9703e72fe373c7e6788ec98f9194b4ab

Sharing

Copy URL Twitter E-mail

General

Target

9703e72fe373c7e6788ec98f9194b4ab
Size

456KB
MD5

9703e72fe373c7e6788ec98f9194b4ab
SHA1

68e709ff95d50fd97f359e7a337a552cbbf3c2ad
SHA256

3a3dce4e72f34ce14a0b91b32c114a69416a2141920ff0850f95f4a14b866641
SHA512

6fa4f5436c567ee872596a311eec04a665e4d031530afbb296a90fd48478d57cca94f52bbc5daf0b9b983417c9a1348395212c228540108c6b4029c9a9f35754
SSDEEP

6144:2AqpegFKZ2haOGQnndWxhCDHft4HRFqu0UgwdR/VcgRLkD2u6Ibf6/6MO/iw:Yper2haOGKdWa/uXqhudggRLEF6iY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9703e72fe373c7e6788ec98f9194b4ab

Files

9703e72fe373c7e6788ec98f9194b4ab
.exe windows:5 windows x86 arch:x86

c6f64aeb6d61dca7f6cdd49f8fd87100

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
SetTextColor
SelectObject
DeleteObject
GetDeviceCaps
CreateSolidBrush

kernel32

HeapCreate
IsValidCodePage
SizeofResource
InterlockedExchange
GetCurrentThreadId
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
VirtualFree
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
SetStdHandle
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
CompareStringA
FindFirstFileA
lstrcmpA
GetProcessHeap
GetProcAddress
GetFullPathNameA
GetCPInfo
GetStartupInfoW
DeleteFileA
LCMapStringW
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
TlsAlloc
FindResourceW
QueryPerformanceCounter
GetOEMCP
GetVersionExW
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetVersion
SetEndOfFile
VirtualQuery
TerminateProcess
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
LocalFree
SetEvent
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
FreeEnvironmentStringsW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindNextFileA
WaitForSingleObject
GetFileAttributesA
GetConsoleOutputCP
GetStdHandle
GetEnvironmentVariableA
RtlUnwind
CreateProcessW
Sleep
FindResourceA
VirtualAlloc
GetTickCount

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueW

user32

SetCursor
InvalidateRect
GetSysColor
MessageBoxA
GetDesktopWindow
LoadIconA
ClientToScreen
GetDlgItem
SetTimer
SetWindowTextA
EndDialog
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
SetFocus
EndPaint
DispatchMessageA
CreateWindowExA
LoadStringA
GetWindow
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
ShowWindow
GetParent
DestroyWindow
ScreenToClient
SendMessageA
ReleaseDC
GetCursorPos
GetDC
IsWindow
PostQuitMessage
SetForegroundWindow

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 408KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6f64aeb6d61dca7f6cdd49f8fd87100

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

user32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 408KB - Virtual size: 404KB

.data Size: 20KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 792B

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 408KB - Virtual size: 404KB

.data
Size: 20KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 792B