68095a702a281b766afb1f60c1469bf9

Sharing

Copy URL

Twitter E-mail

General

Target

68095a702a281b766afb1f60c1469bf9
Size

98KB
MD5

68095a702a281b766afb1f60c1469bf9
SHA1

2dbf55f281ae301f02c52a907bca3917d1ca9acd
SHA256

267e2f1993140068d727134c729c35aa214d3d9f3b89ae7565a07166e60d0e02
SHA512

bf910a757610965c2018ec4a7f317dff07ecb532b9abc31df4528602bc43769f4632d82cc21f8d2d3e2c7e26de3fa4cd87124cdab0a68449e15c7980509a6ea4
SSDEEP

1536:g/qKFhy3nBiwgoCCVDezyQeWc3mJr91f443vlyXJ5M4m/:657y3BiwtFaNr9Z/lyXJnC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68095a702a281b766afb1f60c1469bf9

Files

68095a702a281b766afb1f60c1469bf9
.exe windows:4 windows x86 arch:x86

8529ebd7acbc30c2007a4ccd9619ab1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
ShowScrollBar
GetParent
GetClassNameA
CreateMenu
RegisterClipboardFormatA
RemoveMenu
IsWindowEnabled
DrawTextA
LoadBitmapA
IsMenu
DeleteMenu
GetMenu
GetKeyboardType
GetCapture
TranslateMDISysAccel
KillTimer
UnhookWindowsHookEx
IsChild
RegisterWindowMessageA
IsCharUpperA
SetActiveWindow
GetSystemMetrics
SetScrollRange
GetSubMenu
OpenClipboard
ReleaseDC
IsCharLowerA
SetClassLongA
GetMenuItemID
OpenIcon
CharUpperBuffA
IsWindow
IsIconic
InflateRect
GetWindowPlacement
EnumWindows
GetKeyboardState
DefWindowProcA
PeekMessageA
EqualRect
GetMenuState
GetKeyState
SendMessageA
OemToCharA
SetPropA
InvalidateRect
ClientToScreen
GetMenuItemInfoA
GetKeyboardLayoutNameA
SetTimer
EnumChildWindows
SetParent
EnableMenuItem
CharNextW
GetScrollRange
GetActiveWindow
GetClientRect
UnregisterClassA
GetDesktopWindow
DrawEdge
GetTopWindow
DispatchMessageW

msvcrt

clock
swprintf
_acmdln
calloc
wcsncmp
rand
malloc
sprintf
atol
sqrt
wcschr
exit

gdi32

GetDIBColorTable
GetClipBox

kernel32

GetDiskFreeSpaceA
GetOEMCP
LockResource
GetCurrentThreadId
ExitThread
ExitProcess
LoadLibraryA
GetTempPathA
SetLastError
LocalFree
GlobalFindAtomA
GetLastError
GetDateFormatA
EnterCriticalSection
Sleep
SetThreadLocale
VirtualAllocEx
VirtualAlloc
LocalAlloc
GetLocaleInfoA
WideCharToMultiByte
ReadFile
lstrcmpiA
lstrcatA
SizeofResource

Exports

Exports

_rWjKiO

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fadata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8529ebd7acbc30c2007a4ccd9619ab1c

Headers

File Characteristics

Imports

user32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 48KB - Virtual size: 48KB

.edata Size: 2KB - Virtual size: 2KB

.fadata Size: 512B - Virtual size: 72B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 48KB - Virtual size: 48KB

.edata
Size: 2KB - Virtual size: 2KB

.fadata
Size: 512B - Virtual size: 72B

.rsrc
Size: 8KB - Virtual size: 8KB