7817677b50ceea391124f8d6899b7758

Sharing

Copy URL Twitter E-mail

General

Target

7817677b50ceea391124f8d6899b7758
Size

275KB
MD5

7817677b50ceea391124f8d6899b7758
SHA1

d219da2a646a32475914c1a7ca2ed89b12487b79
SHA256

e610e69a8ab3e4e22baf4dd3cc4bc179c6bf0d9a2a48de3cb2e6fe4707df0f97
SHA512

428d49dcda69db7ea85bd99b78a870657d4e9f8c7eca694acab9e5ee113f8376a3965f5ca823ed0a6a92365bd24cd146ba09885d0c6ee837d93928c445c95b1f
SSDEEP

6144:JLMNF3WSQ80xSh14A2Bx/vn45CrwCs4v1MczEReES0WsaRjOM:JLf80xKeA2f/vRs45zQeGWsWO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7817677b50ceea391124f8d6899b7758

Files

7817677b50ceea391124f8d6899b7758
.exe windows:4 windows x86 arch:x86

bfd936a5c973f97e38561a79f9e3f9bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
CreateProcessW
GetDateFormatA
GetTimeFormatA
GetDateFormatW
GetTimeFormatW
GetCurrentThreadId
WideCharToMultiByte
GetFileSize
FindNextFileA
FindNextFileW
ExpandEnvironmentStringsA
HeapFree
GetFileTime
GetFileAttributesA
GetFileAttributesW
SetFilePointer
SetFileTime
SetFileAttributesA
SetFileAttributesW
HeapDestroy
GlobalSize
GetTickCount
HeapCreate
IsBadCodePtr
HeapAlloc
WriteFile
ReadFile
CreateFileW
CreateFileA
GetFullPathNameW
GetFullPathNameA
FindFirstFileW
FindFirstFileA
FindClose
GetModuleFileNameW
GetModuleFileNameA
GetCommandLineW
GetCommandLineA
GetCurrentDirectoryW
GetCurrentDirectoryA
lstrcpyW
lstrcatW
lstrcpyA
lstrcatA
MultiByteToWideChar
lstrcmpW
lstrcmpA
GetProcessHeap
GetWindowsDirectoryW
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoW
GetLocaleInfoA
GetModuleHandleA
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GetProcAddress
LoadLibraryA
GetModuleHandleW
GetStartupInfoW
CreateMutexW
LoadLibraryW
FreeLibrary
ExitProcess
SearchPathW
SetCurrentDirectoryW
lstrlenW
lstrcmpiW
MulDiv
SearchPathA
SetCurrentDirectoryA
ReleaseMutex
CloseHandle
lstrlenA
Sleep
GlobalLock
GlobalUnlock
lstrcmpiA
lstrcpynW
lstrcpynA
CompareFileTime
GlobalFree
ExpandEnvironmentStringsW
GlobalAlloc

