72c58d9118ffe16d8d534b3a9758650a

Sharing

Copy URL Twitter E-mail

General

Target

72c58d9118ffe16d8d534b3a9758650a
Size

584KB
MD5

72c58d9118ffe16d8d534b3a9758650a
SHA1

3cf2dd5ebd2cb0a5ab9e218bd893438346b1908f
SHA256

09adbf98587f883403cf150f40acfc4d455925b97424dfd5c68ae94376310185
SHA512

e2a6939cf32a1c2af2c814fb580d03b0323423af166ff44c36bf0d8d368f98fe0bb16cff89337efc9be330aab33d6f3bbbc29db1d8c5d4a7c8151e08793ffdad
SSDEEP

12288:Vaeuq9yjtxMLu5YTRt2KilCSF3s0zcvjKT2xj:zEx6u50RtvilC8s0zny

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72c58d9118ffe16d8d534b3a9758650a

Files

72c58d9118ffe16d8d534b3a9758650a
.exe windows:4 windows x86 arch:x86

c9c78e9de7538513fd442b2a91fd117d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumDisplayDevicesW
MessageBoxA
CreateWindowExA
IsCharAlphaNumericW
GetWindowInfo
GetParent
RegisterClassA
SetDebugErrorLevel
EnumPropsExW
MapVirtualKeyExW
CreatePopupMenu
CallMsgFilterW
DdeInitializeA
DestroyWindow
IntersectRect
DispatchMessageW
CreateMDIWindowW
GetClassLongA
ValidateRgn
SetMenuDefaultItem
GetDC
DrawIconEx
RegisterClassExA
CharPrevExA
DestroyIcon
DefWindowProcA
ShowWindow
CopyRect
GetUserObjectInformationA
ClientToScreen

kernel32

CloseHandle
GetEnvironmentStringsW
UnlockFile
GetProfileStringW
LeaveCriticalSection
GetCPInfo
QueryPerformanceCounter
GetCommandLineA
WaitForMultipleObjectsEx
HeapReAlloc
UnhandledExceptionFilter
OpenMutexA
HeapAlloc
LCMapStringW
GetModuleFileNameA
SetEnvironmentVariableA
GetProfileStringA
MultiByteToWideChar
VirtualAlloc
IsValidCodePage
VirtualProtectEx
EnterCriticalSection
CompareStringW
IsBadWritePtr
CreateMutexA
GetModuleHandleW
VirtualQuery
SetStdHandle
LocalSize
ReadFile
TerminateProcess
GetACP
LCMapStringA
HeapCreate
GetLocaleInfoW
FreeResource
CompareStringA
GetModuleHandleA
GetCurrentProcess
GetVersionExA
LoadLibraryA
GetConsoleTitleW
ExitProcess
GetMailslotInfo
IsValidLocale
GetCurrentProcessId
GetStringTypeA
EnumSystemLocalesA
DeleteCriticalSection
FindResourceW
lstrcatA
GetSystemTimeAsFileTime
VirtualFree
GetFileType
RtlUnwind
InterlockedCompareExchange
GetTickCount
TlsFree
WriteFile
VirtualProtect
GetNumberFormatA
FreeEnvironmentStringsA
HeapSize
SetLastError
GetUserDefaultLCID
GetStartupInfoA
GetLocaleInfoA
TlsSetValue
HeapDestroy
TlsGetValue
InitializeCriticalSection
GetEnvironmentStrings
TlsAlloc
SetFilePointer
FreeEnvironmentStringsW
GetStdHandle
GetTimeZoneInformation
ExpandEnvironmentStringsA
WideCharToMultiByte
IsDebuggerPresent
GetProcAddress
GetCurrentThreadId
GlobalUnlock
FlushFileBuffers
GetTimeFormatA
GetOEMCP
HeapFree
GetStringTypeW
InterlockedExchange
GetDateFormatA
SetHandleCount
CompareFileTime
GetLastError
GetCompressedFileSizeA
GetSystemInfo
GetCurrentThread
TryEnterCriticalSection
SetConsoleCursorInfo

comdlg32

GetOpenFileNameW
PageSetupDlgA

comctl32

ImageList_GetImageCount
ImageList_LoadImage
ImageList_AddMasked
InitCommonControlsEx
DrawInsert
ImageList_Merge
ImageList_DrawEx
ImageList_GetBkColor
GetEffectiveClientRect
CreateToolbar
ImageList_Destroy
ImageList_GetImageRect
ImageList_SetOverlayImage
ImageList_GetFlags
ImageList_EndDrag

gdi32

SetDIBitsToDevice
CreateDCA
PolyDraw
DeleteDC
CreateDIBPatternBrush
DeleteObject
SetMiterLimit
GetDeviceCaps
PtVisible
GetLogColorSpaceA
GetObjectW
SelectObject

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9c78e9de7538513fd442b2a91fd117d

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

comctl32

gdi32

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 120KB - Virtual size: 132KB

.rsrc Size: 52KB - Virtual size: 49KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 120KB - Virtual size: 132KB

.rsrc
Size: 52KB - Virtual size: 49KB