7965d33f8fa0206868d2887e5894c4d5

Sharing

Copy URL Twitter E-mail

General

Target

7965d33f8fa0206868d2887e5894c4d5
Size

212KB
MD5

7965d33f8fa0206868d2887e5894c4d5
SHA1

41368441cbc43453c13ec3478c508d2203a06d4a
SHA256

2151bc54c41a4dacf4f4116e29940c4312ac7bb9f02d409e97520c0085981f0a
SHA512

086a5fd3b5abc9447e17a28ec1415bbe6cf44101170fd1777eee1c7f9895de1636098209f45c3697e74fd33b601d6b8b7752124c510bfdc0917d3d23b50576e4
SSDEEP

6144:I9G6/ElB0HjXRidEF6dNqhLIN1vNOHXrY:iD/ElB2A9MG1MHbY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7965d33f8fa0206868d2887e5894c4d5

Files

7965d33f8fa0206868d2887e5894c4d5
.exe windows:4 windows x86 arch:x86

e43307f0dacab0ce3f747127e39d9463

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ord17
ImageList_DrawEx
_TrackMouseEvent
ImageList_Add
ImageList_Draw
ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
ord6

kernel32

FindClose
FormatMessageA
GetFileAttributesA
LocalFree
FindFirstFileA
MoveFileA
CreateEventA
CreateFileA
CloseHandle
IsBadReadPtr
GetCurrentThreadId
GetTickCount
OutputDebugStringA
LoadLibraryExA
lstrcpyA
GetModuleFileNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetProcAddress
InterlockedIncrement
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetLastError
WideCharToMultiByte
GetACP
MultiByteToWideChar
InterlockedDecrement
GetLocaleInfoA
FreeLibrary
LoadLibraryA
lstrlenA
lstrcatA
FindResourceA
LoadResource
LockResource
FreeResource
FindNextFileA
DeleteFileA
lstrcmpiA
Sleep
GetStringTypeA
GetFileType
GetStdHandle
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsA
UnhandledExceptionFilter
FreeEnvironmentStringsW
TerminateProcess
GetCurrentProcess
SetLastError
TlsGetValue
TlsSetValue
LCMapStringW
TlsAlloc
GetOEMCP
GetCPInfo
LCMapStringA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
IsBadWritePtr
DeleteCriticalSection
VirtualFree
HeapCreate
VirtualAlloc
GetVersionExA
GetEnvironmentVariableA
HeapDestroy
ExitProcess
GetCommandLineA
HeapReAlloc
GetModuleHandleA
RtlUnwind
GetStartupInfoA
HeapSize
GetStringTypeW
HeapAlloc
VirtualQuery
HeapFree
WaitForSingleObject
GetVersion
IsBadCodePtr
SetUnhandledExceptionFilter
SetFilePointer
SetStdHandle
FlushFileBuffers

user32

GetClassInfoA
SetPropA
IsWindowEnabled
RemovePropA
GetWindowRect
GetSysColor
PostMessageA
GetUpdateRect
GetDC
SetRect
FillRect
ReleaseDC
wsprintfA
EnableWindow
IsWindow
SetWindowPos
DialogBoxParamA
IsWindowVisible
MessageBeep
GetFocus
GetCapture
SetCapture
SendDlgItemMessageA
SetDlgItemTextA
EndDialog
GetParent
GetDlgItem
BeginPaint
EndPaint
LoadStringA
DestroyWindow
GetClientRect
CreateWindowExA
SetWindowLongA
InvalidateRect
KillTimer
SetTimer
GetCursorPos
WindowFromPoint
CallWindowProcA
SetWindowTextA
ValidateRgn
IsDialogMessageA
PeekMessageA
WinHelpA
GetWindow
GetClassNameA
DrawTextExA
ReleaseCapture
ShowWindow
GetWindowDC
LoadImageA
InsertMenuItemA
SetCursorPos
TrackPopupMenuEx
SetWindowsHookExA
GetAsyncKeyState
UnhookWindowsHookEx
CallNextHookEx
TranslateAcceleratorA
IsMenu
GetWindowTextA
SetCursor
PostQuitMessage
UpdateWindow
GetDesktopWindow
IsIconic
SetForegroundWindow
SystemParametersInfoA
LoadAcceleratorsA
SetParent
SetRectEmpty
LoadBitmapA
GetSystemMetrics
LoadMenuA
DrawTextA
GetMenuItemCount
SetMenuItemInfoA
GetSubMenu
GetMenuItemInfoA
ClientToScreen
TrackPopupMenu
DestroyMenu
DispatchMessageA
GetMessageA
TranslateMessage
DefWindowProcA
DefDlgProcA
RegisterClassExA
GetClassInfoExA
LoadCursorA
SetFocus
RegisterClassA
GetWindowLongA
FindWindowExA
DrawEdge
ScreenToClient
SendMessageA
GetPropA
GetDlgItemTextA
DestroyAcceleratorTable
InflateRect

gdi32

DeleteObject
SelectObject
CreateCompatibleDC
GetStockObject
RealizePalette
SelectPalette
CreateDIBitmap
CreatePalette
BitBlt
CreateCompatibleBitmap
LineTo
MoveToEx
CreatePen
GetDeviceCaps
SetBkMode
SetTextColor
SetBkColor
CreateSolidBrush
CreateDIBPatternBrushPt
StretchBlt
CreateFontIndirectA
CreateFontA
UpdateColors
GetTextExtentPoint32A
FillRgn
CreatePolygonRgn
TextOutA
CreateBitmapIndirect
GetNearestColor
ExcludeClipRect
SelectClipRgn
CreateRectRgn
DeleteDC
GetObjectA

shell32

ShellExecuteA

ole32

CoTaskMemFree
CoUninitialize
OleUninitialize
OleInitialize
CoInitialize
CoTaskMemAlloc

oleaut32

SysStringLen
SysAllocString
SysReAllocStringLen
SysAllocStringByteLen
SysFreeString
SysStringByteLen

mxdlgsup

MXMessageBox
MXSubclassDialog
MXLoadLanguageDll

Sections

.text
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e43307f0dacab0ce3f747127e39d9463

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

shell32

ole32

oleaut32

mxdlgsup

Sections

.text Size: 128KB - Virtual size: 128KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 22KB

.rsrc Size: 48KB - Virtual size: 48KB

.text
Size: 128KB - Virtual size: 128KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 22KB

.rsrc
Size: 48KB - Virtual size: 48KB