77312b816e80cb80a5f12b5f05d5169e

Sharing

Copy URL Twitter E-mail

General

Target

77312b816e80cb80a5f12b5f05d5169e
Size

171KB
MD5

77312b816e80cb80a5f12b5f05d5169e
SHA1

289c9189590a1db5132b9261e35c02057c77dfec
SHA256

c90a27fe6c9304281f2e5c6427607ce05cde3eb5b2668b3c1897e83acc6c5342
SHA512

cba24b54f0d69a711ef2a9e68e3969311e6c40fee346ee75c6d4d211e9f07fbef4db834c79c18d7bf0f1d284484de40e01fa804393c1c89410912c53e22e6e78
SSDEEP

3072:s8yYdHQT2GOkGpI5sXztkr2wEHyVQjGHyf1QL7tTLYGPHFlX5a7TETNHSuT7:5pZQT2GacqztkrNEyQjA1LVLYGPHFlX/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77312b816e80cb80a5f12b5f05d5169e

Files

77312b816e80cb80a5f12b5f05d5169e
.exe windows:4 windows x86 arch:x86

970744078a307015e45c3a688da14497

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileW
FindNextFileW
GetCalendarInfoW
InterlockedDecrement
EnumResourceLanguagesW
MultiByteToWideChar
CreateDirectoryW
RemoveDirectoryW
LocalFileTimeToFileTime
ReadFile
WriteFile
GetVersion
SetFileTime
GetLocaleInfoW
GetModuleFileNameW
WideCharToMultiByte
LoadLibraryW
FindClose
GetFileAttributesW
EnumResourceNamesA
GetSystemDefaultLangID
SetFilePointer
MoveFileW
GetCurrentDirectoryW
ExitProcess
FindFirstFileW
CreateFileW
GetCurrentProcessId
lstrcpyW
SystemTimeToFileTime
ConvertDefaultLocale
GetProcAddress

shlwapi

PathFindFileNameW
PathStripToRootW
PathFileExistsW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathAppendW

advapi32

RegOpenKeyW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
RegQueryInfoKeyW
RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

ole32

CoTaskMemFree
CoInitialize
CreateILockBytesOnHGlobal
CoRevokeClassObject
CoRegisterMessageFilter
CoRetireServer
StgOpenStorageOnILockBytes
CoCreateInstance
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
CoUninitialize
CoTaskMemAlloc
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
CLSIDFromString

gdi32

OffsetViewportOrgEx
ExtSelectClipRgn
GetMapMode
DeleteDC
GetDeviceCaps
GetBkColor
GetStockObject
RectVisible
SelectObject
TextOutW
ScaleWindowExtEx
SetViewportOrgEx
Escape
ScaleViewportExtEx
GetTextColor
PtVisible
ExtTextOutW
SetWindowExtEx
GetRgnBox

user32

GetPropW
CopyAcceleratorTableW
GetNextDlgGroupItem
CharUpperW
InvalidateRect
SetRect
SendDlgItemMessageA
CreateWindowExW
InvalidateRgn
IsRectEmpty
CharNextW
GetClassInfoExW
MessageBeep
SetPropW
GetClassLongW
GetNextDlgTabItem
RegisterWindowMessageW
WinHelpW
RemovePropW
DestroyMenu

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

970744078a307015e45c3a688da14497

Headers

File Characteristics

Imports

kernel32

shlwapi

advapi32

shell32

ole32

gdi32

user32

oleacc

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 70KB - Virtual size: 69KB

.edata Size: 1024B - Virtual size: 96KB

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 70KB - Virtual size: 69KB

.edata
Size: 1024B - Virtual size: 96KB