652808de0324b39a53173ab2d3245cc2

Sharing

Copy URL Twitter E-mail

General

Target

652808de0324b39a53173ab2d3245cc2
Size

142KB
MD5

652808de0324b39a53173ab2d3245cc2
SHA1

b28a028d77112e0deeb9e394ad898e3a51c54fc7
SHA256

c9baf3a693f7f521b05738967a47e6e14795012f0757a3f6dc8ba4848ebf665b
SHA512

fb42355753ae5681560c0061e3c7b6a43354cc27998ac3323ba42381c7674caad8d0cbc147f6fe489e67ada5bf0a0bf9bf1fb8af3f26a7ef2681340617ecca86
SSDEEP

3072:rSfTW/P/A/PGlX7sqB0pGJBwDH+BkbQyn1O0zHBBI:6TsYXy7yYQKmbQwP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
652808de0324b39a53173ab2d3245cc2

Files

652808de0324b39a53173ab2d3245cc2
.exe windows:5 windows x86 arch:x86

4545191b7ecbc227ce7802f6d22dc770

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fseek
strtok
mbtowc
getenv
towupper
isprint
_controlfp
atol
strcspn
isalpha
srand
strerror
iswspace
strcoll
__set_app_type
toupper
setvbuf
sscanf
__p__fmode
ftell
__p__commode
_amsg_exit
fgets
gmtime
iswxdigit
wcsncmp
_initterm
_ismbblead
putc
wcsncpy
_XcptFilter
iswprint
wcscspn
wcspbrk
_exit
memset
_cexit
swprintf
__setusermatherr
puts
exit
__getmainargs
perror
strpbrk
system
wcschr
printf
iswctype

shlwapi

StrToIntA

comctl32

ImageList_Create
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_LoadImageW
ImageList_Draw
PropertySheetA

kernel32

TransactNamedPipe
WaitForSingleObjectEx
MoveFileExW
LocalReAlloc
GetVersionExW
SetThreadLocale
GetProcessHeap
FindNextFileA
WaitForSingleObject
GetModuleHandleA
GetAtomNameA
GetFileType
HeapWalk
WaitForMultipleObjectsEx
GetModuleFileNameA
GetCompressedFileSizeW
GetComputerNameW
FindFirstChangeNotificationW
SizeofResource
HeapFree
GetSystemDirectoryW
GetCommState
SuspendThread
DeviceIoControl
lstrcpynW
SetSystemTime
CreateMutexA
CreateRemoteThread
CancelWaitableTimer
LoadLibraryA
WaitForMultipleObjects
GetFileAttributesExA
SetCommTimeouts
CompareStringA
HeapSize
GetWindowsDirectoryA
FlushFileBuffers
GetCurrentDirectoryW
lstrcatA
LCMapStringA
SetHandleInformation
CreateDirectoryW
OpenEventW
GetCurrentThread
SetEndOfFile
IsDBCSLeadByteEx
LoadLibraryExA
LeaveCriticalSection
HeapAlloc
SetCurrentDirectoryA
ResumeThread
ResetEvent
CreateEventA
GetCurrentThreadId
DeleteFileA
RaiseException
LocalFree
UnhandledExceptionFilter

user32

IsIconic
GetUserObjectInformationW
GetClassNameW
CopyRect
BringWindowToTop
GetSystemMetrics
SetWindowRgn
DestroyAcceleratorTable
CharNextW
SetFocus
ShowWindow
GetMenuItemRect
CallWindowProcA
DrawTextA
GetKeyboardLayoutNameW
ScrollWindow
IsZoomed
SendMessageW
LoadBitmapA
FindWindowW
GetMenuCheckMarkDimensions
RegisterWindowMessageW
TabbedTextOutW
IsMenu
SetTimer
SetActiveWindow
ModifyMenuW
CreateDialogParamW
DefFrameProcW
IntersectRect
GetCaretPos
GetDlgItemTextA
GetDCEx
SystemParametersInfoA
HideCaret
GetSystemMenu
AllowSetForegroundWindow
CreatePopupMenu
DestroyIcon
FindWindowA
IsRectEmpty
SendMessageA
AppendMenuA
SetSysColors
CreateIconFromResource
SendDlgItemMessageW
CheckMenuRadioItem
OpenIcon
DispatchMessageW
LoadStringW
KillTimer
IsCharAlphaW
DestroyCursor
GetDlgItemInt
RegisterClassA
SetCursor
SetLastErrorEx
wsprintfA
MoveWindow
LoadAcceleratorsW
CharUpperW
GetKeyState
SetMenu
SendDlgItemMessageA
CascadeWindows
OemToCharBuffA
MessageBoxExW
PeekMessageA
InSendMessageEx
UnloadKeyboardLayout
ValidateRect
GetClipCursor
ShowCursor
GetTopWindow
DestroyCaret
DialogBoxIndirectParamA
SendNotifyMessageW
ScreenToClient
wvsprintfA
SetPropW
AttachThreadInput
wvsprintfW
GetWindowTextA
GetScrollInfo
GetAltTabInfoA
DefDlgProcW
RegisterHotKey
InflateRect
LoadImageA
EnumThreadWindows
MonitorFromRect
GetClassInfoExA
DrawIcon
FindWindowExW
InvertRect
GetWindowLongA
CharNextA
TrackPopupMenuEx
GetScrollPos
CharNextExA
RemovePropW
TranslateAcceleratorW
EndPaint
SetCaretPos
SwitchToThisWindow
DestroyWindow
CharUpperBuffW
SetWindowPos
GetClassInfoExW
ShowCaret
GetMenu
OpenDesktopW
GetKeyboardLayoutList
DrawFrameControl
ShowWindowAsync
LoadStringA
LoadMenuA
UnionRect
IsChild

Exports

Exports

?InsertRawPointDyXBc@@YGKHGE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4545191b7ecbc227ce7802f6d22dc770

Headers

File Characteristics

Imports

msvcrt

shlwapi

comctl32

kernel32

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 76KB

.rsrc Size: 110KB - Virtual size: 110KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 76KB

.rsrc
Size: 110KB - Virtual size: 110KB

.reloc
Size: 1KB - Virtual size: 1KB