7119987850b5f2beb92fa090de24798b

Sharing

Copy URL Twitter E-mail

General

Target

7119987850b5f2beb92fa090de24798b
Size

175KB
MD5

7119987850b5f2beb92fa090de24798b
SHA1

ce5ddaef03f92ddce860235d36aa4ebf08ceac37
SHA256

ee012d2aae90aad1be552498d61285ff304ec07df8d057ebe040c3bfeb16c324
SHA512

d0c10ac2fc50bf7ae893f95de56f8fdef8548fc6ba44b24198b7f45cc7e231783fafece77f1c527197c1a51c14b43de2c34a47909f6f952529b72ec86ed3b292
SSDEEP

3072:6SI/LNq25PZTcTPwpTXCRWecoT6PdsNhgsbBaMK3XnMBozB:bMNFdc8ERWezImNPKl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7119987850b5f2beb92fa090de24798b

Files

7119987850b5f2beb92fa090de24798b
.exe windows:4 windows x86 arch:x86

3ff0f354d95a05891c9ece0d790ba462

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW

gdi32

SetStretchBltMode
GetObjectA
DeleteObject
GetDeviceCaps
CreateDIBSection
CreateFontA
CreateSolidBrush
StretchDIBits
CreateDIBitmap
DeleteDC
CreateCompatibleDC
BitBlt
ExtEscape
SelectObject
GetDIBits
RealizePalette
CreateCompatibleBitmap
SelectPalette
GetStockObject
SetBkMode

ole32

StgOpenStorage
StgIsStorageFile
CreateStreamOnHGlobal
CoTaskMemFree
OleInitialize
OleLockRunning
CoGetClassObject
CoCreateInstance
StringFromGUID2
CreateBindCtx
CoUninitialize
CreateItemMoniker
CoInitializeSecurity
CoInitialize
GetRunningObjectTable
BindMoniker
CoTaskMemRealloc
StgCreateDocfile
OleUninitialize
CLSIDFromProgID
CoTaskMemAlloc
CoSetProxyBlanket
CLSIDFromString

advapi32

CryptReleaseContext
RegSetValueExA
CryptAcquireContextA
RegCreateKeyExA
RegOpenKeyExA
CryptCreateHash
CryptImportKey
RegEnumKeyExA
CryptGetHashParam
CryptDestroyHash
RegEnumValueA
CryptEncrypt
RegQueryValueExA
CryptDestroyKey
CryptHashData
RegDeleteValueA
RegQueryInfoKeyA
RegCloseKey
RegDeleteKeyA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

kernel32

GetLongPathNameW
LocalAlloc
WideCharToMultiByte
SetFilePointer
DisableThreadLibraryCalls
GetProcessHandleCount
CreateFileW
GetFileSize
ReadFile
WriteFile
GetTickCount
Sleep
EnumResourceTypesA
GlobalSize
UnmapViewOfFile
GlobalAlloc
GetFileAttributesA
GlobalFree
MapViewOfFile
LocalFree
CreateFileA
CreateFileMappingA
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

user32

EqualRect
PostMessageA
RegisterWindowMessageA
BeginPaint
GetWindowRect
GetActiveWindow
SetTimer
ReleaseDC
GetWindowTextLengthA
CreateWindowExA
DispatchMessageA
wvsprintfA
SetWindowTextA
EndPaint
SendNotifyMessageA
FindWindowA
CreateDialogParamA
KillTimer
IsWindow
RegisterClassExA
GetClientRect
CallWindowProcA
SetWindowLongA
ShowWindow
CharNextA
GetDC
DestroyWindow
RedrawWindow
PeekMessageA
ReleaseCapture
CopyRect
GetWindow
InvalidateRect
MoveWindow
GetClassNameA
GetWindowTextA
GetDlgItem
EnumDisplayDevicesA
SetCapture
GetFocus
GetDesktopWindow
SendMessageA
SendMessageTimeoutA
SetFocus
IsChild
DestroyAcceleratorTable
FillRect
GetParent
LoadCursorA
MsgWaitForMultipleObjects
DefWindowProcA
GetWindowLongA
UnregisterClassA
CreateAcceleratorTableA
DrawTextA
SetParent
SetRect
InvalidateRgn
GetClassInfoExA
wsprintfA
GetSysColor
PostThreadMessageA
GetQueueStatus
SetWindowPos

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ff0f354d95a05891c9ece0d790ba462

Headers

File Characteristics

Imports

shlwapi

gdi32

ole32

advapi32

wininet

setupapi

kernel32

shell32

user32

Sections

.text Size: 98KB - Virtual size: 97KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 70KB - Virtual size: 70KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 98KB - Virtual size: 97KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 70KB - Virtual size: 70KB

.tls
Size: 1024B - Virtual size: 92KB