70ec342d2793b6893aade980bbbdd0d9

Sharing

Copy URL Twitter E-mail

General

Target

70ec342d2793b6893aade980bbbdd0d9
Size

560KB
MD5

70ec342d2793b6893aade980bbbdd0d9
SHA1

bacf07c0de23cf5256a8b718af3920b7bfc4c2ea
SHA256

aa44d7ff6f602a961dc4eab7ab47aa2e60cfe9608d65c27ee3900c7cc665ab3a
SHA512

f3ec6752ee4db12aa0d97e955defcd9bc8ddbdb5bec537e994710ab27ac55059b5334c0e37cf7405a9e3e6ab49d4a29f7c7d7498ef7998cf7512c631dce78a94
SSDEEP

12288:cLjq6DtfkEqfbkecXa7OnFRBORay66fOXRnfYZr:qjqEtMTfhQORaJ62XRfYZr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70ec342d2793b6893aade980bbbdd0d9

Files

70ec342d2793b6893aade980bbbdd0d9
.exe windows:4 windows x86 arch:x86

444448f104ca21bccbe818d426d5b2cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
DdeNameService
SetThreadDesktop
IsWindow
MessageBoxW
CharNextA
CreateWindowExW
CharUpperW
LoadIconA
IsDlgButtonChecked
SetWinEventHook
ShowWindow
GetAltTabInfo
ClipCursor
MapVirtualKeyExA
MoveWindow
GetWindowDC
LoadBitmapW
EnumWindows
SetClassWord
SetRectEmpty
BroadcastSystemMessageA
OpenDesktopA
GetMenuInfo
DestroyWindow
LoadCursorFromFileA
CopyIcon
GetClipboardOwner
RegisterClassExA
GetMenuStringW
DragObject
MessageBoxA
RegisterClassA
DefWindowProcA
ExitWindowsEx

kernel32

GetSystemDirectoryA
LoadLibraryA
SuspendThread
lstrcpynA
WriteConsoleInputW
TlsFree
SetEnvironmentVariableA
GetCompressedFileSizeA
GlobalFindAtomA
GetCurrentThreadId
TlsSetValue
GetUserDefaultLCID
FreeEnvironmentStringsA
GetCurrentThread
IsValidLocale
GetStartupInfoA
SetHandleCount
CopyFileA
SetLastError
GetEnvironmentStringsW
GetOEMCP
CompareStringW
TransactNamedPipe
GetProcAddress
FlushInstructionCache
SetVolumeLabelW
EnumDateFormatsW
WideCharToMultiByte
IsValidCodePage
GetStringTypeA
RemoveDirectoryW
EnterCriticalSection
SetCurrentDirectoryW
SystemTimeToFileTime
GetNamedPipeInfo
HeapSize
SetStdHandle
GlobalReAlloc
EnumCalendarInfoW
UnhandledExceptionFilter
SetFilePointer
DeleteAtom
FindResourceExW
HeapAlloc
GetTimeFormatA
TryEnterCriticalSection
GetFileType
LocalReAlloc
TlsAlloc
GetModuleFileNameA
GlobalFree
GetSystemTimeAsFileTime
OpenFile
MoveFileExW
OutputDebugStringW
SetWaitableTimer
ExitProcess
LCMapStringA
CreateProcessW
GlobalFlags
InterlockedExchange
InitializeCriticalSection
CompareStringA
HeapCreate
GetCurrentProcess
GetLastError
WriteFile
GetComputerNameW
GetLocaleInfoA
ReadConsoleOutputA
InterlockedIncrement
DeleteCriticalSection
OpenFileMappingW
HeapDestroy
FreeEnvironmentStringsW
GetModuleHandleA
RemoveDirectoryA
CreatePipe
IsBadWritePtr
VirtualQuery
VirtualProtectEx
GetEnvironmentStrings
HeapReAlloc
ReadFile
GetVersionExA
HeapFree
GetLocaleInfoW
FreeLibraryAndExitThread
VirtualFree
LocalShrink
CreateSemaphoreA
FlushFileBuffers
GetStdHandle
EnumSystemLocalesA
LeaveCriticalSection
VirtualAlloc
EnumSystemCodePagesW
GetDateFormatA
WaitForSingleObject
GetSystemInfo
CreateToolhelp32Snapshot
CloseHandle
CreateWaitableTimerW
TlsGetValue
GetTickCount
GlobalAddAtomW
GetModuleHandleW
MultiByteToWideChar
DosDateTimeToFileTime
GetCurrentProcessId
EnumDateFormatsA
OpenMutexA
GetCommandLineW
GetCPInfo
GetCommandLineA
QueryPerformanceCounter
CreateMutexA
RtlUnwind
GetTimeZoneInformation
TerminateProcess
VirtualProtect
LocalFileTimeToFileTime
GetLongPathNameW
GetStringTypeW
GetACP
LCMapStringW
lstrcatW

comctl32

DestroyPropertySheetPage
ImageList_SetBkColor
CreatePropertySheetPageW
CreateToolbar
ImageList_Add
InitCommonControlsEx
CreateUpDownControl
ImageList_LoadImageW
GetEffectiveClientRect
ImageList_Create
ImageList_GetImageCount
CreateStatusWindow
ImageList_DragLeave
ImageList_Write
InitMUILanguage
CreateToolbarEx
ImageList_LoadImage
ImageList_GetIcon

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

444448f104ca21bccbe818d426d5b2cf

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 252KB - Virtual size: 249KB

.data Size: 112KB - Virtual size: 130KB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 252KB - Virtual size: 249KB

.data
Size: 112KB - Virtual size: 130KB

.rsrc
Size: 32KB - Virtual size: 29KB