963e267343fb77b6cbb071c114b8570a

Sharing

Copy URL

Twitter E-mail

General

Target

963e267343fb77b6cbb071c114b8570a
Size

167KB
MD5

963e267343fb77b6cbb071c114b8570a
SHA1

ede0b6afe205724a7313aaccbfbe71c335c24a43
SHA256

afe5cba6519ed81fd93246a6f11b946bb1713039798e06f4b3e3065496165c50
SHA512

2b1eb5ad16df00acad8d05dce8dcfab945a5e51843602d37cd5f5e5e54f98492f3bbc0e04d813f920477e4d841f99c3f05305ba2a421ee5a472cf71c18d3a4c1
SSDEEP

3072:+qwnALiATU+lsg2dx062lqqQwVBQ4/54z1xsOed+4auIlSct:6HNqsg2D0Hltx/5wx0QXuI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
963e267343fb77b6cbb071c114b8570a

Files

963e267343fb77b6cbb071c114b8570a
.exe windows:4 windows x86 arch:x86

4e55a6fd09a9b09ef0bfbd37c7173073

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColorBrush
SetMenu
IsWindowEnabled
LoadIconA
ReleaseCapture
SetScrollInfo
SetWindowTextA
GetDlgItem
SetScrollRange
MsgWaitForMultipleObjects
SetForegroundWindow
CharToOemA
GetIconInfo
SetClassLongA
CharLowerA
DefMDIChildProcA
EnableMenuItem
IsDialogMessageW
DrawAnimatedRects
EnumThreadWindows
IsWindowUnicode
UnregisterClassA
DrawIcon
PtInRect
EnableScrollBar
GetKeyState
IsWindowVisible
GetScrollPos
OemToCharA
GetSystemMetrics
IsChild
GetMenu
GetMenuItemID
SetWindowPos
SetActiveWindow
LoadBitmapA
wsprintfA
DefWindowProcA
EnableWindow
DrawFrameControl
SetFocus
OffsetRect
OpenClipboard
SendMessageA
CharLowerBuffA
SetClipboardData
GetForegroundWindow
SendMessageW
SetWindowLongA
MessageBeep
DrawIcon
WaitMessage
UpdateWindow
GetMenuItemCount
LoadStringA
GetMenuState
PostMessageA
ShowOwnedPopups
SetParent
CharNextW
GetMenu
GetDC
FindWindowA
GetPropA
RegisterClassA
UnhookWindowsHookEx
WindowFromPoint
SetActiveWindow
SetScrollPos
GetClassInfoA
DrawAnimatedRects
ShowWindow
GetSystemMetrics
ReleaseDC
SetCursor
EnableWindow
GetCapture
PeekMessageW
EqualRect
TranslateMessage
ReleaseCapture
GetKeyboardLayout
SetWindowTextA
GetKeyboardType
GetSysColor
GetIconInfo
GetScrollRange
GetActiveWindow
DefMDIChildProcA
CharNextW
GetKeyboardLayoutList
CreatePopupMenu
GetClientRect
AdjustWindowRectEx
IsWindowEnabled
MessageBoxA
RegisterClassA
CallNextHookEx
GetMenuItemCount
UnregisterClassA
GetCursorPos
ShowWindow
SetPropA
RegisterClipboardFormatA
GetKeyboardLayout
DispatchMessageW
IntersectRect
BeginPaint
wsprintfA
GetPropA
GetSystemMenu
PtInRect
LoadStringA
GetClassNameA
GetMenu
GetScrollPos
GetMessagePos
SendMessageW
GetKeyboardState
IsZoomed
SetWindowsHookExA
DestroyIcon
FillRect
CallWindowProcA
IsWindowUnicode
GetWindowLongA
DrawTextA
GetDCEx
RemoveMenu
LoadKeyboardLayoutA
IsIconic
OffsetRect
GetClipboardData
UpdateWindow
GetKeyboardType
SetWindowLongW
TranslateMDISysAccel
RegisterClassA
GetSysColorBrush
KillTimer
CharUpperBuffA
CharLowerA
EnumThreadWindows
GetClassLongA
SetMenu
OpenClipboard
InflateRect
CreateIcon
LoadCursorA
SetFocus
ShowScrollBar
WaitMessage
LoadBitmapA
GetKeyboardState
PeekMessageW
GetClassInfoA
PeekMessageA
DestroyIcon
GetKeyboardType
SendMessageA
MessageBeep
SetActiveWindow
SetCursor
DrawIcon
OemToCharA
RegisterClipboardFormatA
CallNextHookEx
GetWindow
SetScrollRange
GetMessagePos
GetKeyState
DrawMenuBar
CharToOemA
GetWindowLongW
IsWindow
SetWindowPlacement
GetScrollPos
ScrollWindow

ole32

CoGetContextToken
StringFromIID
CoTaskMemFree
GetHGlobalFromStream
CLSIDFromProgID
CLSIDFromString
CLSIDFromProgID
CoTaskMemFree
StgCreateDocfileOnILockBytes
CreateOleAdviseHolder
StgOpenStorage
CoUninitialize
MkParseDisplayName
CreateBindCtx
StgCreateDocfileOnILockBytes
CoCreateInstanceEx
CoReleaseMarshalData
CreateBindCtx
CLSIDFromProgID
CoTaskMemFree
CoCreateFreeThreadedMarshaler
CoUninitialize

