73d7c830c2cb50e6dfeb2f78b4ec2b36

Sharing

Copy URL Twitter E-mail

General

Target

73d7c830c2cb50e6dfeb2f78b4ec2b36
Size

193KB
MD5

73d7c830c2cb50e6dfeb2f78b4ec2b36
SHA1

ff29c1d04922ccac5fb58c5d4d43654e3fded863
SHA256

534c629d9de09500a78546ad59deff629eff014b572f4036cc66e4e8054449dd
SHA512

33d599234e6dbf8e3aa14d625c0fca5e9cb9a4bb106fad521f39960bea41d56b58d7aedd7515850430a3ad15675bac8aaddaa20d981b01739abc702dfe28df52
SSDEEP

6144:LQEgP8kYxBV3Kg46zxvOovwW+3Gc/kWGk:kEA8kYxf3K2zxWYwz3Gc/gk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73d7c830c2cb50e6dfeb2f78b4ec2b36

Files

73d7c830c2cb50e6dfeb2f78b4ec2b36
.exe windows:4 windows x86 arch:x86

74832590d439cbbf0cecb0c4f222b04d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance
CoTaskMemAlloc
CoRevokeClassObject
StgOpenStorageOnILockBytes
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoRetireServer
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleUninitialize
CoUninitialize
StgCreateDocfileOnILockBytes
CoInitialize
OleFlushClipboard
CLSIDFromProgID
OleInitialize
CoGetClassObject
CoTaskMemFree
CLSIDFromString

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA

shlwapi

PathRemoveFileSpecA
PathAppendA

gdi32

CreatePatternBrush
Escape
SetPolyFillMode
MoveToEx
SelectClipRgn
EndDoc
GetGraphicsMode
CreatePalette
CloseFigure
CreateBitmap
SetMiterLimit
CombineRgn
FillPath
BeginPath
RealizePalette
IntersectClipRect
StrokePath
OffsetRgn
CreateDCW
StartDocW
CreateCompatibleDC
SaveDC
CreateBrushIndirect
SetWorldTransform
GetViewportOrgEx
GetStockObject
StretchDIBits
CreateDIBSection
PolyBezierTo
SetStretchBltMode
StartPage
GetWorldTransform
ModifyWorldTransform
SetBrushOrgEx
CreateCompatibleBitmap
PolylineTo
EqualRgn
GetClipBox
SetDIBits
CreatePolyPolygonRgn
StretchBlt
DeleteDC
SelectObject
AbortDoc
RestoreDC
EndPage
GetObjectA
SetGraphicsMode
PatBlt
CreateICW
CreateRectRgn
SetROP2
ExtCreatePen
GetCurrentObject
EndPath
DeleteObject
LineTo
Rectangle
GetDeviceCaps
ExtEscape
ExtSelectClipRgn
GetRegionData
ResetDCW
SelectPalette
GetDIBColorTable
GetRgnBox
SelectClipPath
BitBlt
PolyDraw

kernel32

GetWindowsDirectoryA
ReleaseMutex
GetCalendarInfoW
TerminateProcess
InterlockedIncrement
GetVersionExA
SetThreadPriority
GetSystemDirectoryA
EnterCriticalSection
GetTimeFormatA
lstrlenW
WideCharToMultiByte
ReadFile
GetFileSize
GetSystemTimeAsFileTime
GetACP
GetSystemDefaultLCID
TlsGetValue
LoadLibraryA
FindFirstFileA
GetUserDefaultLangID
GetLastError
GetTimeFormatW
GetDateFormatA
GetSystemInfo
GlobalUnlock
GetCurrentThread
DeleteCriticalSection
TlsFree
CreateSemaphoreA
Sleep
IsProcessorFeaturePresent
CreateMutexA
GetLocaleInfoA
lstrcmpW
ExitProcess
FreeLibrary
GetThreadPriority
FindClose
EnumResourceNamesA
GetModuleHandleA
GetCurrentProcessId
GlobalLock
GetProfileStringW
GetTempPathW
GetCurrentThreadId
GetCurrentProcess
GetThreadLocale
DeleteFileW
GetCurrentDirectoryA
GlobalFree
GetModuleFileNameA
InitializeCriticalSection
ReleaseSemaphore
SetUnhandledExceptionFilter
InterlockedExchange
GlobalAlloc
CreateFileA
LocalAlloc
InterlockedCompareExchange
WaitForSingleObject
GetProcAddress
LeaveCriticalSection
MultiByteToWideChar
GlobalSize
GetFileTime
GetEnvironmentVariableW
SetCurrentDirectoryA
IsDebuggerPresent
GetTickCount
UnhandledExceptionFilter
GetLocalTime
QueryPerformanceCounter
TlsSetValue
CloseHandle
FindNextFileA
GetDateFormatW
RaiseException

user32

MonitorFromPoint
DefWindowProcA
SetActiveWindow
OffsetRect
EnumDisplayMonitors
LoadCursorA
ReleaseDC
RegisterClassA
GetMonitorInfoA
WindowFromDC
MonitorFromWindow
GetClientRect
ScrollWindowEx
SetWindowPos
GetWindowRect
CreateWindowExA
GetDC
DestroyWindow
GetActiveWindow
GetDesktopWindow
LoadIconA
GetSystemMetrics
CharNextW
UnregisterClassA

msimg32

AlphaBlend

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74832590d439cbbf0cecb0c4f222b04d

Headers

File Characteristics

Imports

ole32

advapi32

shlwapi

gdi32

kernel32

user32

msimg32

Sections

.text Size: 110KB - Virtual size: 109KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 75KB

.edata Size: 1024B - Virtual size: 112KB

.text
Size: 110KB - Virtual size: 109KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 75KB

.edata
Size: 1024B - Virtual size: 112KB