7738951750157e8aab90e600522f5956

Sharing

Copy URL Twitter E-mail

General

Target

7738951750157e8aab90e600522f5956
Size

588KB
MD5

7738951750157e8aab90e600522f5956
SHA1

5c262060b3ba03d204a6e766980cbf4e1ce2b59e
SHA256

ec3ea19d396977f60ab694216e3706e30f0bacc59e2886b45b164a53385f68bf
SHA512

f4c4d0467876ddac442413ce3c9f68ec8075831e61acd84bd77177691ef959612d1cbb8f6cbb2de16c695579bd6cc452e7a45d55f13240d5f3009fbaa240c7ac
SSDEEP

12288:gUq/q80L2VEBpxWUrJnV3KLgryf0wYB056wkfdJ:gjda2VEP8UtVaLgrvrB0MFJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7738951750157e8aab90e600522f5956

Files

7738951750157e8aab90e600522f5956
.exe windows:4 windows x86 arch:x86

ce731025bd3746f109d10c65744bcfb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
TranslateMessage
MessageBoxW
IsDialogMessageA
DrawAnimatedRects
GetOpenClipboardWindow
CharNextA
CreateCaret
CharLowerBuffA
UnregisterHotKey
TileWindows
CloseWindowStation
GetClassLongW
CreateAcceleratorTableW
SetScrollRange
InvertRect
ShowWindow
GetCaretBlinkTime
RegisterClassA
IsCharAlphaNumericA
TrackMouseEvent
DefWindowProcA
HideCaret
DestroyWindow
GetInputDesktop
ReleaseDC
CreateDialogIndirectParamA
UnregisterClassA
PostThreadMessageA
IsCharUpperW
CreateDesktopW
IntersectRect
MapVirtualKeyA
CreateWindowExW
DrawIcon
IsWindowVisible
GetParent
SetForegroundWindow
IsCharAlphaW
ValidateRgn
LoadMenuW

comctl32

CreateStatusWindow
InitCommonControlsEx
ImageList_SetDragCursorImage
ImageList_GetImageRect
InitMUILanguage
CreateToolbarEx
ImageList_EndDrag
ImageList_SetIconSize
ImageList_Write
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_SetImageCount
ImageList_DragShowNolock
CreatePropertySheetPage

wininet

UpdateUrlCacheContentPath
FindNextUrlCacheContainerW

kernel32

CompareStringW
RtlUnwind
TlsSetValue
GetCurrentProcessId
FlushFileBuffers
CopyFileA
GetThreadContext
GetFileType
LCMapStringW
FindNextFileW
GetAtomNameA
GetSystemInfo
SetLastError
lstrcmpiW
GetTimeZoneInformation
GetTimeFormatA
GetModuleFileNameW
FindAtomA
GetProcAddress
GetCurrentThread
EnumDateFormatsW
GetDateFormatA
LocalCompact
ExitProcess
GetStringTypeA
GetCommandLineW
GetLogicalDriveStringsW
GetCPInfo
GetPrivateProfileIntA
GetModuleHandleA
GetLastError
GetVersionExA
VirtualLock
SetComputerNameA
GetStdHandle
lstrcpynA
GetACP
VirtualFree
GetNamedPipeHandleStateA
InterlockedExchange
DosDateTimeToFileTime
GetTempFileNameA
GlobalAddAtomA
SetHandleCount
VirtualAlloc
SetEndOfFile
GetTempPathA
GetExitCodeThread
GetProfileIntW
GetExitCodeProcess
FreeLibrary
SetFilePointer
SetStdHandle
HeapReAlloc
FindFirstFileExW
HeapSize
TlsGetValue
GetUserDefaultLCID
GetCurrentThreadId
GetNamedPipeInfo
TlsFree
GetLocaleInfoW
ExpandEnvironmentStringsW
FindFirstFileW
lstrcpyn
FreeEnvironmentStringsA
SetConsoleCP
CreateProcessA
CompareFileTime
GetDiskFreeSpaceExW
WriteFile
EnumCalendarInfoW
EnumCalendarInfoA
CreateMutexA
HeapCreate
IsBadWritePtr
GlobalGetAtomNameW
HeapFree
TerminateProcess
SetLocaleInfoA
GetConsoleMode
GetModuleFileNameA
ReadConsoleOutputCharacterW
GetEnvironmentStrings
HeapAlloc
EnterCriticalSection
InitializeCriticalSection
GetOEMCP
lstrcpy
GetPrivateProfileIntW
CompareStringA
GlobalGetAtomNameA
WriteFileEx
LeaveCriticalSection
WriteProfileStringA
TlsAlloc
IsValidLocale
lstrlenA
ExitThread
LoadLibraryA
OpenMutexA
GlobalDeleteAtom
SetThreadPriority
GetCalendarInfoW
GetEnvironmentStringsA
GetCurrentDirectoryW
EnumResourceTypesA
EnumSystemLocalesA
VirtualProtect
GetTickCount
GetStartupInfoW
SetTimeZoneInformation
GetStringTypeW
HeapDestroy
GetVolumeInformationA
FileTimeToDosDateTime
WriteConsoleInputW
FreeEnvironmentStringsW
WideCharToMultiByte
GetCurrentProcess
WriteConsoleW
CloseHandle
EnumResourceNamesW
ReadFile
GlobalFindAtomA
GetLocaleInfoA
LCMapStringA
GlobalHandle
LocalLock
VirtualQuery
GetStartupInfoA
GetThreadPriority
DeleteCriticalSection
SetEnvironmentVariableA
IsValidCodePage
GetEnvironmentStringsW
QueryPerformanceCounter
GetVersion
VirtualFreeEx
MultiByteToWideChar
UnhandledExceptionFilter
lstrlenW
DeleteFiber
GetFullPathNameW
GetSystemTimeAsFileTime
FoldStringW
GetCompressedFileSizeW
GetCommandLineA
FindResourceExA

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce731025bd3746f109d10c65744bcfb0

Headers

File Characteristics

Imports

user32

comctl32

wininet

kernel32

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 256KB - Virtual size: 254KB

.data Size: 112KB - Virtual size: 122KB

.rsrc Size: 36KB - Virtual size: 33KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 256KB - Virtual size: 254KB

.data
Size: 112KB - Virtual size: 122KB

.rsrc
Size: 36KB - Virtual size: 33KB