767a7488594d883daffddca7d19857d1

Sharing

Copy URL Twitter E-mail

General

Target

767a7488594d883daffddca7d19857d1
Size

664KB
MD5

767a7488594d883daffddca7d19857d1
SHA1

9b4fccc6b8324ac67f3bc661580311aea2283099
SHA256

a6c64d06ae6b6f1e41d61c2006f45b3b6df8bc8fac70680abf7dedcfc84c6909
SHA512

6da1c0250b320031ecbbe5c803a40d7cc802fe60053521945e9c30f7194622a6695e2569789a71756cee7e4e036133aded2a2eed541b7d0a20d6a54384f02462
SSDEEP

12288:VGTHIPW/p0IWOIzW7SlbV3loor4Bp4AZaCviH/jCpnIKOp7+9:Qt/uha7SlbhkiKLLpnIKa7+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
767a7488594d883daffddca7d19857d1

Files

767a7488594d883daffddca7d19857d1
.exe windows:4 windows x86 arch:x86

a44eb6e0f440933c171f18e98be183cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GetUrlCacheGroupAttributeA
FindFirstUrlCacheGroup
InternetShowSecurityInfoByURLW
FtpGetCurrentDirectoryA
InternetAutodial
InternetHangUp
FtpPutFileEx

user32

TranslateAcceleratorA
GetWindowModuleFileNameW
WINNLSGetIMEHotkey
CharUpperA
DlgDirListComboBoxW
CopyImage
FlashWindow
GetGuiResources
FreeDDElParam
EnumPropsA
DialogBoxIndirectParamA
GetMenuItemInfoA
ToAsciiEx
CharUpperBuffW
GetAltTabInfo
SetMenu
WaitForInputIdle
GetMonitorInfoA
EndDialog
CharPrevW
DdeQueryStringW
GetPropA
DestroyWindow
RegisterClassExA
GetOpenClipboardWindow
LoadCursorW
SetMenuItemInfoW
TranslateAccelerator
SetClipboardData
SetPropA
GetShellWindow
DialogBoxIndirectParamW
ShowWindow
CreateMDIWindowA
EnumClipboardFormats
GetDlgCtrlID
SetDlgItemTextA
GetClassInfoExA
MonitorFromWindow
LoadMenuA
GetDialogBaseUnits
RemovePropW
ArrangeIconicWindows
DdeInitializeA
CascadeChildWindows
CharPrevExA
CreateWindowExW
CreateDialogParamW
AppendMenuA
ChangeDisplaySettingsW
UnregisterClassW
DestroyCursor
IsDialogMessageA
DdeQueryNextServer
WinHelpA
MessageBoxW
RegisterClassA
DialogBoxParamW
InsertMenuItemW
DestroyMenu
EnumPropsExA
GetClipboardOwner
GetDlgItemInt
TranslateAcceleratorW
GetClipboardViewer
SetScrollPos
DefWindowProcA
IsWindowEnabled
SetSystemCursor

comctl32

ImageList_Create
InitCommonControlsEx
DrawStatusTextW
ImageList_DragEnter
ImageList_SetImageCount
ImageList_DrawIndirect
ImageList_SetFilter
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_DragLeave
CreateMappedBitmap
ImageList_LoadImageW
ImageList_SetDragCursorImage
DrawInsert
MakeDragList
ImageList_GetFlags
ImageList_Destroy
ImageList_ReplaceIcon

advapi32

CryptHashSessionKey
RegFlushKey
CryptGetDefaultProviderA
CryptContextAddRef
AbortSystemShutdownA
CryptGetProvParam
CryptAcquireContextA
LookupPrivilegeNameA
RegCloseKey
RegQueryValueExW
CryptSignHashW
CryptEnumProvidersW
RegSetValueExA
CryptSetProviderA

