774896c189e8f2c095b987c9189364a0

Sharing

Copy URL

Twitter E-mail

General

Target

774896c189e8f2c095b987c9189364a0
Size

155KB
MD5

774896c189e8f2c095b987c9189364a0
SHA1

6cfcbd3b2145dbf2c0f51a191293b8ca91d748b9
SHA256

c3eca10811c70f3f4dde275438ea16313833b37dd4810ec82e059b673fa7c5fb
SHA512

8f3151baeeb44be8e69676be2fca163d16024e48e0f4fb1fd2873e09845dc53b0f93881315ea4d74a54d3e426430cecc1a1c033d08568a36ba84b40ea3f0241a
SSDEEP

3072:lXHm1wlNKl6kKsgUg2T1b2WeXzgvWhuo9ULK/4f:ldM6jUg28tGW5Af

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
774896c189e8f2c095b987c9189364a0

Files

774896c189e8f2c095b987c9189364a0
.exe windows:4 windows x86 arch:x86

67f3360d4ddce7f2294cb61dd8751c98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetFileAttributesA
CreateProcessA
WideCharToMultiByte
GetCurrentProcess
FlushInstructionCache
lstrcmpA
lstrlenW
CopyFileA
GetModuleFileNameA
GlobalFree
DeleteFileA
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenA
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
InterlockedDecrement
GetCurrentThreadId
GetStringTypeA
GetStartupInfoA
GetModuleHandleA
GetVersion
HeapReAlloc
HeapFree
HeapAlloc
LoadLibraryA
SetEndOfFile
GetStringTypeW
TerminateProcess
HeapSize
ExitProcess
ReadFile
GetProcAddress
GetLastError
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
WriteFile
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
VirtualAlloc
InterlockedIncrement
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCommandLineA
InitializeCriticalSection
RtlUnwind
SetStdHandle
FlushFileBuffers
CreateFileA
DeleteCriticalSection

user32

GetWindowTextLengthA
GetWindowTextA
GetWindowLongA
SetWindowLongA
GetWindow
DefWindowProcA
RegisterWindowMessageA
GetUpdateRect
SetWindowTextA
SetFocus
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
UnregisterClassA
CharUpperA
IntersectRect
EqualRect
SetWindowRgn
MessageBoxA
GetFocus
GetClientRect
SetWindowPos
SetRect
ShowWindow
UnionRect
GetDlgItem
SendMessageA
InvalidateRgn
InvalidateRect
SetCapture
ReleaseCapture
CreateAcceleratorTableA
GetClassNameA
RedrawWindow
IsWindow
FillRect
CallWindowProcA
GetDC
ReleaseDC
IsChild
GetSysColor
SystemParametersInfoA
MapWindowPoints
GetParent
GetActiveWindow
CheckMenuItem
GetMenu
DestroyWindow
EndPaint
BeginPaint
OffsetRect
PtInRect
GetKeyState
LoadIconA
EndDialog
DialogBoxParamA
AdjustWindowRect
wsprintfA
ClientToScreen
EnableMenuItem
CreateWindowExA
SetClassLongA
PostQuitMessage
PostMessageA
SetCursor
GetDesktopWindow
SetMenu
GetWindowRect
GetClassInfoExA
LoadCursorA
MoveWindow

gdi32

GetObjectA
SetViewportOrgEx
IntersectClipRect
CreateDIBSection
GetDeviceCaps
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
CreateSolidBrush
GetStockObject
RestoreDC
SetWindowOrgEx
SetMapMode
SaveDC
LPtoDP
CreateDCA
SelectClipRgn
ExcludeClipRect
CreateRectRgnIndirect
DeleteMetaFile
SetWindowExtEx
CloseMetaFile
CreateMetaFileA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

ole32

CreateOleAdviseHolder
OleRegGetMiscStatus
OleRegEnumVerbs
OleSaveToStream
CreateDataAdviseHolder
OleRegGetUserType
OleLockRunning
CreateBindCtx
OleLoadFromStream
CoTaskMemFree
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoInitialize
CoTaskMemAlloc
StringFromCLSID
WriteClassStm
CoUninitialize

oleaut32

SysAllocStringByteLen
SysStringByteLen
VariantChangeType
OleCreateFontIndirect
DispCallFunc
VariantClear
SysStringLen
LoadRegTypeLi
SysAllocStringLen
SysAllocString
SysFreeString
OleCreatePropertyFrame

winmm

timeGetDevCaps
timeKillEvent
timeGetTime
timeBeginPeriod
timeSetEvent

urlmon

CreateURLMoniker
RegisterBindStatusCallback

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67f3360d4ddce7f2294cb61dd8751c98

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

winmm

urlmon

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 8KB - Virtual size: 7KB