comctl32

ImageList_Draw
ImageList_Destroy
ImageList_DrawEx
ImageList_Add
ImageList_Read
ImageList_DragShowNolock
ImageList_Remove
ImageList_Write
ImageList_Create
ImageList_DragShowNolock
ImageList_Read
ImageList_Write
ImageList_Destroy
ImageList_Add
ImageList_Remove
ImageList_Draw
ImageList_Create
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_Write
ImageList_DragShowNolock
ImageList_Create
ImageList_Destroy

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerFindFileA
GetFileVersionInfoA

kernel32

WideCharToMultiByte
GetVersionExA
GetCurrentProcess
CreateFileA
SetEndOfFile
ExitProcess
lstrcmpiA
GetVersion
CompareStringA
SetFilePointer
GlobalDeleteAtom
MoveFileA
lstrcpynA
GetCurrentThreadId
HeapFree
CreateThread
GetLocaleInfoA
GetStartupInfoA
LocalFree
GetStringTypeA
GetVersionExA
FindFirstFileA
EnterCriticalSection
GetProcAddress
lstrcatA
FreeResource
LoadLibraryA
VirtualAlloc
GetModuleHandleA
FindClose
Sleep
FreeLibrary
ExitThread
EnumCalendarInfoA
GetCommandLineA
GetFullPathNameA
GetDateFormatA
GetProcessHeap
GetCommandLineA
LoadLibraryA
HeapFree
GetFileType
lstrlenW
lstrcmpiA
GetLastError
CreateThread
LoadLibraryExA
GetCurrentProcessId
GlobalDeleteAtom
DeleteFileA
GlobalAlloc
EnterCriticalSection
GetACP
GetFileAttributesA
VirtualAllocEx
GetDiskFreeSpaceA
SetEvent
lstrcatA
SetEndOfFile
FreeLibrary
GetCPInfo
GetProcessHeap
FormatMessageA
MoveFileExA
Sleep
GetVersionExA
LocalReAlloc
SetFilePointer
LoadLibraryExA
GetModuleHandleW
GetCommandLineW
VirtualQuery
MoveFileExA
GlobalAddAtomA
CreateThread
SetThreadLocale
ExitThread
HeapAlloc
GetCurrentThreadId
lstrcmpA
FreeLibrary
GetCommandLineA
HeapFree
GetCurrentThread
SetEvent

shell32

SHGetFileInfoA
SHGetDiskFreeSpaceA
DragQueryFileA
SHFileOperationA
SHGetSpecialFolderLocation
SHGetSpecialFolderLocation
Shell_NotifyIconA
SHGetFolderPathA
SHGetFileInfoA
SHGetDiskFreeSpaceA
SHFileOperationA
SHGetFileInfoA
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetFolderPathA
SHGetDiskFreeSpaceA
SHGetFileInfoA

comdlg32

FindTextA
GetOpenFileNameA
ChooseColorA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

shlwapi

SHDeleteValueA
PathGetCharTypeA
SHDeleteKeyA
SHStrDupA
SHSetValueA
SHGetValueA
SHDeleteValueA
PathGetCharTypeA
SHSetValueA
PathGetCharTypeA
PathIsDirectoryA
SHDeleteValueA
SHGetValueA
PathIsDirectoryA
PathIsContentTypeA

oleaut32

SysReAllocStringLen
SysStringLen
SafeArrayGetUBound
SafeArrayGetElement
VariantCopyInd
SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo
VariantChangeType
SafeArrayCreate
SysStringLen
SysAllocStringLen
SysReAllocStringLen
SafeArrayCreate
RegisterTypeLib
VariantChangeType
SafeArrayGetUBound
GetErrorInfo
SafeArrayGetElement
SysStringLen
SysAllocStringLen

gdi32

LineTo
CreatePenIndirect
RestoreDC
GetClipBox
SetTextColor
SetBkColor
SetPixel
SaveDC
GetCurrentPositionEx
SaveDC
SetBkColor
GetRgnBox
CreateCompatibleDC
GetPaletteEntries
GetClipBox
GetCurrentPositionEx
GetObjectA
SetTextColor

advapi32

GetUserNameA
RegEnumKeyA
GetLengthSid
RegDeleteValueA
GetLengthSid
RegEnumKeyExA
RegDeleteKeyA

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e55a6fd09a9b09ef0bfbd37c7173073

Headers

File Characteristics

Imports

user32

ole32

comctl32

version

kernel32

shell32

comdlg32

shlwapi

oleaut32

gdi32

advapi32

Sections

.text Size: 65KB - Virtual size: 64KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 75KB - Virtual size: 75KB

.adata Size: 2KB - Virtual size: 1KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 65KB - Virtual size: 64KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 75KB - Virtual size: 75KB

.adata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 10KB - Virtual size: 9KB