4f21cccc5ac9bbd5cd66101156a54e2a

Sharing

Copy URL Twitter E-mail

General

Target

4f21cccc5ac9bbd5cd66101156a54e2a
Size

198KB
MD5

4f21cccc5ac9bbd5cd66101156a54e2a
SHA1

230b5b4adc9021b393ab498944943778bb9443d7
SHA256

e3b5d211f97c0fcea0551880008c50431fc060f6b9b5df10c88538c03a34721c
SHA512

82ab88baaba566d144f7e68ad767cde1aebb23a768e9f07714f553eb24e5dbd55486b9100bcc5e65ec50a6f67d73be38a75b2541baf22c6043400fa1f7272528
SSDEEP

6144:Kgsxy0s7xG2Ge3s+rjU33oKe3+kl48ZdufqO86h:jxGz8vLd3DYqP6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f21cccc5ac9bbd5cd66101156a54e2a

Files

4f21cccc5ac9bbd5cd66101156a54e2a
.exe windows:4 windows x86 arch:x86

50ebcebdd02fdc5cd4d8ed9c717c06e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

SetStretchBltMode
PolyBezier
SetTextColor
AnimatePalette
CreatePen
CreateFontIndirectA
FlattenPath
PlgBlt
StrokePath
ExtCreatePen
GetBitmapBits
GetPath
RoundRect
GetBkColor
SetDIBits

rpcrt4

RpcBindingSetAuthInfoA
RpcBindingFromStringBindingA
RpcStringBindingComposeA
NdrClientCall
RpcStringFreeA

comctl32

ImageList_Add
ImageList_DrawEx
ImageList_Create
ImageList_GetIconSize
ImageList_Destroy

user32

WinHelpW
DefWindowProcW
ClipCursor
DrawEdge
GetSysColorBrush
DestroyCursor
ChildWindowFromPoint
DestroyIcon
IsClipboardFormatAvailable
SetWindowPos
MonitorFromWindow
SetClipboardData
SetWindowsHookExW
EmptyClipboard
CallNextHookEx
RegisterClassW
ToAscii
UnhookWindowsHookEx
SetScrollRange
GetSysColor

kernel32

GetUserDefaultLangID
VerLanguageNameW
CreateFiberEx
GetFileType
CompareStringW
GetFileTime
SearchPathW
FindResourceExA
SetCommConfig
LocalAlloc
EnumResourceNamesW
GetFileAttributesA
LockFile
IsDBCSLeadByte
SetEndOfFile
UnlockFile
FlushFileBuffers
GetProfileStringW
FileTimeToLocalFileTime
GetVersionExW
FileTimeToSystemTime
GetVolumeInformationW
GetSystemTime
FlushFileBuffers
GetSystemDirectoryW

comdlg32

GetFileTitleA

shlwapi

PathIsRootW
PathStripToRootW
PathIsRelativeW
PathIsURLW
PathCanonicalizeW
PathCombineW

ole32

RevokeDragDrop
CoGetClassObject
GetHGlobalFromStream
GetHGlobalFromILockBytes
ReleaseStgMedium
StgCreateDocfileOnILockBytes
CoTaskMemFree
CLSIDFromProgID
CoGetMalloc
OleDuplicateData
StringFromCLSID
CoCreateInstance
CoFreeUnusedLibraries
OleRun
CoTaskMemAlloc
RegisterDragDrop
CoCreateGuid
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
ProgIDFromCLSID
OleRegGetUserType
CLSIDFromString
OleGetAutoConvert
CreateILockBytesOnHGlobal

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50ebcebdd02fdc5cd4d8ed9c717c06e3

Headers

File Characteristics

Imports

gdi32

rpcrt4

comctl32

user32

kernel32

comdlg32

shlwapi

ole32

Sections

.text Size: 172KB - Virtual size: 172KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 21KB - Virtual size: 20KB

.lib Size: 512B - Virtual size: 224KB

.text
Size: 172KB - Virtual size: 172KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 21KB - Virtual size: 20KB

.lib
Size: 512B - Virtual size: 224KB