732a39709a324823de72bf0cce088607

Sharing

Copy URL

Twitter E-mail

General

Target

732a39709a324823de72bf0cce088607
Size

110KB
MD5

732a39709a324823de72bf0cce088607
SHA1

6f7ab871265e0ba6d4bcc8f1d82bf4d388a461ee
SHA256

77f9c33f054156e4d21365d1a675c72798061174d54e301d6d0f49ba66b86c32
SHA512

5bdd42942592bc9bd52ee8cb3d386a76a50c337f9f61d0e9462004d0465c8a30dc017334f331ba5a82dd33d8bb7ebfaf4060a356db76ecb7122e2b056db01104
SSDEEP

1536:jdezQwl2Qxcdn++X/t3lUzfLH3SR1MnEgfglWN/tkXvevUBUmwwy:Re7l2Qxcx/XUzW1MnEJle/ESrmM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
732a39709a324823de72bf0cce088607

Files

732a39709a324823de72bf0cce088607
.exe windows:4 windows x86 arch:x86

806b56e08a2326f131db86ab3748561c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegLoadKeyA
RegQueryInfoKeyA
RegEnumKeyExA
GetLengthSid

kernel32

GetCommandLineA
GetModuleHandleA
VirtualAllocEx
ExitProcess
LoadLibraryExA

comdlg32

FindTextA

ole32

GetHGlobalFromStream
CoCreateInstanceEx
StgOpenStorage
CoUnmarshalInterface
MkParseDisplayName
CoReleaseMarshalData
StringFromIID
CoCreateFreeThreadedMarshaler

shlwapi

SHQueryInfoKeyA
SHGetValueA
PathGetCharTypeA

version

VerQueryValueA
VerInstallFileA
GetFileVersionInfoA

shell32

DragQueryFileA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
SHGetFolderPathA
SHGetFileInfoA

user32

GetSysColor
GetMenu
GetCursor
GetKeyNameTextA
GetKeyState
GetCapture
DrawIcon
SetCursor
BeginPaint
GetPropA
GetIconInfo
SetWindowTextA
CreateWindowExA
GetDlgItem
EnableWindow
CharNextA
CallNextHookEx
DrawMenuBar
GetScrollInfo
CharToOemA
GetWindow
EnableScrollBar
CheckMenuItem
GetFocus
GetSysColorBrush
GetDC
GetSubMenu
CharLowerA
FrameRect
GetMenuStringA
GetWindowTextA
GetClassLongA
DrawEdge
EqualRect
CreateIcon
RegisterClassA
GetMenuItemCount
IsWindowVisible
EnableMenuItem
FillRect
GetCursorPos
EndPaint
SystemParametersInfoA
FindWindowA
CreatePopupMenu
GetMenuItemInfoA
GetDesktopWindow
IsChild
DispatchMessageA
GetScrollRange
EnumThreadWindows
GetMenuItemID
MessageBoxA
GetActiveWindow
DrawFrameControl
EnumWindows
IsDialogMessageA
TrackPopupMenu
DispatchMessageW
GetClipboardData
GetScrollPos
DefMDIChildProcA
DefWindowProcA
GetParent
BeginDeferWindowPos
DrawIconEx
EndDeferWindowPos

gdi32

BitBlt
CreateBrushIndirect
GetDCOrgEx
LineTo
CreatePenIndirect

msvcrt

wcschr
exp
tolower
memcpy
memmove
strncmp
_acmdln
log10

comctl32

ImageList_DragShowNolock
ImageList_Create
ImageList_Write
ImageList_Destroy
ImageList_Read
ImageList_Draw
ImageList_Remove
ImageList_DrawEx

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

806b56e08a2326f131db86ab3748561c

Headers

File Characteristics

Imports

advapi32

kernel32

comdlg32

ole32

shlwapi

version

shell32

user32

gdi32

msvcrt

comctl32

Sections

.text Size: 48KB - Virtual size: 48KB

.bss Size: 3KB - Virtual size: 3KB

.idata Size: 57KB - Virtual size: 57KB

.text
Size: 48KB - Virtual size: 48KB

.bss
Size: 3KB - Virtual size: 3KB

.idata
Size: 57KB - Virtual size: 57KB