comdlg32

FindTextW

kernel32

CompareStringW
ConvertDefaultLocale
IsValidLocale
HeapFree
LCMapStringW
VirtualFree
InterlockedExchange
HeapReAlloc
DeleteFileW
GetVersionExA
GetCommandLineW
GetSystemInfo
GetCurrentThreadId
ExitProcess
TerminateProcess
FindNextFileW
DeleteCriticalSection
IsBadWritePtr
SetConsoleCursorPosition
GlobalAlloc
DebugBreak
SetVolumeLabelA
GetTickCount
WideCharToMultiByte
EnumDateFormatsExW
EnumCalendarInfoExW
GetACP
ReleaseSemaphore
HeapCreate
FindResourceExW
MultiByteToWideChar
SetFilePointer
WriteFile
VirtualProtect
FlushFileBuffers
IsBadReadPtr
TlsAlloc
FileTimeToLocalFileTime
CommConfigDialogW
GetModuleFileNameA
LocalUnlock
GetEnvironmentVariableW
GetLastError
OpenMutexA
InterlockedDecrement
SetCurrentDirectoryA
FindNextFileA
RtlUnwind
ExpandEnvironmentStringsA
GetTempFileNameA
EnterCriticalSection
LocalCompact
EnumSystemLocalesA
GetShortPathNameA
SetLocaleInfoA
TlsSetValue
GetEnvironmentStrings
CreateProcessA
CreateMailslotW
GetCurrentProcess
GetPrivateProfileStructA
FlushConsoleInputBuffer
TlsFree
QueryPerformanceCounter
LCMapStringA
LoadLibraryExW
GetSystemTimeAsFileTime
HeapDestroy
InitializeCriticalSection
DeleteAtom
GetUserDefaultLCID
CompareStringA
SetFileTime
GetFileType
LeaveCriticalSection
HeapAlloc
UnlockFileEx
LoadLibraryExA
FlushInstructionCache
GlobalGetAtomNameA
OutputDebugStringW
GetLocaleInfoA
GetCurrentDirectoryA
GetOEMCP
HeapValidate
CreateDirectoryExA
GetTimeFormatA
GetStringTypeW
GetDateFormatA
ExpandEnvironmentStringsW
GetCPInfo
GetCurrentDirectoryW
LoadLibraryA
FreeEnvironmentStringsA
FoldStringW
GetStdHandle
EnumDateFormatsA
ReadConsoleOutputCharacterA
FreeEnvironmentStringsW
WriteConsoleOutputW
SetConsoleCtrlHandler
GlobalUnlock
WriteProfileStringA
GetModuleFileNameW
SetEnvironmentVariableA
ReadFileEx
VirtualAlloc
SetThreadAffinityMask
GetModuleHandleA
VirtualQuery
GetStringTypeA
GetCurrentThread
TransmitCommChar
lstrlen
GetEnvironmentStringsW
GetDiskFreeSpaceExA
SetStdHandle
GetCurrentProcessId
lstrcmpA
GetStringTypeExA
GetShortPathNameW
GetProcAddress
GetCommandLineA
GetStartupInfoW
IsValidCodePage
SetLastError
GetDriveTypeA
CloseHandle
TlsGetValue
SetEndOfFile
GetStartupInfoA
SetHandleCount
AddAtomA
OutputDebugStringA
GetPrivateProfileStringA
GlobalUnfix
FindNextChangeNotification
GetSystemTimeAdjustment
UnhandledExceptionFilter
GetTimeZoneInformation
DuplicateHandle
GetProfileStringW
SetVolumeLabelW
InterlockedIncrement
ReadFile
TryEnterCriticalSection
GetPriorityClass
GetLocaleInfoW
CreateMutexA

gdi32

GetDeviceCaps
GetViewportExtEx
DeleteDC
CreateDCA
GetObjectA

Sections

.text
Size: 228KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a44eb6e0f440933c171f18e98be183cd

Headers

File Characteristics

Imports

wininet

user32

comctl32

advapi32

comdlg32

kernel32

gdi32

Sections

.text Size: 228KB - Virtual size: 226KB

.rdata Size: 268KB - Virtual size: 264KB

.data Size: 116KB - Virtual size: 121KB

.rsrc Size: 48KB - Virtual size: 45KB

.text
Size: 228KB - Virtual size: 226KB

.rdata
Size: 268KB - Virtual size: 264KB

.data
Size: 116KB - Virtual size: 121KB

.rsrc
Size: 48KB - Virtual size: 45KB