979a2d338051b37ee90b55bd2a793b20

Sharing

Copy URL Twitter E-mail

General

Target

979a2d338051b37ee90b55bd2a793b20
Size

156KB
MD5

979a2d338051b37ee90b55bd2a793b20
SHA1

edda5e7a11010af9a9d8887abcf218cd700aac2f
SHA256

b115737cba953e6d60ea1e25b0ed00a118ae1108900d3cd60f0ddb221ac48ab6
SHA512

31cc57f8ae219c34c603224481e4be73fc4f104d997533393dda703e881d684285b0072593f23e472f0ad301c90d39b9fe914d9f7f864fed78e8071e19b793b4
SSDEEP

3072:Vk/f9uSpu0+I78erb7ePiM2MU8wMn52Sk3ALDDYDxlPLNWC5pAS/mQIe:VknkSQLi8celCM5vkQL/Yn0CR/mQIe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
979a2d338051b37ee90b55bd2a793b20

Files

979a2d338051b37ee90b55bd2a793b20
.exe windows:4 windows x86 arch:x86

b1505a24e7cdd53e1ee962d1ac8b224f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIconEx
ClientToScreen
SetWindowLongA
EnumChildWindows
GetMenuItemID
GetDesktopWindow
DrawEdge
GetScrollRange
IsWindowEnabled
GetMenu
GetMessagePos
EnableMenuItem
CreateIcon
CharNextA
DrawFrameControl
FrameRect
GetSysColorBrush
GetCursor
DispatchMessageA
GetMenuStringA
SetCursor
GetWindow
IsMenu
CreateWindowExA
GetSubMenu
EnumWindows
GetActiveWindow
CreatePopupMenu
GetClipboardData
DrawIconEx
EndDeferWindowPos
IsChild
GetWindow
EnableWindow
GetDC
CharToOemA
IsWindowEnabled
IsMenu
ShowWindow
EnumChildWindows
GetDesktopWindow
CreatePopupMenu
GetMenu
GetClipboardData
DeferWindowPos
GetKeyState
DrawTextA
GetMenuItemInfoA
CheckMenuItem
DispatchMessageA

oleaut32

SysReAllocStringLen
SafeArrayGetUBound
OleLoadPicture
VariantChangeType
SysFreeString
SafeArrayUnaccessData
SysStringLen
RegisterTypeLib
SysAllocStringLen
SysStringLen
SafeArrayCreate
SafeArrayPtrOfIndex
SafeArrayGetUBound
GetErrorInfo
SysReAllocStringLen
SysFreeString
SafeArrayUnaccessData
OleLoadPicture
SysFreeString
SafeArrayCreate

version

GetFileVersionInfoA
VerInstallFileA
VerQueryValueA
VerInstallFileA

gdi32

CopyEnhMetaFileA
CreateBrushIndirect

comdlg32

FindTextA
GetSaveFileNameA
GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA
FindTextA
GetFileTitleA

shell32

Shell_NotifyIconA
DragQueryFileA
SHGetSpecialFolderLocation

msvcrt

tolower
memset
strcmp
memcpy
clock
memmove
atol
ceil
log
sqrt
wcstol

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyA

comctl32

ImageList_Add
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Draw

ole32

CoUnmarshalInterface
ReleaseStgMedium
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterClassObject
OleRegGetUserType
CreateStreamOnHGlobal
CoTaskMemFree
CoUnmarshalInterface

ntdll

atol
NtWaitForSingleObject
wcscat
RtlDeleteCriticalSection

kernel32

GetCurrentProcessId
EnumCalendarInfoA
GetLocaleInfoA
GetACP
lstrcmpiA
GetModuleHandleA
LoadLibraryA
ExitThread
GetProcAddress
ExitProcess
CreateThread
CloseHandle
VirtualAllocEx
FindClose
ReadFile
GetUserDefaultLCID
SetFilePointer
VirtualFree
FormatMessageA
GetFileSize
GetVersion

shlwapi

SHSetValueA
PathFileExistsA
SHQueryValueExA
PathIsContentTypeA
PathIsDirectoryA
SHQueryInfoKeyA
SHDeleteKeyA
SHGetValueA
SHDeleteValueA
SHEnumValueA

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b1505a24e7cdd53e1ee962d1ac8b224f

Headers

File Characteristics

Imports

user32

oleaut32

version

gdi32

comdlg32

shell32

msvcrt

advapi32

comctl32

ole32

ntdll

kernel32

shlwapi

Sections

.text Size: 36KB - Virtual size: 36KB

DATA Size: 113KB - Virtual size: 112KB

BSS Size: 1KB - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 101KB

.rdata Size: 1KB - Virtual size: 1KB

.text
Size: 36KB - Virtual size: 36KB

DATA
Size: 113KB - Virtual size: 112KB

BSS
Size: 1KB - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 101KB

.rdata
Size: 1KB - Virtual size: 1KB