702bfe9bf870e1df7f1e4df7f38caf88

Sharing

Copy URL Twitter E-mail

General

Target

702bfe9bf870e1df7f1e4df7f38caf88
Size

576KB
MD5

702bfe9bf870e1df7f1e4df7f38caf88
SHA1

de46eb6c4743dc10b57337db8e8dcfb6db4a88b8
SHA256

bb45ca46f78dd687f5e81d2d5962eeef0573641b532b489854f5447f86fd654b
SHA512

ee10d25ece31e0f2d2bf09df32b16c4aba8c77184ca77cd0cdd0402cb4b17240fb6dbcdda7f4b33d529c3aee0aec760593f6acd2c49cbbdcc170840ddf28e3f7
SSDEEP

12288:tlL80aalpcoUDex9aKjE7H0sk0AR+CxxEacjjUXHl/q59:PL80feoUDGjEr0s9AR+CDEaGiM59

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
702bfe9bf870e1df7f1e4df7f38caf88

Files

702bfe9bf870e1df7f1e4df7f38caf88
.exe windows:4 windows x86 arch:x86

7d7c9dcbf004c1c54a294fe769ca53ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
ActivateKeyboardLayout
RegisterClassA
GetPriorityClipboardFormat
DeferWindowPos
GetMenuStringA
CreateDialogIndirectParamW
DdeCreateStringHandleW
DdeClientTransaction
EnumDisplaySettingsW
ExcludeUpdateRgn
DdeQueryStringA
AnimateWindow
GetWindowTextW
CharPrevA
DrawIcon
MessageBoxA
GetKeyboardLayoutNameA
SetDebugErrorLevel
GetClassInfoExW
GrayStringW
SetMessageExtraInfo
MsgWaitForMultipleObjectsEx
CreateWindowExA
CharToOemA
DdeReconnect
EnumDesktopsW
PaintDesktop
CreateIconFromResource
GetClipboardSequenceNumber
GetKeyboardLayoutNameW
SetSysColors
GetAltTabInfo
OpenDesktopW
EnumPropsExW
WinHelpA
GetAsyncKeyState
RegisterClipboardFormatA
ShowWindow
IsCharAlphaA
ToUnicodeEx
DdeDisconnectList
CharToOemBuffA
UnhookWinEvent
CharNextA
EnableMenuItem
DlgDirListW
RegisterClassExA
CloseWindow
ToAscii
CharPrevW
SendMessageTimeoutA
IntersectRect
AppendMenuW
UnloadKeyboardLayout
IsClipboardFormatAvailable
IsMenu
LoadAcceleratorsW
GetMenuInfo
ArrangeIconicWindows
CallMsgFilterA
PostMessageA
EnumChildWindows
ChangeDisplaySettingsA
DestroyWindow
GetMonitorInfoW

comctl32

ImageList_Destroy
ImageList_GetImageInfo
InitMUILanguage
InitCommonControlsEx
DrawStatusTextW
DrawStatusText
DrawInsert
ImageList_Add
ImageList_DragEnter
ImageList_LoadImageW
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_SetFlags

kernel32

WriteFile
ExitProcess
OpenMutexA
MultiByteToWideChar
LocalFileTimeToFileTime
GetStringTypeExA
TerminateProcess
GetCurrentProcess
CloseHandle
VirtualUnlock
TlsAlloc
EnterCriticalSection
LCMapStringW
SetFileAttributesA
HeapDestroy
LoadLibraryA
GlobalLock
lstrcpynA
GetEnvironmentStrings
RaiseException
SetEnvironmentVariableA
HeapAlloc
RtlUnwind
GetNamedPipeHandleStateA
SetFilePointer
IsBadWritePtr
SetFileAttributesW
QueryPerformanceCounter
GetTimeFormatA
GetStringTypeW
RtlFillMemory
GetCurrentThreadId
GetFileAttributesW
IsValidCodePage
ReadFile
VirtualFree
OutputDebugStringW
InitializeCriticalSection
GlobalFindAtomA
GetUserDefaultLCID
GetOEMCP
GetCommandLineW
TlsGetValue
HeapCreate
TlsSetValue
GetSystemTimeAsFileTime
GetCommandLineA
GetVolumeInformationW
LoadLibraryExA
GetCPInfo
UnhandledExceptionFilter
GetEnvironmentVariableW
FlushFileBuffers
OpenSemaphoreW
CompareStringW
GetModuleFileNameW
EnumSystemLocalesA
GlobalHandle
GetProcAddress
GetSystemInfo
LoadLibraryW
GetTimeZoneInformation
GetCurrentThread
GetModuleFileNameA
PulseEvent
CreateWaitableTimerA
IsValidLocale
LeaveCriticalSection
DeleteCriticalSection
GetProfileIntW
FlushInstructionCache
InterlockedIncrement
GetStartupInfoW
HeapReAlloc
InterlockedExchange
AddAtomW
GetDiskFreeSpaceA
CompareStringA
HeapSize
WriteProfileSectionW
GetModuleHandleA
GetLastError
GetStdHandle
FreeEnvironmentStringsA
GetACP
GetCurrentProcessId
GetDriveTypeA
SetConsoleCursorPosition
WriteConsoleW
LCMapStringA
GetShortPathNameW
FreeEnvironmentStringsW
CreateMutexA
HeapFree
TlsFree
GetCurrencyFormatW
DeleteFileA
SetLastError
GetEnvironmentStringsW
WriteConsoleA
CreateWaitableTimerW
GetVersionExA
GetLocaleInfoA
WriteConsoleInputA
VirtualQuery
VirtualAlloc
GetDateFormatA
DeleteFileW
GetStringTypeA
WideCharToMultiByte
GetLocaleInfoW
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetStartupInfoA
GetTickCount
WaitNamedPipeW
lstrlenW
GetDateFormatW
VirtualProtect
GetFileType
ResetEvent
SetHandleCount
lstrcatA

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d7c9dcbf004c1c54a294fe769ca53ff

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 172KB - Virtual size: 168KB

.rdata Size: 256KB - Virtual size: 252KB

.data Size: 112KB - Virtual size: 125KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 172KB - Virtual size: 168KB

.rdata
Size: 256KB - Virtual size: 252KB

.data
Size: 112KB - Virtual size: 125KB

.rsrc
Size: 32KB - Virtual size: 31KB