716d9c46a3a896ff776132ad7b46c3fb

Sharing

Copy URL

Twitter E-mail

General

Target

716d9c46a3a896ff776132ad7b46c3fb
Size

222KB
MD5

716d9c46a3a896ff776132ad7b46c3fb
SHA1

40d6de046d157aff1ed24a4b2a854560eb4aaec5
SHA256

7f4a3ea921540e70fabd10ad63e1bc317b0dd6e003b00344ff67972483b9e999
SHA512

659851eaa0cdf33b1e1b6781c37311969fe3dd081c5b6ea6bf367b6e558138bfbbf7aabe89a1ec2a73b532abb3a81828f2dd84e396cb718ebc81a5a4ae700f05
SSDEEP

6144:dNQqTVl2aZXdbolhwRbgNTrpOE3qUSU32LYTIzqGFkz:dGqTVl2edolK4P3quOYTIqGWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

716d9c46a3a896ff776132ad7b46c3fb

resource
716d9c46a3a896ff776132ad7b46c3fb

Files

716d9c46a3a896ff776132ad7b46c3fb
.exe windows:5 windows x86 arch:x86

2f67dcb63b53ab28a184a55f90022d46

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgExW
GetOpenFileNameW
FindTextW

shlwapi

StrNCatA

user32

IsChild
InsertMenuW
GetMenuStringA
CheckRadioButton
ReleaseDC
GetTopWindow
UpdateWindow
DefDlgProcW
SetTimer
DefDlgProcA
RemovePropW
IsZoomed
MapWindowPoints
FillRect
MapVirtualKeyExW
DeferWindowPos
GetSystemMetrics
GetClassInfoExW
GetClassLongA
CopyAcceleratorTableW
MessageBoxW
IsRectEmpty
CharUpperA
DestroyWindow
GetWindowRect
SetWindowRgn
DefWindowProcA
UnloadKeyboardLayout
ShowWindow

kernel32

LoadLibraryExA
GetCommConfig
GetTempPathW
lstrlenW
LoadLibraryA
SizeofResource
WaitForMultipleObjects
GetNumberFormatA
LoadLibraryW
ResumeThread
LocalAlloc
LoadResource
SetThreadLocale
LocalFree
lstrcpynW
FindResourceExW
GetDateFormatA

gdi32

Rectangle
GetSystemPaletteEntries
Polyline
CreateHalftonePalette
GetLayout
PtVisible
CreateRoundRectRgn
SetTextAlign
ScaleWindowExtEx
BitBlt
SetBitmapDimensionEx
ScaleViewportExtEx
RemoveFontResourceW

Exports

Exports

?KJFDkljfljhUYDFuifUKYFlKFilFUYFUIh@@YGKEPA_WG@Z

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f67dcb63b53ab28a184a55f90022d46

Headers

File Characteristics

Imports

comdlg32

shlwapi

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 69KB - Virtual size: 68KB

.mdata Size: 12KB - Virtual size: 12KB

.data Size: 35KB - Virtual size: 194KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 69KB - Virtual size: 68KB

.mdata
Size: 12KB - Virtual size: 12KB

.data
Size: 35KB - Virtual size: 194KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB