetDoubleClickTime
PostMessageA
CharUpperBuffA
GetMessagePos
GetActiveWindow
CloseDesktop
WindowFromPoint
GetDlgItemTextW
CascadeWindows
LoadAcceleratorsA
GetCaretPos
DestroyMenu
CharUpperA
AdjustWindowRectEx
CharLowerW
RegisterWindowMessageA
SendMessageTimeoutW
LoadMenuA
SystemParametersInfoW
MessageBoxExA
DrawTextA
DrawTextExW
OemToCharA
GetDlgItemInt
GetClassInfoExA
GetWindowLongW
DefDlgProcA
GetClassLongW
DrawMenuBar
MapWindowPoints
LookupIconIdFromDirectory
GetIconInfo
WaitMessage
GetKeyboardLayoutList
TabbedTextOutW
CopyAcceleratorTableW
GetUserObjectInformationA
LoadIconA
IntersectRect
CharUpperBuffW
DrawFrameControl
OpenIcon
CheckDlgButton
DefDlgProcW
LoadBitmapA
CreatePopupMenu
GetWindowTextW
GrayStringW
GetUpdateRect
CreateAcceleratorTableW
IsWindowVisible
keybd_event
GetDlgItem
DrawStateA
SetSysColors
EndPaint
DestroyWindow
CallWindowProcA
DispatchMessageA
ValidateRect
UnionRect
SetTimer
GetPropW
CopyRect
GetScrollInfo
DefFrameProcW
PostMessageW
AllowSetForegroundWindow
CreateWindowExW
SetActiveWindow
SendMessageA
CharNextExA
GetMenuItemID
GetMenuStringA
GetSubMenu
LoadBitmapW
InvertRect
OemToCharBuffA
GetSystemMetrics
InternalGetWindowText
MapVirtualKeyExW
ReplyMessage
AppendMenuW
RedrawWindow
GetClassLongA
IsDialogMessageW
SetMenuItemBitmaps
ModifyMenuW
InsertMenuW
FindWindowExW
BeginPaint
LoadCursorW
DrawFocusRect
RemovePropW
DefFrameProcA
MonitorFromPoint
GetShellWindow
GetForegroundWindow
DestroyCursor
SetScrollInfo
OffsetRect

msvcrt

floor
isprint
isupper
wcscspn
time
_controlfp
getenv
strcoll
vswprintf
swscanf
islower
iswspace
__set_app_type
fwrite
wcschr
fgetc
__p__fmode
strncmp
wcstod
strchr
__p__commode
fputs
ftell
_amsg_exit
fprintf
wcsncmp
setlocale
bsearch
fseek
_initterm
_ismbblead
iswalpha
_XcptFilter
isspace
_exit
_cexit
__setusermatherr
fflush
__getmainargs
strerror
strpbrk
wcsncpy
wcscpy
iswprint
free
clock
wcstol

shlwapi

StrToIntW

kernel32

HeapLock
lstrcpynA
OpenSemaphoreW
HeapWalk
LocalAlloc
GlobalSize
LocalReAlloc
CancelWaitableTimer
TryEnterCriticalSection
SetEndOfFile
AreFileApisANSI
SetCommBreak
SetMailslotInfo
GlobalLock
GetVersionExW
FindFirstFileA
GetThreadContext
CloseHandle
LocalUnlock
GetFullPathNameA
GetAtomNameA
GetTempFileNameW
GetPriorityClass
DuplicateHandle
IsBadCodePtr
GetFileType
lstrcmpW
GetModuleHandleW
SetThreadAffinityMask
EnumResourceLanguagesA
SearchPathW
WaitCommEvent
lstrcmpiA
GetFileAttributesExW
GetCommandLineW
GetDateFormatA
CompareStringA
CreateSemaphoreW
CreateFileMappingA
GetStartupInfoA
SizeofResource
MulDiv
RemoveDirectoryA
ConnectNamedPipe
SetCommTimeouts
LoadLibraryA
FileTimeToSystemTime
FindFirstFileW
VirtualAlloc
ExitThread
GetACP
HeapAlloc
CreateFileW
DeleteAtom
GetFileAttributesA

gdi32

PathToRegion
RectVisible
GetNearestColor
LineTo
EnumFontsW
GetCharWidth32W
StretchBlt
CreateHalftonePalette
Ellipse
GetSystemPaletteEntries
SetTextAlign
PtInRegion
SetBkMode
PolyBezier
GetClipBox
SetMapMode
GetDIBits
SetDIBits
FillRgn
TextOutA
OffsetRgn
ExtFloodFill
ExcludeClipRect
BeginPath
BitBlt
GetTextExtentPoint32W
DPtoLP
GetObjectA
GetDeviceCaps
RestoreDC
DeleteObject
SetBitmapBits
CreateRoundRectRgn
SetViewportOrgEx
CreatePenIndirect
CreateRectRgn
LineDDA
CreateHatchBrush
CreateBitmap
GetBitmapBits
RectInRegion
CreateSolidBrush
CreateFontIndirectW
Polygon
LPtoDP
EndDoc
CreatePatternBrush
SetBrushOrgEx
GetTextMetricsW
SetPaletteEntries
GetTextExtentPoint32A

Exports

Exports

?Extract_Options@@YGK_KHE:O

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 150B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.feed
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d00256c3a7b9dfdaa766a6152c1c128e

Headers

File Characteristics

Imports

user32

msvcrt

shlwapi

kernel32

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.idata Size: 6KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 150B

.feed Size: 512B - Virtual size: 128B

.data Size: 2KB - Virtual size: 99KB

.rsrc Size: 126KB - Virtual size: 125KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.idata
Size: 6KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 150B

.feed
Size: 512B - Virtual size: 128B

.data
Size: 2KB - Virtual size: 99KB

.rsrc
Size: 126KB - Virtual size: 125KB

.reloc
Size: 1KB - Virtual size: 1KB