74213cb65eef971af20be9f48ff1b3d7

Sharing

Copy URL Twitter E-mail

General

Target

74213cb65eef971af20be9f48ff1b3d7
Size

142KB
MD5

74213cb65eef971af20be9f48ff1b3d7
SHA1

7f1b66db67fce750fe086ee81ec4207afaa5db6b
SHA256

b0c7ab68bcde3ffddc00327f319cb07177131f10ae59236f1c93ce74f40a4f62
SHA512

7d131c6345b3af28c3ed9d49a55230faf19e193090e8159f7d289580fe19f9dca7d85eaceab87ca02e2ca3a7ac9a3d54ac36c5c5039eea4615b183927cb93c8a
SSDEEP

3072:NwymUbmRjWXsmsGLoybTlQIlJgEf86yWpOHHY5ETjKskC0wIVOgGWjzoi1:9wSsPYaEUdWpOHHY+es509OgGS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74213cb65eef971af20be9f48ff1b3d7

Files

74213cb65eef971af20be9f48ff1b3d7
.exe windows:5 windows x86 arch:x86

d2ba349ccfeec6a87ccb65fe25b36e60

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
GetUserNameA
RegQueryValueExA

user32

SetClassLongA
SubtractRect
EndDeferWindowPos
GetSystemMenu
SetRect
RegisterClassW
SetParent
DefMDIChildProcA
GetScrollInfo
GetDoubleClickTime
GetIconInfo
IsClipboardFormatAvailable
DrawFocusRect
SetMenu
DrawEdge
ChildWindowFromPointEx
SetScrollInfo
GetWindowLongW
LoadCursorA
IsZoomed
FillRect
EqualRect
RegisterClipboardFormatA
GetUpdateRect
SetRectEmpty
IsCharAlphaA
OpenClipboard
GetWindowTextLengthA
DestroyCursor
CreateIconIndirect
CallWindowProcW
GetWindowTextW
DestroyCaret
GetWindowLongA
ValidateRect
GetMenuStringW
IsIconic
TrackPopupMenu

gdi32

GetDCOrgEx
SetTextColor
SetBrushOrgEx
GetTextAlign
GetCharABCWidthsA
GetCurrentPositionEx
IntersectClipRect
PolyPolyline
GetTextMetricsA
Polyline
ExtTextOutA
DeleteDC
CreateRectRgnIndirect
ExtTextOutW
GetPaletteEntries
GetDeviceCaps
PatBlt
FillRgn

mqtr3x40

_FXbig
_LDenorm
_Xbig
_Mbrtowc
_LDtest
_FInf
_Rteps

kernel32

CreateFileMappingA
UnhandledExceptionFilter
GlobalAlloc
TerminateProcess
QueryPerformanceCounter
GetLocalTime
MulDiv
UnmapViewOfFile
VirtualQueryEx
lstrlenW
GetWindowsDirectoryA
GetCommandLineW
WaitForMultipleObjects
ReleaseMutex
RemoveDirectoryA
GlobalSize
CloseHandle
GlobalGetAtomNameA
MapViewOfFileEx
MultiByteToWideChar
GetThreadLocale
GetModuleHandleA
GetCurrentThread
FreeLibrary
FormatMessageA
FindClose
GetVolumeInformationA
LoadLibraryExA
TerminateProcess
GetFullPathNameA
GetProfileIntA

wininet

HttpQueryInfoA
InternetErrorDlg
InternetOpenUrlA
InternetAttemptConnect

comctl32

ImageList_Create
ImageList_GetBkColor
ImageList_DragEnter
ImageList_EndDrag

imm32

ImmGetCompositionStringA
ImmSetCompositionWindow

oleaut32

SafeArrayAccessData
SysAllocStringLen
SafeArrayDestroy
VariantCopy

shell32

DragAcceptFiles
ShellExecuteExA

ole32

IsAccelerator

version

GetFileVersionInfoSizeA

Sections

.text
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2ba349ccfeec6a87ccb65fe25b36e60

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

gdi32

mqtr3x40

kernel32

wininet

comctl32

imm32

oleaut32

shell32

ole32

version

Sections

.text Size: 115KB - Virtual size: 116KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 20KB - Virtual size: 24KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 115KB - Virtual size: 116KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 24KB

.rsrc
Size: 2KB - Virtual size: 4KB