66ff80e8534eb25256043bfd94b43646

Sharing

Copy URL

Twitter E-mail

General

Target

66ff80e8534eb25256043bfd94b43646
Size

221KB
MD5

66ff80e8534eb25256043bfd94b43646
SHA1

aec28d34d866495f69293907544299613828818f
SHA256

3e46253d02f9ace91e6d147abc734ccdd1da261c77eb9a782c673a0a743270c5
SHA512

5fc887965f9412e2f35104b7e6cb929ddb7c3395bf58ccdb72f62084539ced45e014afd3014a491e403d38d35339ca270af9c678679ff62c305f24d1274664b1
SSDEEP

6144:5JAYN+wPeuF45TgULYPB/3Lr9bcGuwc3O2T2OG:5JJkwmuF417YPB/7r2+c3O2T2O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66ff80e8534eb25256043bfd94b43646

Files

66ff80e8534eb25256043bfd94b43646
.exe windows:5 windows x86 arch:x86

cfad7c7033898de361eaa2000f31a69b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontFamiliesW
CreateEllipticRgnIndirect
GetRgnBox
ResizePalette
CreateFontIndirectW
PatBlt
GetDIBits
RestoreDC
CreatePalette
GetLayout
BitBlt
CreateRectRgn
IntersectClipRect
GetTextExtentPointW
GetTextExtentExPointW
DeleteDC
GetPixel
SetAbortProc
SetTextColor
StretchBlt
SetDIBitsToDevice
SetTextAlign
SetPaletteEntries
CreateCompatibleBitmap
SaveDC
RealizePalette
EndDoc
CreateDiscardableBitmap
CreatePenIndirect
SetBkColor
CreatePatternBrush
CreateBitmapIndirect
CreateRoundRectRgn
SetViewportOrgEx
GetTextFaceW
Polyline
SetRectRgn
SetBkMode
SetBitmapDimensionEx
SetROP2
WidenPath
PolyBezier
StartPage
CreateCompatibleDC
GetNearestPaletteIndex
CombineRgn

kernel32

GlobalHandle
GetCurrentDirectoryW
SetEvent
GetSystemWindowsDirectoryA
HeapWalk
lstrlenW
CreateEventA
FindNextFileA
GetThreadTimes
lstrcmpA
LoadLibraryW
SetCurrentDirectoryA
GetSystemInfo
CopyFileW
HeapCreate
CancelIo
lstrcmpW
VerifyVersionInfoW
FindResourceA
GetCommConfig
DeviceIoControl
DuplicateHandle
GetSystemWindowsDirectoryW
GetModuleFileNameA
GlobalLock
DisconnectNamedPipe
GetStdHandle
GetShortPathNameW
VerSetConditionMask
GetFullPathNameW
FileTimeToLocalFileTime
FlushFileBuffers
IsBadCodePtr
LocalAlloc
SetThreadPriority
CreateFileA
LeaveCriticalSection
GetProcAddress
FindFirstFileA
GlobalFindAtomW
SetUnhandledExceptionFilter
HeapValidate
GetFileAttributesA
lstrcpyW
CreateThread
ReadFile
GetTimeFormatA
SetCommMask
IsValidLocale
GetLocaleInfoA

user32

SetMenu
GrayStringW
GetDesktopWindow
MapWindowPoints
VkKeyScanW
EnableScrollBar
FindWindowExW
SetScrollRange
DrawFrameControl
LoadBitmapW
GetSysColor
ReleaseDC
GetMenuStringW
InsertMenuA
MessageBoxA
ModifyMenuW
MapDialogRect
CharLowerW
KillTimer
SendDlgItemMessageA
GetDCEx
SetWindowLongW
SetWindowPos
CreatePopupMenu
GetKeyboardType
RegisterWindowMessageW
EnableMenuItem
HiliteMenuItem
GetCursorPos
GetUpdateRgn
LookupIconIdFromDirectory
TabbedTextOutW
GetParent
IsDialogMessageA
UnloadKeyboardLayout
GetFocus
SetMenuDefaultItem
FrameRect
DefDlgProcW
RegisterClassExA
GetMenuItemCount
DeleteMenu
MapVirtualKeyA
CallWindowProcA
MessageBoxExA
GetMessageA
SetCursor
IsCharAlphaNumericW
InternalGetWindowText
GetClassInfoA
GetNextDlgGroupItem
CreateDialogIndirectParamW
RegisterClassA
InvertRect
ShowOwnedPopups
GetWindow
RegisterClassW
MoveWindow
CallWindowProcW
GetDlgItemInt
DialogBoxParamW
GetDlgCtrlID
LoadBitmapA
GetMenuState
MonitorFromPoint
GetDlgItem
GetAsyncKeyState
CreateIconFromResource
EndTask
GetSubMenu
DialogBoxIndirectParamW
GetMessageExtraInfo
CharPrevA
DialogBoxParamA
SetUserObjectInformationW
ChangeMenuW
SetScrollPos
SetDlgItemInt
RedrawWindow
ValidateRect
IsWindow
TranslateMessage
OpenIcon
AppendMenuW
SetWindowTextA
GetWindowPlacement
CascadeWindows
GetScrollInfo
IsWindowVisible
DefDlgProcA
ScreenToClient
RegisterClassExW
wvsprintfW
GetSysColorBrush
LoadCursorA
GetTopWindow
CreateCursor
GetMenuItemID
DefFrameProcW
GetClassNameW
GetClassInfoExA
LoadAcceleratorsA
LoadMenuA
GetWindowTextA
ToUnicodeEx
InSendMessageEx
UpdateWindow
SendMessageW
SendMessageA
CharNextExA

msvcrt

_controlfp
iswctype
wcstok
realloc
ftell
wcspbrk
putchar
fputs
isspace
__set_app_type
calloc
__p__fmode
wcstod
fflush
malloc
time
wcscspn
wcstol
__p__commode
remove
wcsncmp
_amsg_exit
srand
_initterm
_ismbblead
wcscat
_XcptFilter
iswprint
strcspn
_exit
fgets
_cexit
free
mbstowcs
__setusermatherr
islower
fprintf
wcscpy
clearerr
__getmainargs
wcsstr
gets
qsort
fgetc

Exports

Exports

?DecrementProviderExW@@YGPADPAFK[W

Sections

.text
Size: 186KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.packed
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfad7c7033898de361eaa2000f31a69b

Headers

File Characteristics

Imports

gdi32

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 186KB - Virtual size: 186KB

.packed Size: 13KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 186KB - Virtual size: 186KB

.packed
Size: 13KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 2KB - Virtual size: 1KB