66ecf0c2d3d239742c6ae628f208c887

Sharing

Copy URL Twitter E-mail

General

Target

66ecf0c2d3d239742c6ae628f208c887
Size

103KB
MD5

66ecf0c2d3d239742c6ae628f208c887
SHA1

b509dd9d657424838c8835fb047fb10faefe2ae5
SHA256

32a88b8de743d6008d192e1a9e76d5b648ab15cd008cce02798b824f9684f100
SHA512

7b575499317002a1b2ac634ce2f09b774b8e07efb111b95d0a4be0beb591e158694843dd3efb0c39a1566e222614ffac10c9c4e701064e969ff8c9b87d802a61
SSDEEP

1536:CNVyeWzx22zF0+JDXVUD7lCdVOY2SVtV8d3og3kAv76vxerfsySFXlrBs:WBWzs2zF0+JDlUD5iVj1tV8FbUlxCRL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66ecf0c2d3d239742c6ae628f208c887

Files

66ecf0c2d3d239742c6ae628f208c887
.dll windows:4 windows x86 arch:x86

4b293f523c74933ec540e404e1b44409

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CopyRect
DialogBoxParamW
DrawIcon
InsertMenuA
CopyIcon
GetFocus
AppendMenuW
CopyImage
GetWindowTextA
CloseWindow
LoadCursorA
GetWindowTextLengthA
AlignRects
LoadCursorA
LoadMenuA
GetWindowTextLengthA
CopyImage
GetFocus
CopyRect
IsMenu
GetDlgItem
CalcMenuBar
DrawTextA
GetDC
CloseWindow
DialogBoxParamA
CalcMenuBar
GetDC
DrawIconEx
AppendMenuA
CopyIcon
GetFocus
GetMenu
DialogBoxParamW
IsWindow
IsWindow
AppendMenuW
EndDialog
GetDlgItem
DrawTextW
DrawIcon
IsMenu
BlockInput
CloseWindow
GetWindowTextA
GetMenu
CopyRect
DrawTextA
DrawIconEx
CopyImage
LoadMenuA
InsertMenuA
GetDC
DrawTextW
EndDialog
LoadCursorA
GetWindowTextLengthA
AppendMenuA
GetWindowTextA
InsertMenuA
IsMenu
CopyIcon
CloseWindow
GetMenu

kernel32

CreateProcessA
DeleteFileW
FindFirstFileA
CopyFileExA
FindAtomA
CreateDirectoryA
ExitThread
WriteFile
DeleteFileA
GetFileTime
GetCommandLineA
GetCPInfo
ReadFile
CopyFileA
OpenFileMappingA
CreateThread
CopyFileW
Sleep
GlobalFree
DeleteFileA
GetConsoleMode
SetLastError
DeleteAtom
CreateProcessA
FindFirstFileA
ExitThread
CreateDirectoryA
GetFileTime
DeleteAtom
ReadConsoleA
Sleep
OpenFileMappingA
DeleteFileA
GetFileSize
WriteFile
GetConsoleMode
GetStdHandle
CopyFileW
CreateProcessA
FindFirstFileA
CreateThread
GetLastError
DeleteAtom
SetLastError
ReadFile
FindAtomA
GetStdHandle
ReadConsoleA
CopyFileW
CopyFileA
GetFileSize
CreateProcessA
Sleep
GlobalFree
ExitThread

advapi32

RegDeleteKeyA
RegEnumKeyW
RegCreateKeyExW
RegCreateKeyExA
RegOpenKeyExW
RegDeleteKeyW
RegLoadKeyW
RegCreateKeyW
RegEnumValueW
RegOpenKeyExA

comctl32

ImageList_GetDragImage
InitCommonControls
ImageList_DragMove
ImageList_GetIcon
ImageList_Draw
ImageList_DragLeave
ImageList_LoadImage
ImageList_DrawIndirect
ImageList_LoadImageA
ImageList_AddIcon
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_Replace
ImageList_DragShowNolock
ImageList_GetImageRect
ImageList_GetImageCount
ImageList_EndDrag
ImageList_GetIconSize

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b293f523c74933ec540e404e1b44409

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

Sections

.text Size: 6KB - Virtual size: 5KB

.data Size: - Virtual size: 1KB

.init Size: 89KB - Virtual size: 89KB

.idata Size: 4KB - Virtual size: 3KB

.edata Size: 1024B - Virtual size: 860B

.rdata Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 84KB

.text
Size: 6KB - Virtual size: 5KB

.data
Size: - Virtual size: 1KB

.init
Size: 89KB - Virtual size: 89KB

.idata
Size: 4KB - Virtual size: 3KB

.edata
Size: 1024B - Virtual size: 860B

.rdata
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 84KB