5300f770ff7cc3abba8e8f6d0965180c

Sharing

Copy URL Twitter E-mail

General

Target

5300f770ff7cc3abba8e8f6d0965180c
Size

584KB
MD5

5300f770ff7cc3abba8e8f6d0965180c
SHA1

5c03c104bb00525c5006107f9c7f6b9e9cbc79ac
SHA256

a82cc0f02c1c14cf93f1078c025f25d68973fdfb52dcf5be2d98107c039abb99
SHA512

a0636a3269475d28039b4b2f9b8c6f1363b338bf3762902dbc50882f6eff8957dad2621ed596540b7eee2e92787844eb19e573ac70c9663b7e8cab0d13a52cb8
SSDEEP

12288:pHxt1TpqEQlRGMXaw0aLil4sVafOaNFdONsj:pFT0E6RFNBilbh+F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5300f770ff7cc3abba8e8f6d0965180c

Files

5300f770ff7cc3abba8e8f6d0965180c
.exe windows:4 windows x86 arch:x86

f17b363f358df3107fba45e5ec5ae1a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_BeginDrag
ImageList_Replace
CreateUpDownControl
ImageList_SetFilter
ImageList_GetImageInfo
InitCommonControlsEx
CreateToolbar

shell32

ExtractIconEx

user32

DefDlgProcW
DestroyWindow
MessageBoxA
ReplyMessage
SetClassLongW
CreateWindowExW
ShowWindow
CloseWindowStation
ReleaseCapture
IsCharAlphaA
CascadeChildWindows
GetWindow
GetCaretPos
RegisterClassA
DlgDirListW
RegisterClassExA
CreateDesktopW
TranslateAccelerator
PaintDesktop
DefWindowProcW
SetPropA
EnumClipboardFormats
GetDlgItemInt

advapi32

CryptReleaseContext
RegEnumValueW
CryptVerifySignatureA
RegSetValueExA

comdlg32

ChooseFontW

kernel32

GetFileType
HeapSize
GetUserDefaultLCID
InterlockedDecrement
CreateMutexA
CreateFileA
LoadResource
GetModuleFileNameW
GetProcAddress
GetEnvironmentStrings
GetStartupInfoA
IsValidLocale
GetOEMCP
GetStdHandle
WriteConsoleA
TlsAlloc
GetAtomNameA
GetCommandLineA
LCMapStringW
CompareStringA
FreeLibrary
GetCurrentThreadId
GetModuleHandleA
GetACP
FreeEnvironmentStringsW
HeapReAlloc
GetCurrentProcessId
WideCharToMultiByte
MapViewOfFileEx
LCMapStringA
GetConsoleOutputCP
TlsGetValue
GetProcessHeap
ReadFile
DebugActiveProcess
GetDateFormatA
GetTimeFormatA
GetVersionExA
FreeResource
SetLastError
HeapDestroy
IsValidCodePage
GetSystemTimeAsFileTime
GetCurrentProcess
RtlUnwind
GetConsoleCP
Sleep
EnterCriticalSection
lstrcpyW
UnhandledExceptionFilter
CompareStringW
SetHandleCount
GetFileSize
SetConsoleCtrlHandler
ReadConsoleW
GetPrivateProfileSectionW
GetLocaleInfoA
EnumSystemLocalesA
lstrcatW
SetUnhandledExceptionFilter
GetEnvironmentStringsW
SetConsoleTitleA
TlsSetValue
QueryPerformanceCounter
GetModuleFileNameA
VirtualFree
SetFilePointer
IsDebuggerPresent
FlushFileBuffers
GetCommandLineW
LoadLibraryA
MultiByteToWideChar
GetShortPathNameA
GetCPInfo
GetStringTypeA
GetStartupInfoW
GetStringTypeW
VirtualAlloc
HeapAlloc
GetLastError
GetLocaleInfoW
SetStdHandle
HeapFree
ExitProcess
WriteFile
TerminateProcess
DeleteCriticalSection
GetTimeZoneInformation
InterlockedExchange
GetSystemDirectoryW
WriteProfileStringW
CloseHandle
InitializeCriticalSection
GetTickCount
FreeEnvironmentStringsA
LeaveCriticalSection
OpenMutexA
SetEnvironmentVariableW
GlobalUnlock
WriteConsoleW
GetCurrentThread
TlsFree
GetConsoleMode
HeapCreate
FormatMessageW
GlobalAddAtomA
VirtualQuery
EnumResourceTypesA
SetEnvironmentVariableA
InterlockedIncrement

gdi32

CreateDCA
AnimatePalette
CreateEllipticRgnIndirect
GetDeviceCaps
GetObjectW
DeleteDC
DeleteEnhMetaFile
EnumEnhMetaFile
LineDDA

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f17b363f358df3107fba45e5ec5ae1a4

Headers

File Characteristics

Imports

comctl32

shell32

user32

advapi32

comdlg32

kernel32

gdi32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 112KB - Virtual size: 137KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 112KB - Virtual size: 137KB

.rsrc
Size: 56KB - Virtual size: 53KB