7636e4b93b374cc00ee064dfd1b4ba02

Sharing

Copy URL Twitter E-mail

General

Target

7636e4b93b374cc00ee064dfd1b4ba02
Size

830KB
MD5

7636e4b93b374cc00ee064dfd1b4ba02
SHA1

eb71a07bc4c3dc6a4a019d9ce479bc640f961a52
SHA256

6c20d9be51f5f9ba273ea44b8322ebd95c4a9a90720dbb7c07036d1ac54a6b34
SHA512

39561047720f1d867214c9d33d9dfbd083ce6bace319564b3b9ddf10fe86975ed4b4acfdc8ee16c6c2a9611dc06c83c29ad14743a7776c0396ceb8353671358c
SSDEEP

24576:S3xkMGrjNZJO3NvF1X1KReqbnqRcyxemU:6eBZsfF1AbO3xem

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7636e4b93b374cc00ee064dfd1b4ba02

Files

7636e4b93b374cc00ee064dfd1b4ba02
.exe windows:5 windows x86 arch:x86

2119aca3611808a8e30d4aabd51e1d71

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterWindowMessageA
GetMenuState
UserLpkPSMTextOut
GetWindowTextA
DdeKeepStringHandle
GetAltTabInfoW
LoadRemoteFonts
TranslateMDISysAccel
DlgDirListA
LookupIconIdFromDirectory
CallWindowProcW
GetCursorFrameInfo
GetWindowPlacement
PackDDElParam
UnregisterClassW
CopyIcon
DrawStateW
AllowSetForegroundWindow
SendNotifyMessageW
IsCharUpperA
GetNextDlgGroupItem
DrawAnimatedRects
GetCursorInfo
DrawFrameControl
SetScrollRange
CreateAcceleratorTableA
GetPriorityClipboardFormat
RemoveMenu

certcli

CAEnumCertTypes
CAGetCertTypeExtensionsEx
CAGetCertTypeExtensions
CAGetCAExpiration
CAGetCAFlags
CAFindByIssuerDN
CACloneCertType
CAUpdateCA
CAOIDDelete
CAUpdateCertType
CAEnumNextCertType
CASetCertTypeFlags
CACloseCA
CAGetCertTypeProperty
DllUnregisterServer
CAAccessCheckEx
DllGetClassObject
CACertTypeGetSecurity
CAGetCertTypeKeySpec
CACertTypeRegisterQuery
CAFreeCAProperty
CASetCertTypePropertyEx

kernel32

GetModuleHandleA
LoadLibraryW
GetFirmwareEnvironmentVariableA
GetNamedPipeInfo
GetNextVDMCommand
IsDebuggerPresent
CreateDirectoryA
GetDiskFreeSpaceExA
GetCurrentThread
ClearCommError
GetBinaryTypeW
GetThreadPriority
FindNextVolumeMountPointA
SetClientTimeZoneInformation
ReadConsoleOutputCharacterW
GetVolumePathNameW
FindFirstFileA
Heap32ListFirst
GetLocaleInfoA
SetFileAttributesW
GetConsoleKeyboardLayoutNameW
GetConsoleCommandHistoryA
RemoveDirectoryA
CreateMemoryResourceNotification
HeapQueryInformation
GetStringTypeA
EnumSystemLanguageGroupsW
GetSystemWindowsDirectoryW
Module32FirstW
WriteProcessMemory
LoadResource
GetOverlappedResult

oleaut32

VarI4FromUI4
LPSAFEARRAY_UserMarshal
VarDateFromI4
VarInt
VariantCopyInd
VarDecFromR8
VarR8Round
VarUI8FromBool
VarUI1FromDate

msdmo

DMOStrToGuidA
MoInitMediaType
MoDuplicateMediaType
DMOGuidToStrW
DMOGuidToStrA
DMOGetTypes
MoDeleteMediaType
DMOStrToGuidW
MoCopyMediaType
MoFreeMediaType
DMOUnregister
DMOEnum
DMOGetName
MoCreateMediaType
DMORegister

crtdll

isalnum
_dup
_mbsnccnt
_HUGE_dll
_strncnt
_initterm
_read
puts
_pgmptr_dll
__GetMainArgs
_assert
_vsnprintf
getc
_filbuf
__dllonexit
wcstol
wcstod
_mbsspnp
strncmp
_chdrive
_ismbbalnum
strncpy
_ismbbpunct
strtol

mapistub

OpenTnefStreamEx@32
HrDispatchNotifications@4
PRProviderInit
FixMAPI
FBadPropTag@4
HrSetOneProp@8
MNLS_MultiByteToWideChar@24
LAUNCHWIZARD
FBadRglpszW@8
FBadSortOrderSet@4
FBadRglpNameID@8
MAPIUninitialize@0
MAPIDeleteMail
FBadRowSet@4
UNKOBJ_ScAllocateMore@16
GetTnefStreamCodepage@12

Sections

.text
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 181KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2119aca3611808a8e30d4aabd51e1d71

Headers

DLL Characteristics

File Characteristics

Imports

user32

certcli

kernel32

oleaut32

msdmo

crtdll

mapistub

Sections

.text Size: 363KB - Virtual size: 362KB

.rdata Size: 146KB - Virtual size: 145KB

.data Size: 181KB - Virtual size: 1.6MB

.rsrc Size: 138KB - Virtual size: 137KB

.reloc Size: 1024B - Virtual size: 856B

.text
Size: 363KB - Virtual size: 362KB

.rdata
Size: 146KB - Virtual size: 145KB

.data
Size: 181KB - Virtual size: 1.6MB

.rsrc
Size: 138KB - Virtual size: 137KB

.reloc
Size: 1024B - Virtual size: 856B