768c02ff76f8b0b23f94df616d24b528

Sharing

Copy URL Twitter E-mail

General

Target

768c02ff76f8b0b23f94df616d24b528
Size

596KB
MD5

768c02ff76f8b0b23f94df616d24b528
SHA1

365e469bf35f486f9ab11e9f7d85ba2d0ad1776d
SHA256

4372ef6196a54fb6d40484c4f46077ec66819697965d7f9a9e54295f3896d0f7
SHA512

35fc89c1cf7a58c43a1142079d110c5c99ce28618da92d5f852dc18905c2202fd0d53ec640be3856ab8265dd28083b5a7102aed09699fa4b4e601f5a96a9c572
SSDEEP

12288:F3StxnAQMG4KQeA5pKn8cBjvTYx6mswqo8kgSSLeO:8txAnG4tbAnxB/wfqo8k5SX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
768c02ff76f8b0b23f94df616d24b528

Files

768c02ff76f8b0b23f94df616d24b528
.exe windows:4 windows x86 arch:x86

c4161eebb741cc16d25de090cc773121

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SwapBuffers
GetTextCharacterExtra
UnrealizeObject
SetStretchBltMode

user32

SetShellWindow
GetWindowInfo
CheckMenuRadioItem
GetClientRect
SetClassLongA
DdeConnect
DestroyWindow
GetScrollBarInfo
OemToCharBuffA
EnumDesktopsA
FindWindowExW
EnumWindowStationsA
GetMonitorInfoW
GetWindowTextLengthA
CreateMenu
GetWindowTextLengthW
SetMenuDefaultItem
SetSysColors
SendMessageW
GetListBoxInfo
GetTopWindow
DdeUnaccessData
GetClipboardOwner
DlgDirListA
GetTitleBarInfo
GetMenuDefaultItem
IsIconic
DeferWindowPos
GetPriorityClipboardFormat
UnpackDDElParam
UnregisterClassW
GetForegroundWindow
SendMessageA
ArrangeIconicWindows
EndDialog
SendNotifyMessageW
CharLowerBuffW
CheckRadioButton
GetSystemMetrics
GetWindowDC
MessageBoxA
DialogBoxParamW
SetProcessDefaultLayout
RegisterClassExA
GetUserObjectSecurity
DrawEdge
GetMenuState
GetMenuStringA
ShowWindow
CreateWindowExW
WINNLSEnableIME
IsCharAlphaNumericW
SetRect
GetQueueStatus
RegisterClassA
CharPrevW
DefWindowProcA
LoadIconA
GetUserObjectInformationA
SendMessageTimeoutW
OpenDesktopW
DdeDisconnectList
IntersectRect
SendInput
GetParent
TabbedTextOutW
CharToOemBuffW
WINNLSGetIMEHotkey
LockWindowUpdate
SetMenuItemBitmaps

kernel32

GetFullPathNameW
GetConsoleCP
GetCompressedFileSizeW
GetEnvironmentVariableW
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetStringTypeW
GetThreadTimes
LCMapStringW
GetProfileStringA
lstrcpyW
CreateFileA
GetModuleFileNameW
UnlockFile
WriteProfileStringW
ReadFile
IsValidCodePage
OpenSemaphoreW
CompareStringW
InitializeCriticalSection
GetCommandLineW
CreateToolhelp32Snapshot
FreeLibraryAndExitThread
LocalUnlock
FlushConsoleInputBuffer
GetEnvironmentVariableA
TlsSetValue
WideCharToMultiByte
UnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
GetStartupInfoA
HeapFree
GetExitCodeProcess
GetComputerNameA
FillConsoleOutputCharacterW
GetModuleFileNameA
GetLastError
lstrcmpi
CompareStringA
GetConsoleMode
GetFileAttributesA
GetTickCount
GetFileType
GetEnvironmentStringsW
GetACP
GetCPInfo
LoadLibraryA
GetPriorityClass
OpenEventW
GetProcAddress
HeapSize
HeapDestroy
FindNextChangeNotification
WriteConsoleA
GetCurrentThreadId
GetStdHandle
GetDateFormatA
GetOEMCP
SetThreadIdealProcessor
Sleep
GetUserDefaultLCID
WriteConsoleW
InterlockedIncrement
SetFilePointer
FindResourceExW
GetShortPathNameA
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetFileAttributesExW
EnterCriticalSection
UnlockFileEx
GetSystemDirectoryA
EnumResourceNamesA
GetConsoleTitleW
HeapCreate
HeapReAlloc
FindResourceW
SetConsoleActiveScreenBuffer
OpenEventA
OpenMutexW
FindFirstFileExA
GetModuleHandleW
SetEnvironmentVariableA
GetLocaleInfoA
CreateMutexA
SetThreadContext
ExitThread
FreeLibrary
GetCurrentThread
CommConfigDialogA
GetCommandLineA
GetStartupInfoW
SetStdHandle
GetSystemTimeAsFileTime
MultiByteToWideChar
HeapAlloc
TlsFree
GetCurrentProcessId
VirtualQuery
IsValidLocale
VirtualAlloc
SetWaitableTimer
DeleteCriticalSection
InterlockedDecrement
InterlockedExchange
FlushFileBuffers
LoadResource
GetStringTypeExW
WaitNamedPipeA
GetTimeFormatA
GetModuleHandleA
LocalFlags
TlsAlloc
LocalReAlloc
GlobalHandle
GetPrivateProfileSectionNamesW
EnumDateFormatsExW
ExitProcess
SetLastError
GetSystemDefaultLangID
VirtualFree
QueryPerformanceCounter
SetConsoleCtrlHandler
CloseHandle
TerminateProcess
WriteFile
EnumSystemLocalesA
LCMapStringA
OpenMutexA
GetConsoleOutputCP
lstrcpynW
GetLocaleInfoW
EnumDateFormatsW
GetCurrentProcess
EnumResourceTypesA
lstrcat
LeaveCriticalSection
GetStringTypeA
RtlUnwind
FreeEnvironmentStringsW
ExpandEnvironmentStringsA

shell32

DragQueryPoint

comctl32

InitCommonControlsEx
ImageList_SetDragCursorImage
CreateStatusWindowW
InitMUILanguage
ImageList_GetIcon
ImageList_DragShowNolock
GetEffectiveClientRect
ImageList_Add
CreateStatusWindowA
ImageList_Merge
ImageList_GetFlags
ImageList_GetDragImage
ImageList_Create
ImageList_DrawIndirect
ImageList_DrawEx
ImageList_AddIcon
DrawInsert

Sections

.text
Size: 196KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4161eebb741cc16d25de090cc773121

Headers

File Characteristics

Imports

gdi32

user32

kernel32

shell32

comctl32

Sections

.text Size: 196KB - Virtual size: 193KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 112KB - Virtual size: 116KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 196KB - Virtual size: 193KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 112KB - Virtual size: 116KB

.rsrc
Size: 24KB - Virtual size: 23KB