67b3343a55f72e226a09074d621123c5

Sharing

Copy URL Twitter E-mail

General

Target

67b3343a55f72e226a09074d621123c5
Size

185KB
MD5

67b3343a55f72e226a09074d621123c5
SHA1

81ae630b377a7121f27ff14c21ac6530fe525fc6
SHA256

405e1a4064a34074a5917b78ed84a9cfcbedda8539ac436e0dfa038dfc156154
SHA512

cd1ec20ca7c55ee78a5d8a7e1a6da6299a84fd482f3b74582a2c56e55e35ef0d0ecb03b9a91f60dd3236444aa6dd217f1954ae90e60f5b2385c61a5705e08484
SSDEEP

3072:CqPIHd8+aG0UWtddD3wbMG0M/rDatYrfIHwxfrwMcjh4jAacf3DBka:Da85G0ndJwbMK/r8O5sMcjh4y3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67b3343a55f72e226a09074d621123c5

Files

67b3343a55f72e226a09074d621123c5
.exe windows:4 windows x86 arch:x86

55bf398356f40ea12da81435bf65a6cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW

winmm

timeGetTime
timeSetEvent

version

VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueA

advapi32

RegQueryInfoKeyA
CryptAcquireContextA
CryptReleaseContext
RegOpenKeyExA
CryptDestroyKey
CryptEncrypt
CryptHashData
RegCreateKeyExA
CryptCreateHash
RegSetValueExA
CryptGetHashParam
RegQueryValueExA
CryptImportKey
CryptDestroyHash
RegEnumValueA
RegCloseKey
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

ole32

CreateStreamOnHGlobal
CoGetClassObject
CoUninitialize
CreateBindCtx
CreateItemMoniker
BindMoniker
OleInitialize
CoTaskMemAlloc
OleUninitialize
CLSIDFromProgID
StringFromGUID2
OleLockRunning
CoInitialize
CoTaskMemFree
StgOpenStorage
StgCreateDocfile
CoCreateInstance
StgIsStorageFile
CoSetProxyBlanket
CoTaskMemRealloc
CoInitializeSecurity
GetRunningObjectTable
CLSIDFromString

kernel32

DisableThreadLibraryCalls
CreateFileA
GetShortPathNameW
GetFileSize
UnmapViewOfFile
LocalFree
CreateFileMappingA
GetProcessAffinityMask
GlobalAlloc
WriteFile
GlobalSize
EnumResourceTypesW
ReadFile
LocalAlloc
WideCharToMultiByte
MapViewOfFile
GetFileAttributesA
CreateFileW
Sleep
SetFilePointer
GetTickCount
GlobalFree
CloseHandle

gdiplus

GdipGetImagePixelFormat
GdipDisposeImage
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipFree
GdipAlloc
GdipCloneImage

user32

MsgWaitForMultipleObjects
InvalidateRect
CreateDialogParamA
GetWindowTextLengthA
EqualRect
PostMessageA
GetParent
ShowWindow
SetFocus
GetDC
UnregisterClassA
GetDesktopWindow
SetTimer
CreateAcceleratorTableA
FillRect
CharNextA
EnumDisplayDevicesA
EndPaint
SendNotifyMessageA
SendMessageTimeoutA
wsprintfA
DestroyAcceleratorTable
CallWindowProcA
GetActiveWindow
DefWindowProcA
SetRect
SendMessageA
wvsprintfA
ReleaseDC
SetWindowLongA
IsChild
GetFocus
DestroyWindow
SetWindowTextA
ReleaseCapture
GetWindow
SetCapture
IsWindow
PeekMessageA
SetParent
RedrawWindow
GetWindowLongA
GetDlgItem
PostThreadMessageA
GetQueueStatus
InvalidateRgn
CreateWindowExA
RegisterClassExA
DrawTextA
GetClientRect
FindWindowA
GetClassNameA
RegisterWindowMessageA
CopyRect
GetClassInfoExA
MoveWindow
GetWindowTextA
DispatchMessageA
LoadCursorA
GetSysColor
KillTimer
GetWindowRect
BeginPaint
SetWindowPos

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

gdi32

StretchDIBits
CreateFontA
BitBlt
ExtEscape
SetStretchBltMode
GetStockObject
GetDeviceCaps
CreateCompatibleBitmap
RealizePalette
CreateCompatibleDC
DeleteObject
GetObjectA
SelectPalette
DeleteDC
CreateSolidBrush
CreateDIBSection
GetDIBits
SelectObject
CreateDIBitmap
SetBkMode

wininet

InternetOpenUrlA
InternetOpenA
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55bf398356f40ea12da81435bf65a6cd

Headers

File Characteristics

Imports

shlwapi

winmm

version

advapi32

shell32

ole32

kernel32

gdiplus

user32

setupapi

gdi32

wininet

Sections

.text Size: 105KB - Virtual size: 104KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 73KB - Virtual size: 72KB

.tls Size: 1024B - Virtual size: 116KB

.text
Size: 105KB - Virtual size: 104KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 73KB - Virtual size: 72KB

.tls
Size: 1024B - Virtual size: 116KB