667cb5956f105ab92970095f56c949ab

Sharing

Copy URL Twitter E-mail

General

Target

667cb5956f105ab92970095f56c949ab
Size

540KB
MD5

667cb5956f105ab92970095f56c949ab
SHA1

1093ca0f15171c1be9bcc2fbfdce8cbffc150285
SHA256

a15439660c2e6978c21f6e5d79ba1a4b380b13e2954075cb17336732f3db2f5d
SHA512

ca4e5a4f5d955af181ab936bda8445ac6d771f4c7b5d7366dc5ace939f9ffa8f5434d4fe6b37994f146d9aa6e5dec73308e247c944c55280073dd4bc6170e29f
SSDEEP

12288:sckPgTnpmtiTnYfK00Wt1NwcUy33AKDSJ7ZpMtj6yC+vb/ry0:sckoTItiTnYfK008u1u3AKDSJ7Mtj6yb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
667cb5956f105ab92970095f56c949ab

Files

667cb5956f105ab92970095f56c949ab
.exe windows:4 windows x86 arch:x86

4c362a47a5804535f1fb5f8620e6bd41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextA
GetFileTitleW
PrintDlgW
ChooseColorA

kernel32

HeapCreate
TlsFree
GetSystemInfo
LocalReAlloc
GetModuleHandleA
GetVersionExA
SetFilePointer
HeapReAlloc
GetLastError
GlobalGetAtomNameW
GetCPInfo
GetCommandLineW
EnumResourceNamesA
HeapSize
GetFileType
LCMapStringA
WideCharToMultiByte
GetVolumeInformationA
GetEnvironmentStringsW
GetCurrentProcessId
GetOEMCP
GetACP
MultiByteToWideChar
VirtualProtect
IsValidCodePage
SetEnvironmentVariableA
UnhandledExceptionFilter
CompareStringW
TlsSetValue
EnterCriticalSection
MoveFileA
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
FlushFileBuffers
LCMapStringW
QueryPerformanceCounter
GetCurrentThread
GetEnvironmentStrings
TerminateProcess
SetFileAttributesW
InterlockedIncrement
IsBadWritePtr
GetCurrentThreadId
GetAtomNameA
DeleteCriticalSection
WriteFile
SetLastError
HeapFree
ExitProcess
GetStringTypeW
GetProcAddress
TlsGetValue
EnumSystemLocalesA
GetStdHandle
GetCurrentDirectoryA
VirtualFree
GetDateFormatA
VirtualAlloc
FreeResource
OpenMutexA
SetStdHandle
GetTimeZoneInformation
TlsAlloc
GetTimeFormatA
HeapAlloc
CompareStringA
LeaveCriticalSection
SetHandleCount
VirtualQuery
EnumDateFormatsExW
CloseHandle
SleepEx
InterlockedExchange
GetStringTypeA
LoadLibraryA
HeapDestroy
GetStartupInfoA
GetStartupInfoW
GetPrivateProfileSectionNamesW
FreeEnvironmentStringsA
RtlUnwind
IsValidLocale
InitializeCriticalSection
GetLocaleInfoW
OpenProcess
GetModuleFileNameA
GetModuleFileNameW
GetCurrentProcess
CreateMutexA
GetCommandLineA
SetConsoleCtrlHandler
ReadFile
CreateFileW
WriteProfileSectionA
GetUserDefaultLCID
GetTickCount
GetLocaleInfoA
WaitForSingleObjectEx

user32

DdeQueryStringA
DdeReconnect
PeekMessageA
SetScrollRange
EnumDisplaySettingsExW
SwitchToThisWindow
SetMenuItemInfoW
IsClipboardFormatAvailable
GetMenuItemInfoW
VkKeyScanExW
ValidateRect
DdeSetUserHandle
DdeDisconnect
UnregisterClassA
CascadeWindows
GetIconInfo
GetKeyboardLayoutNameA
GetWindowLongW
DlgDirListComboBoxW
RegisterClassExA
WINNLSEnableIME
SendMessageW
CreateWindowStationW
RegisterWindowMessageA
LoadIconA
DdeSetQualityOfService
GetPropW
GetSysColorBrush
IsCharAlphaW
TranslateAcceleratorW
SetWindowsHookExA
CharToOemW
WINNLSGetEnableStatus
DefDlgProcW
TrackPopupMenuEx
GetScrollBarInfo
InvalidateRect
GetKeyboardLayout
DrawIcon
ReplyMessage
ChangeDisplaySettingsW
InsertMenuW
DefFrameProcA
ToAscii
UnpackDDElParam
SetRect
DispatchMessageA
RegisterClassA
UnhookWindowsHookEx
LoadIconW
ScrollWindowEx
GetMenuContextHelpId
PostQuitMessage
SetWindowRgn
SetCaretBlinkTime
GetWindowTextLengthA
RegisterClipboardFormatW
RealGetWindowClass

comctl32

ImageList_SetIconSize
CreatePropertySheetPage
ImageList_GetBkColor
ImageList_LoadImage
ImageList_DragMove
ImageList_BeginDrag
ImageList_GetImageInfo
ImageList_SetDragCursorImage
MakeDragList
CreateToolbar
CreateMappedBitmap
ImageList_ReplaceIcon
DrawInsert
InitCommonControlsEx
ImageList_DragEnter
ImageList_EndDrag
ImageList_DragLeave
InitMUILanguage

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c362a47a5804535f1fb5f8620e6bd41

Headers

File Characteristics

Imports

comdlg32

kernel32

user32

comctl32

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 112KB - Virtual size: 140KB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 112KB - Virtual size: 140KB

.rsrc
Size: 12KB - Virtual size: 9KB