79715193399a5168c4562666655c762c

Sharing

Copy URL

Twitter E-mail

General

Target

79715193399a5168c4562666655c762c
Size

138KB
MD5

79715193399a5168c4562666655c762c
SHA1

f0f0da11b1659bf148bb888e13417be3ccb11964
SHA256

73464a3bbc83fb828dcc8f511f2e9e87f0d9a4eb36846de3f87b2d350b6ebb03
SHA512

855ed3d1f425c181f6da8310b5a0f021b38cab1142da3bbcb9d444caf9e6b54d6c2d4ef1ce7fcec03862132aa34434215ea853a31e31781ae5650a9143cb9f97
SSDEEP

3072:WNT3EHkB+s8165RiWdx0yB2uxz78f7mnFsY3y6be/T:CL+NqkWd3464fq1be/T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
79715193399a5168c4562666655c762c

Files

79715193399a5168c4562666655c762c
.exe windows:5 windows x86 arch:x86

af4bc8a6ee722c11935fda4a9093a8a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\zuccmvJlOcBfri\vpsfbgZR\ulCJeguCkavwN.pdb

Imports

gdi32

SelectClipRgn
GetTextExtentExPointW
DPtoLP
GetObjectA
WidenPath
PtVisible
EnumFontsW
MoveToEx
SetWindowOrgEx
TextOutA
CreatePolygonRgn
DeleteObject
ScaleViewportExtEx
SetRectRgn
IntersectClipRect
ExtFloodFill
GetTextMetricsW
GetTextMetricsA
GetFontData

user32

IntersectRect
ScrollWindow
TranslateAcceleratorA
OpenIcon
ExitWindowsEx
MapVirtualKeyA
DispatchMessageA
GetMenu
AdjustWindowRect
SetRect
GetMenuItemCount
SetDlgItemInt
SetMenuItemBitmaps
CharPrevA
CreateWindowExW
TranslateMessage
MapVirtualKeyExW
GetDlgItemTextW
GetKeyboardLayoutList
FindWindowA
SetWindowRgn
GetWindowTextA
GetWindowRect
ArrangeIconicWindows
InSendMessage
CharToOemBuffA
MessageBoxExA
CopyRect
InsertMenuA
EqualRect
RedrawWindow
IsDlgButtonChecked
SendMessageA
CharLowerA
IsCharAlphaW
ToUnicodeEx
CharToOemA
CharLowerBuffW
MonitorFromPoint
wsprintfW
RegisterClassW
CreateCursor

kernel32

FormatMessageA
LocalFree
FormatMessageW
SetTimerQueueTimer
ReadFile
SetCommMask
OpenFileMappingA
GetComputerNameExA
SizeofResource
CancelIo
lstrcpynW
lstrcmpA
FreeLibrary
WaitForSingleObjectEx
SetFileAttributesW
GetLastError
lstrlenA
HeapSize
ClearCommError
IsDBCSLeadByte
GetAtomNameA
GetCommConfig

shlwapi

PathRelativePathToA
UrlGetPartA

msvcrt

exit

ntdll

memset

Exports

Exports

?Oofa_l__WC_SK@@YGDEPAI@Z

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 158B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.$debug
Size: 512B - Virtual size: 97B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data2
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 1024B - Virtual size: 561B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data4
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af4bc8a6ee722c11935fda4a9093a8a8

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

kernel32

shlwapi

msvcrt

ntdll

Exports

Exports

Sections

.text Size: 127KB - Virtual size: 126KB

.itext Size: 512B - Virtual size: 372B

.idata Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 158B

.$debug Size: 512B - Virtual size: 97B

.data1 Size: 512B - Virtual size: 96B

.data2 Size: 512B - Virtual size: 440B

.data3 Size: 1024B - Virtual size: 561B

.data4 Size: 512B - Virtual size: 512B

.data Size: 2KB - Virtual size: 91KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 127KB - Virtual size: 126KB

.itext
Size: 512B - Virtual size: 372B

.idata
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 158B

.$debug
Size: 512B - Virtual size: 97B

.data1
Size: 512B - Virtual size: 96B

.data2
Size: 512B - Virtual size: 440B

.data3
Size: 1024B - Virtual size: 561B

.data4
Size: 512B - Virtual size: 512B

.data
Size: 2KB - Virtual size: 91KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB