977b1c8ece7aa6e9cc52010d6802e2be

Sharing

Copy URL Twitter E-mail

General

Target

977b1c8ece7aa6e9cc52010d6802e2be
Size

69KB
MD5

977b1c8ece7aa6e9cc52010d6802e2be
SHA1

b275f849c1fff6fc61a5ff6ae3e0ebc05c04fa93
SHA256

eb502744e1be3a61859f3b54db56022109fc1fd0cef72fd567e7453eb35b0107
SHA512

e41eb05febe920ec87ee3ae253dd001c2647d1a21ab42af232a4e08bc9615eb4609bce8433449c426fb8d65e7bd14de6238053b0d3e0df3abdb8ef41c2fdd03e
SSDEEP

1536:s5NuiBnLDO+VgUr+drbea0WRuKVnxlY8JZ6slRUX/d:+5n+AgUCH90ENxvrxlq/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
977b1c8ece7aa6e9cc52010d6802e2be

Files

977b1c8ece7aa6e9cc52010d6802e2be
.exe windows:4 windows x86 arch:x86

69d8ebbe73e3eaf2f80962e1e8aabe32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Remove
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Read
ImageList_Write
ImageList_Create
ImageList_GetBkColor
ImageList_DrawEx

kernel32

ExitProcess
GetFullPathNameA
GetACP
VirtualAllocEx
GetLastError
GetCommandLineA
GetLocalTime

user32

PostQuitMessage
wsprintfA
GetCursor
SetWindowsHookExA
SetWindowLongA
EnumWindows
DestroyCursor
IsWindowUnicode
GetDCEx
CharNextA
SetFocus
ScrollWindow
CallWindowProcA
ShowScrollBar
GetKeyboardLayoutNameA
LoadBitmapA
SendMessageA
InflateRect
GetScrollInfo
CharUpperBuffA
DrawIcon
GetDesktopWindow
GetClassLongA
GetMenu
DispatchMessageW
GetClassInfoA
EnableWindow
EnableMenuItem
GetMenuItemID
GetScrollPos
SetCursor
IsWindowEnabled
SetWindowPlacement
GetWindowTextLengthA
CloseClipboard
DrawMenuBar
ReleaseCapture
UpdateWindow
CreateWindowExA
GetWindowPlacement
GetMenuState
DefWindowProcA
GetWindowLongA
CallNextHookEx
InsertMenuItemA
RedrawWindow
SetParent
OpenClipboard
GetKeyboardLayout
KillTimer
UnregisterClassA
CreatePopupMenu
GetSystemMetrics
LoadKeyboardLayoutA
GetScrollRange
LoadIconA
SetWindowLongW
SetRect
TranslateMessage
GetCapture
CharLowerBuffA
GetMessagePos
IsWindow
EnumChildWindows
SetScrollInfo
IsCharUpperA
SetPropA
GetSysColor
DispatchMessageA
SetActiveWindow
MapWindowPoints

shell32

Shell_NotifyIconW

Exports

Exports

6FMrD7N4tfy
_GturclQOmrMN7@20
_mHV7DTA@8
_llsyGoJhWt@4
SJJpz_59Sc64Qh
_gXJTYmEe@4
_ICCXn
_pbKaaKorxU4C
_L1smo0EtyQV3
_lVXZd1i
GUtRYxYz5_@4
KPmS6
_LMY8FcY
_xsOMl8
p4TAGA4QK95ud@16
_FewVjtMFo2hLS@12
_5bnleRVM
_Bh8be@20
7pEmVvQci
_enV88z

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69d8ebbe73e3eaf2f80962e1e8aabe32

Headers

File Characteristics

Imports

comctl32

kernel32

user32

shell32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 50KB - Virtual size: 94KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 50KB - Virtual size: 94KB

.rsrc
Size: 2KB - Virtual size: 1KB