7939868fff6107b256de9b7f1d533edf

Sharing

Copy URL

Twitter E-mail

General

Target

7939868fff6107b256de9b7f1d533edf
Size

108KB
MD5

7939868fff6107b256de9b7f1d533edf
SHA1

c9c03144124c29851a33344a43008e9eaf14c0b4
SHA256

06aad8a9e1ca0581acad8f509764af1818d4671199d566fcd3c4159f594222ff
SHA512

b794351a8f8d0b5a154904f28a9fd389dc1ff14a5ad329f70c26c0049641c593ca4990dd85f4944a9ac99f182354f5b58508b5c8733d5f5e4cc1236ef16c1fbd
SSDEEP

3072:Bginp8LgTxUx7xc47VqPtQtNB2uGCCRGSuf:Kwp8LgTxUx7LYPtsNM2C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7939868fff6107b256de9b7f1d533edf

Files

7939868fff6107b256de9b7f1d533edf
.exe windows:4 windows x86 arch:x86

0c29cca4c65e62ef32449fbd80040d59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

MoveFileA
LocalAlloc
FormatMessageA
GetDateFormatW
GetDateFormatA
GetTimeFormatW
GetTimeFormatA
WriteFile
SetFilePointer
CreateFileW
CreateFileA
ReadFile
LoadLibraryW
GetSystemPowerStatus
DeleteFileW
GetSystemDirectoryA
FileTimeToLocalFileTime
GetCurrentDirectoryW
CompareFileTime
CompareStringW
CompareStringA
WideCharToMultiByte
GetSystemDefaultLCID
lstrcpyA
SetStdHandle
MoveFileW
LoadResource
FindResourceW
HeapFree
HeapCreate
TlsGetValue
TlsAlloc
TlsSetValue
GetStdHandle
GetFileType
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
ExitProcess
RtlUnwind
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
MultiByteToWideChar
GetVersionExA
SetErrorMode
LockResource
FreeResource
GetCurrentThreadId
OpenMutexW
FormatMessageW
LocalFree
SetLastError
GetLastError
OpenProcess
TerminateProcess
DeleteCriticalSection
GetVersion
GetModuleFileNameA
GetModuleFileNameW
GlobalAlloc
GlobalFree
DebugBreak
Sleep
LoadLibraryA
GetProcAddress
lstrlenW
lstrlenA
lstrcpyW
FreeLibrary
GetComputerNameA
FindFirstFileA
DeleteFileA
FindNextFileA
FindClose
TerminateThread
ResetEvent
SetUnhandledExceptionFilter
SetThreadPriority
ReleaseMutex
SetEvent
WaitForSingleObject
CreateEventA
CreateMutexA
CreateThread
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
FlushFileBuffers

user32

SetWindowLongW
CharUpperBuffA
SendMessageW
UpdateWindow
ReleaseDC
GetDC
GetWindowRect
SetClassLongA
LoadCursorW
wsprintfA
SetWindowPos
GetWindowLongW
DialogBoxIndirectParamA
EndDialog
ScreenToClient
GetDlgItem
LoadBitmapA
CharUpperW
WinHelpW
SetWindowTextA
PostMessageW
CharPrevA
UnregisterClassA
DestroyWindow
PeekMessageA
PostMessageA
GetFocus
GetWindowLongA
SetWindowLongA
GetMessageA
TranslateMessage
DispatchMessageA
InvalidateRect
KillTimer
PostQuitMessage
BeginPaint
DefWindowProcA
IntersectRect
EndPaint
IsWindowVisible
EnableMenuItem
CheckMenuItem
UnregisterClassW
ClientToScreen
WinHelpA
IsWindow
MessageBoxW
MoveWindow
LoadMenuIndirectA
LoadMenuIndirectW
SetMenu
RegisterClassA
LoadCursorA
GetSysColor
LoadIconA
CreateWindowExA
GetSystemMetrics
wsprintfW
SetWindowTextW
GetClientRect
SetTimer
SetFocus
FindWindowA
SendMessageA
ShowWindow
SetForegroundWindow
GetWindowThreadProcessId

shell32

ShellExecuteA

ole32

CoFileTimeNow
OleUninitialize
OleInitialize

advapi32

RegEnumKeyExA
RegEnumKeyExW
RegCloseKey
RegCreateKeyExW
RegCreateKeyExA
RegDeleteKeyW
RegDeleteKeyA
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegDeleteValueW
RegDeleteValueA
CloseServiceHandle
ControlService
StartServiceW
QueryServiceStatus
OpenServiceW
OpenSCManagerW
RegOpenKeyW
RegOpenKeyA

version

VerQueryValueW
VerQueryValueA
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

mso97

ord210
ord229
ord117
ord223
ord494
ord189
ord956
ord38
ord111
ord164
ord161
ord104
ord122
ord204
ord240
ord109
ord57
ord35
ord198
ord70
ord47
ord318
ord296
ord805
ord195
ord193
ord194
ord217
ord226
ord242
ord116
ord261
ord262
ord60
ord11
ord887
ord933
ord187
ord203
ord2
ord4
ord209
ord211
ord925
ord652
ord219
ord7
ord199
ord815
ord821
ord551
ord678
ord677
ord295
ord121
ord142
ord120
ord181
ord797
ord52
ord126
ord182
ord155
ord207
ord206
ord3
ord180
ord213
ord228
ord127
ord817
ord125
ord157
ord158
ord159
ord833
ord836
ord911
ord55
ord866
ord861
ord960
ord502
ord958
ord136
ord878
ord990
ord22
ord924
ord929
ord581
ord94
ord6
ord337
ord123
ord215
ord128
ord896
ord231
ord448
ord983
ord750
ord884
ord844
ord192
ord327
ord234
ord926
ord950
ord952
ord253
ord257
ord260
ord156
ord162
ord185
ord118
ord139
ord184
ord196
ord200
ord227
ord591
ord8
ord188
ord495
ord497
ord114
ord214
ord147
ord201
ord124
ord212
ord178
ord54
ord87
ord154
ord140
ord5
ord270
ord876
ord921
ord540
ord366
ord589
ord208
ord256
ord499
ord894
ord1
ord294
ord883
ord831
ord923
ord191
ord190
ord163
ord31
ord146
ord48
ord137
ord143
ord670
ord425
ord937
ord243
ord42
ord951
ord237
ord225
ord252
ord259
ord107
ord106
ord43
ord46
ord105
ord59
ord58
ord49
ord97
ord78
ord80
ord74
ord230
ord115

gdi32

SetTextColor
CreateSolidBrush
GetTextExtentPoint32W
SelectObject
TextOutW
SetBkMode
DeleteObject
CreateFontIndirectA
GetDeviceCaps
CreateFontW
CreateFontA
CreatePen
GetObjectA
LineTo
MoveToEx
GetTextExtentPointA
TextOutA
DeleteDC
BitBlt
CreateCompatibleDC
SetBkColor

comctl32

ord17

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c29cca4c65e62ef32449fbd80040d59

Headers

File Characteristics

Imports

kernel32

user32

shell32

ole32

advapi32

version

mso97

gdi32

comctl32

Sections

.text Size: 82KB - Virtual size: 82KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 13KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 82KB - Virtual size: 82KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 13KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 9KB - Virtual size: 9KB