805617d6044761b1785bf6d0aa3acf8d

Sharing

Copy URL Twitter E-mail

General

Target

805617d6044761b1785bf6d0aa3acf8d
Size

330KB
MD5

805617d6044761b1785bf6d0aa3acf8d
SHA1

78c44df6ea09d056e4fa8b86533246ed6e65f52b
SHA256

c1b51fd1c87113380f5e1d71b843ef64a163037a081a0752013c92a7b9fd0219
SHA512

0eabddb00216a4d3343d9c664ceffb89f96be4fa05e2c04660610bd7546fc36f8ae896c0768d444ea62f9b872c6f62486a794c5b4ee72e8984dfaf67ed309fb3
SSDEEP

6144:Ah3YiGdgkCP6msnifxWBSFvkwM3JOEPlWMZMrmzkgxE4fz:u3YiGdgkO6msnifxGSuAEN7ZMrmRL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
805617d6044761b1785bf6d0aa3acf8d

Files

805617d6044761b1785bf6d0aa3acf8d
.dll windows:4 windows x86 arch:x86

8b53d529923b7f6df22a23bef75e6ae9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetDIBits
LineTo
GetRgnBox
GetPixel
SetPixel
GetPaletteEntries
GetBitmapBits

ole32

CoFreeUnusedLibraries
CoRegisterClassObject
CLSIDFromProgID
CoTaskMemFree
GetHGlobalFromStream
CoRevokeClassObject
CoReleaseMarshalData

kernel32

LoadLibraryA
GetTickCount
MoveFileA
GetACP
GetLocalTime
GetFileAttributesA
HeapDestroy
LockResource
GetVersion
FormatMessageA
VirtualAllocEx
VirtualAlloc
GetStringTypeW
ExitThread
GetCommandLineW
lstrlenA
GetVersionExA
GetLastError
IsBadReadPtr
VirtualQuery
FindClose
GlobalFindAtomA
GetModuleHandleW
GetProcAddress
lstrcmpiA
GetCommandLineA
SetLastError
ExitProcess
GetFileSize
GetModuleHandleA
GetProcessHeap

user32

DrawAnimatedRects
CharToOemA
WindowFromPoint
SetWindowLongA
EqualRect
LoadBitmapA
PeekMessageW
SetClassLongA
GetWindowTextA
CreatePopupMenu
SetWindowPlacement
GetMenuItemInfoA
CharNextW
CharLowerBuffA
GetSystemMetrics
DispatchMessageA
MapVirtualKeyA
DefFrameProcA
ClientToScreen
IsDialogMessageW
GetClassInfoA
SetScrollPos
AdjustWindowRectEx
LoadCursorA
GetSubMenu
GetSysColorBrush
CallNextHookEx
ReleaseCapture
GetParent
LoadStringA
ActivateKeyboardLayout
UpdateWindow
GetCursorPos
SetWindowsHookExA
DrawMenuBar
GetClassLongA
DrawFrameControl
ScreenToClient
GetKeyboardLayout
wsprintfA
RemovePropA
GetKeyboardState
MsgWaitForMultipleObjects
PostMessageA
GetDesktopWindow
OemToCharA
GetLastActivePopup
GetWindowThreadProcessId
ChildWindowFromPoint
MessageBeep
SetActiveWindow
EnumWindows
EnableMenuItem
PostQuitMessage
IsZoomed
DrawTextA
RemoveMenu
SetTimer
InsertMenuA
GetScrollRange
SetScrollRange
ShowOwnedPopups
GetWindowLongW
SystemParametersInfoA
SetWindowTextA
WaitMessage
IsDialogMessageA
SetParent
SetCapture
BeginPaint
GetDCEx
SetFocus
GetWindowDC
SetForegroundWindow
MapWindowPoints
CharNextA
GetCapture
CharUpperBuffA
EnableWindow
KillTimer
FrameRect
PeekMessageA
SetPropA
IsWindow
GetSystemMenu
FillRect
GetMenuItemID
SetClipboardData
GetKeyboardLayoutList
GetForegroundWindow
DrawIconEx
FindWindowA
GetMessagePos
RegisterWindowMessageA
CloseClipboard
GetDC
GetScrollInfo
DrawEdge
InsertMenuItemA
GetCursor
GetTopWindow
GetWindowRect
GetActiveWindow
SendMessageW
GetKeyState
GetMenuStringA
SetWindowLongW
IsRectEmpty
EnableScrollBar
OpenClipboard
GetIconInfo
ScrollWindow
SetScrollInfo
DefWindowProcA
IsChild
CreateIcon
SetWindowPos
GetWindowLongA
GetClientRect
RegisterClipboardFormatA
TranslateMDISysAccel
InflateRect
DispatchMessageW
PtInRect
GetMenuItemCount
DeleteMenu
DestroyWindow
MessageBoxA
DestroyMenu
GetSysColor
SetMenuItemInfoA
DefMDIChildProcA
GetClassNameA
GetClipboardData
GetDlgItem
EnumThreadWindows
SendMessageA
CreateMenu
DestroyCursor
GetFocus
IsWindowEnabled
ReleaseDC
EndPaint
GetKeyboardLayoutNameA
IntersectRect
LoadKeyboardLayoutA
CheckMenuItem
SetRect
DrawIcon
GetMenuState
MoveWindow
CreateWindowExA
IsWindowUnicode
SetCursor
GetWindowPlacement
LoadIconA
GetWindow
SetMenu
ShowWindow
EmptyClipboard
UnregisterClassA
ShowScrollBar
CallWindowProcA
GetPropA
InvalidateRect
GetKeyNameTextA
GetMenu
RegisterClassA
OffsetRect
TrackPopupMenu
UnhookWindowsHookEx
IsWindowVisible

advapi32

RegOpenKeyExA
RegLoadKeyA
RegCreateKeyA
RegCreateKeyExA

Sections

CODE
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc3
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc7
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc5
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 512B - Virtual size: 197B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b53d529923b7f6df22a23bef75e6ae9

Headers

File Characteristics

Imports

gdi32

ole32

kernel32

user32

advapi32

Sections

CODE Size: 118KB - Virtual size: 117KB

.data Size: 197KB - Virtual size: 197KB

.rsrc3 Size: 512B - Virtual size: 85B

.rsrc7 Size: 1KB - Virtual size: 1KB

.rsrc5 Size: 6KB - Virtual size: 6KB

.rsrc2 Size: 2KB - Virtual size: 1KB

.rsrc9 Size: 512B - Virtual size: 197B

.rsrc Size: 1024B - Virtual size: 984B

.reloc Size: 2KB - Virtual size: 1KB

CODE
Size: 118KB - Virtual size: 117KB

.data
Size: 197KB - Virtual size: 197KB

.rsrc3
Size: 512B - Virtual size: 85B

.rsrc7
Size: 1KB - Virtual size: 1KB

.rsrc5
Size: 6KB - Virtual size: 6KB

.rsrc2
Size: 2KB - Virtual size: 1KB

.rsrc9
Size: 512B - Virtual size: 197B

.rsrc
Size: 1024B - Virtual size: 984B

.reloc
Size: 2KB - Virtual size: 1KB