user32

FindWindowW
TranslateAcceleratorA
GetMessageA
RegisterClassA
LoadCursorA
FindWindowA
GetClassNameA
GetClassNameW
SetWindowPos
GetSubMenu
DrawTextExW
SendMessageW
ModifyMenuA
InsertMenuA
ModifyMenuW
InsertMenuW
CallNextHookEx
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
IsChild
MoveWindow
IsDialogMessageA
IsDialogMessageW
UnhookWindowsHookEx
EndDialog
SetDlgItemTextA
SetDlgItemTextW
MessageBeep
SetForegroundWindow
GetFocus
SetActiveWindow
GetActiveWindow
ReleaseDC
GetDC
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
SetWindowsHookExA
GetWindowTextA
EnableWindow
SetWindowTextA
GetWindowTextW
SetWindowTextW
DrawTextA
DrawTextW
GetWindowTextLengthA
GetWindowTextLengthW
CloseClipboard
GetClipboardData
OpenClipboard
GetDlgItemTextA
SetDlgItemInt
GetDlgItemTextW
IsCharLowerA
CharLowerA
CharLowerBuffA
CharUpperBuffA
IsCharLowerW
CharLowerW
CharLowerBuffW
CharUpperBuffW
GetDlgItemInt
ShowCaret
RegisterClassW
FindWindowExA
FindWindowExW
UnregisterClassA
UnregisterClassW
SetCursorPos
IsClipboardFormatAvailable
SetCaretPos
GetScrollInfo
SetScrollInfo
ScrollWindow
CreateCaret
DestroyCaret
SetClipboardData
EmptyClipboard
EndPaint
FillRect
BeginPaint
GetUpdateRect
GetDoubleClickTime
GetMessageTime
SetTimer
KillTimer
SystemParametersInfoA
ShowScrollBar
IsWindowUnicode
RegisterClipboardFormatA
RegisterClipboardFormatW
LoadCursorW
DeleteMenu
DrawMenuBar
GetClientRect
GetClassLongA
SetClassLongA
GetSystemMetrics
GetSysColor
CheckMenuRadioItem
GetQueueStatus
GetKeyboardState
CheckMenuItem
GetMenuStringA
DestroyCursor
DestroyAcceleratorTable
DestroyMenu
PostQuitMessage
DefFrameProcA
DefWindowProcW
DefWindowProcA
PtInRect
ScreenToClient
GetSystemMenu
SetCapture
SetCursor
ReleaseCapture
CreateMDIWindowW
DestroyIcon
CreateMDIWindowA
CallWindowProcW
GetKeyState
CallWindowProcA
SetWindowLongW
DefMDIChildProcW
SetWindowLongA
InvalidateRect
GetDlgItem
DefMDIChildProcA
wsprintfW
MessageBoxW
GetWindowLongW
PeekMessageW
DispatchMessageW
SetFocus
wsprintfA
MessageBoxA
PostMessageA
GetWindowLongA
GetParent
ClientToScreen
GetMessageW
TranslateAcceleratorW
CreateWindowExW
GetClassLongW
SetClassLongW
GetMenuStringW
DefFrameProcW
HideCaret
CreateWindowExA
GetWindowRect
GetCursorPos
EnableMenuItem
TrackPopupMenu
ShowWindow
PeekMessageA
TranslateMessage
DispatchMessageA
UpdateWindow
SendMessageA
DestroyWindow
CharUpperW
CharUpperA
DrawTextExA

gdi32

CreateSolidBrush
SetBkColor
GetTextExtentPoint32W
CreateRectRgn
CreateCompatibleDC
BitBlt
TextOutW
CreateDIBSection
StartDocW
GetTextMetricsW
StartDocA
GetTextMetricsA
StartPage
EndPage
EndDoc
DeleteDC
CreateBitmap
CreatePatternBrush
SelectObject
PatBlt
CreateFontIndirectW
CreateFontIndirectA
CreateDCW
CreateDCA
GetDeviceCaps
GetObjectW
GetObjectA
GetStockObject
SetTextColor
DeleteObject

advapi32

RegEnumValueW
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegDeleteValueW
RegEnumValueA
RegDeleteValueA
RegOpenKeyExW
RegCreateKeyExW

shell32

SHChangeNotify
DragAcceptFiles
DragQueryFileW
DragQueryFileA
DragFinish
ShellExecuteW
ShellExecuteA
SHGetMalloc

comctl32

ImageList_Destroy
ImageList_SetBkColor
ImageList_Create
ord17
PropertySheetA
ImageList_ReplaceIcon
PropertySheetW

comdlg32

GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
ChooseColorW
GetSaveFileNameW
PageSetupDlgA
ChooseColorA
PrintDlgW
PrintDlgA
ChooseFontW
ChooseFontA
PageSetupDlgW

ole32

RegisterDragDrop
RevokeDragDrop
DoDragDrop
ReleaseStgMedium
OleInitialize
OleUninitialize
CoLockObjectExternal

imm32

ImmGetContext
ImmSetCompositionWindow
ImmSetCompositionFontA
ImmReleaseContext
ImmSetCompositionFontW

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueA

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfd936a5c973f97e38561a79f9e3f9bb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

ole32

imm32

version

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 5KB - Virtual size: 55KB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 5KB - Virtual size: 55KB

.rsrc
Size: 28KB - Virtual size: 28KB