97602b65c638510a3029636a19ff0082

Sharing

Copy URL Twitter E-mail

General

Target

97602b65c638510a3029636a19ff0082
Size

746KB
MD5

97602b65c638510a3029636a19ff0082
SHA1

1734690242c087bff7c346a0975d0cc7afe5743a
SHA256

3e7b0219de1a005c79d38f43b6fcb55515e62b5a1b327357731a1e2ac3cdafdd
SHA512

1ae7f70bfd79abe2644679e63b15d3e1070e752ee84616159039473baf9922beab3e8ac169758b6c06e7907380287c439f414f69bd8019bae1cd9eb32180bce1
SSDEEP

12288:1k+5oxkc3yMrZEhOgtAtQzXcGBsTb6Pp76dquiXcIKswsPwuX4VJ:1DiScnrZ1guCoXTbyk3iXdKUon

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97602b65c638510a3029636a19ff0082

Files

97602b65c638510a3029636a19ff0082
.dll windows:5 windows x86 arch:x86

c2beb848a27e5c1f28cd0537406887d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Z:\homfWqmFaog\zjRwoldBqvm\vrZlkLeAwAyN\utAcfumYexw.pdb

Imports

comctl32

ImageList_GetImageCount
ImageList_AddMasked
CreatePropertySheetPageA
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Write

kernel32

GlobalFree
GetSystemDirectoryA
EnumResourceTypesA
RemoveDirectoryA
GetComputerNameExA
OpenEventW
WriteFile
GetLastError
SetLocalTime
SetUnhandledExceptionFilter
LCMapStringA
HeapCreate
LCMapStringW
GetTempPathW
GetCommModemStatus
GetSystemTimeAsFileTime
lstrlenW
OpenFileMappingA
CompareStringA
SetCurrentDirectoryA
ReadFile
GetExitCodeThread
GetVersionExA
SetHandleCount
WaitCommEvent
GetCommState
LoadLibraryW
SetPriorityClass
SetCommMask
VerifyVersionInfoW
CreateMutexA
GlobalSize
GetStartupInfoW
WaitForSingleObjectEx
LoadLibraryA
LoadLibraryExW
LoadLibraryExA
FoldStringW
VirtualProtect
GetCommConfig
SetCommState
CreateNamedPipeW
RaiseException
FreeResource
SystemTimeToFileTime
FindFirstChangeNotificationW
lstrcmpW
UnlockFile
GetOEMCP
GetModuleFileNameW
GetWindowsDirectoryA
GetModuleHandleA
FormatMessageA
GlobalMemoryStatus
lstrcmpiA
FileTimeToSystemTime
lstrcpynW

user32

SendMessageW
CharUpperW
DrawAnimatedRects
GetForegroundWindow
IsRectEmpty
DefWindowProcW
GetSysColor
RegisterClassA
GetMenuStringW
GetAltTabInfoW
GetDlgItemTextA
CreateDialogIndirectParamW
GetClientRect
DefFrameProcW
GetWindowLongW
PostQuitMessage
SetLastErrorEx
LoadAcceleratorsW
SetWindowRgn
OpenDesktopW
CheckMenuRadioItem
DrawStateA
DrawTextW
EnumThreadWindows
GetSystemMenu
PostThreadMessageW
GetTopWindow
CloseDesktop
DestroyCursor
IsWindowUnicode
GetKeyboardLayout
MapVirtualKeyA
GetMenuItemCount
DefDlgProcA
SetCursor
SetScrollInfo
CharUpperBuffW
SetTimer
IsCharLowerA
MonitorFromPoint
GetSubMenu
TileWindows
LoadBitmapW
ModifyMenuW
GetDlgItem
GetLastActivePopup
CharLowerW
GetDoubleClickTime
GetUpdateRgn
RegisterClassExA
ShowOwnedPopups
SendDlgItemMessageW
TranslateAcceleratorA
CharPrevA
IsWindow
InvertRect
KillTimer
DestroyAcceleratorTable
ValidateRect
CharUpperA
FindWindowW
DrawStateW
EnumChildWindows
LoadMenuW
GetClassInfoExW
GetClassLongW
IntersectRect
LoadCursorA
DefFrameProcA
IsWindowVisible
GetKeyboardLayoutList
WaitForInputIdle
CharLowerA
AllowSetForegroundWindow
MapWindowPoints
SetParent
OffsetRect
InsertMenuItemW
SetWindowTextW
CharToOemBuffA
GetWindowTextLengthW
GetNextDlgGroupItem
RegisterClassW
TranslateAcceleratorW
GetClipCursor
SendMessageTimeoutA
wvsprintfA
GetClassInfoExA
CreateCaret
UpdateWindow
IsDlgButtonChecked
EnableScrollBar
SetDlgItemTextA
GetWindow
PostMessageW
MonitorFromRect
SetPropW
GetClassInfoA
LookupIconIdFromDirectory
SetMenuItemBitmaps
ChangeMenuW
RemovePropW
GetScrollRange
keybd_event
CreateIconIndirect
UnloadKeyboardLayout
MessageBoxW
InSendMessageEx
CallWindowProcW
GetMessagePos
RegisterHotKey
GetIconInfo
CreateMenu
PostThreadMessageA
LoadImageW
ShowScrollBar
FindWindowExW
RegisterWindowMessageW
CharNextW

msvcrt

_controlfp
wcstoul
malloc
fgetc
iswdigit
fprintf
isdigit
__set_app_type
strtoul
atoi
mktime
wcsncpy
puts
vsprintf
iswspace
gets
__p__fmode
__p__commode
fclose
_amsg_exit
_initterm
sprintf
wcsstr
wcstod
setvbuf
system
ftell
_acmdln
setlocale
exit
_ismbblead
wcstombs
_XcptFilter
strstr
isalnum
atol
fputs
_exit
strcpy
_cexit
printf
__setusermatherr
perror
gmtime
wcscoll
wcslen
__getmainargs
wcspbrk

gdi32

SetBkColor
GetNearestPaletteIndex
RestoreDC
Escape
DeleteDC
OffsetViewportOrgEx
GetStockObject
GetPaletteEntries
CreateRoundRectRgn
StretchBlt
Polygon
SetMapMode
OffsetRgn
PathToRegion
GetRgnBox
CreateRectRgn
SetPaletteEntries
SetRectRgn
ScaleViewportExtEx
FillRgn
PtVisible
SetAbortProc
EndPath
ExtTextOutA
GetTextExtentPointW
GetFontData
CreateDCW
DPtoLP
StartDocW
CreateFontA
CreateDIBSection
GetSystemPaletteEntries
BitBlt
GetPixel
Rectangle
GetCharWidth32W
StartPage
GetTextCharsetInfo
GetTextMetricsW
CreateEllipticRgnIndirect
GetROP2
EnumFontFamiliesW
MoveToEx
EndDoc
UnrealizeObject
TextOutW
GetTextMetricsA
SelectPalette
TextOutA
CreateRectRgnIndirect
CreateFontIndirectW

Exports

Exports

showtitle
?BitCounterArrayIdeDunAs@@YGKGE@Z
?CancelWindowInfoExW@@YGN_N]A
?InsertPointW@@YGIDE]A

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 719KB - Virtual size: 718KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c2beb848a27e5c1f28cd0537406887d5

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

msvcrt

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 1.3MB

.rsrc Size: 719KB - Virtual size: 718KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 1.3MB

.rsrc
Size: 719KB - Virtual size: 718KB

.reloc
Size: 1KB - Virtual size: 1KB