52fc5192f67389b9151b9e3862084410

Sharing

Copy URL Twitter E-mail

General

Target

52fc5192f67389b9151b9e3862084410
Size

180KB
MD5

52fc5192f67389b9151b9e3862084410
SHA1

94de2ea3eeceeab0c1d717c29225a231be2b062a
SHA256

e91411deb385fa2e58b52d0a7597dbd02c8306b86e635a935b910af2b532bb8b
SHA512

459dc48c844262e4d6585662e6b5244f807a44640e77eb5a5fbebf799475a9af5a0ec4e39a8c7e720d53be4bf960cec7996b3bcf12ce8777aaa0ead728424dad
SSDEEP

3072:f62ZQG4+UajagADzS8JOQUvMP0nRfC5JcHdJh/cHGdXyY7K:f/R4+Uajb+m8OMPos5JOqH+iT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52fc5192f67389b9151b9e3862084410

Files

52fc5192f67389b9151b9e3862084410
.exe windows:4 windows x86 arch:x86

67efc305aa4fe20bd24a4abcf740c795

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoRevokeClassObject
CoCreateInstance
StgCreateDocfileOnILockBytes
CoRetireServer
CoTaskMemAlloc
OleFlushClipboard
CoTaskMemFree
CoRegisterMessageFilter
CoGetClassObject
OleIsCurrentClipboard
OleUninitialize
CoInitialize
CoUninitialize
OleInitialize
StgOpenStorageOnILockBytes
CLSIDFromString

msimg32

AlphaBlend

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA

shlwapi

PathRemoveFileSpecA
PathAppendA

gdi32

DeleteDC
RestoreDC
SetBrushOrgEx
EndDoc
EqualRgn
CreateCompatibleBitmap
SetStretchBltMode
GetClipBox
SelectClipRgn
AbortDoc
ExtEscape
OffsetRgn
IntersectClipRect
Rectangle
SetGraphicsMode
SelectPalette
SetROP2
GetCurrentObject
CreatePatternBrush
GetRgnBox
FillPath
PolylineTo
StrokePath
SetMiterLimit
LineTo
GetStockObject
CreateBitmap
SetPolyFillMode
SelectObject
CreateCompatibleDC
GetGraphicsMode
StartPage
RealizePalette
StartDocW
ModifyWorldTransform
DeleteObject
CreateDCW
CreatePolyPolygonRgn
GetDIBColorTable
MoveToEx
PatBlt
EndPath
BitBlt
GetWorldTransform
StretchDIBits
EndPage
SelectClipPath
CombineRgn
GetRegionData
ResetDCW
BeginPath
CreateBrushIndirect
Escape
ExtCreatePen
SetWorldTransform
CreateDIBSection
StretchBlt
PolyBezierTo
GetViewportOrgEx
CreatePalette
ExtSelectClipRgn
SaveDC
CloseFigure
GetDeviceCaps
CreateRectRgn
CreateICW
GetObjectA
SetDIBits
PolyDraw

kernel32

InterlockedExchange
TlsFree
ReadFile
GetSystemInfo
GetCurrentDirectoryA
GetEnvironmentVariableW
GetTickCount
GetLocalTime
GetCalendarInfoW
CreateSemaphoreA
DeleteCriticalSection
SetCurrentDirectoryA
GetProfileStringW
GetSystemTimeAsFileTime
InterlockedCompareExchange
Sleep
GetFileTime
GetLocaleInfoA
GetThreadPriority
CreateMutexA
DeleteFileW
TlsSetValue
ExitProcess
QueryPerformanceCounter
GetWindowsDirectoryA
GetLastError
TerminateProcess
GlobalLock
TlsGetValue
GlobalAlloc
GetDateFormatW
WideCharToMultiByte
GetTimeFormatA
MultiByteToWideChar
EnumResourceNamesA
IsProcessorFeaturePresent
GetThreadLocale
EnterCriticalSection
GetCurrentThreadId
LeaveCriticalSection
LoadLibraryA
SetUnhandledExceptionFilter
GlobalUnlock
GetTempPathW
InterlockedIncrement
FindClose
GetProcAddress
InitializeCriticalSection
GetCurrentProcess
CloseHandle
ReleaseSemaphore
FreeLibrary
GetSystemDefaultLCID
GetUserDefaultLangID
UnhandledExceptionFilter
FindNextFileA
GetCurrentThread
LocalAlloc
CreateFileA
GetDateFormatA
SetThreadPriority
lstrlenW
GetACP
lstrcmpW
GetFileSize
GlobalSize
IsDebuggerPresent
FindFirstFileA
GetTimeFormatW
GetModuleHandleA
GetCurrentProcessId
GlobalFree
GetVersionExA
WaitForSingleObject
GetSystemDirectoryA
ReleaseMutex
GetModuleFileNameA
RaiseException

user32

GetSystemMetrics
GetMonitorInfoA
RegisterClassA
ReleaseDC
DestroyWindow
GetDesktopWindow
SetActiveWindow
LoadCursorA
SetWindowPos
ScrollWindowEx
MonitorFromPoint
EnumDisplayMonitors
WindowFromDC
MonitorFromWindow
GetClientRect
GetWindowRect
LoadIconA
DefWindowProcA
CharNextW
OffsetRect
CreateWindowExA
GetDC
GetActiveWindow
UnregisterClassA

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67efc305aa4fe20bd24a4abcf740c795

Headers

File Characteristics

Imports

ole32

msimg32

advapi32

shlwapi

gdi32

kernel32

user32

Sections

.text Size: 97KB - Virtual size: 97KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 75KB

.edata Size: 1024B - Virtual size: 244KB

.text
Size: 97KB - Virtual size: 97KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 75KB

.edata
Size: 1024B - Virtual size: 244KB