98450877d6febcb96f3f591908e6ce9e

Sharing

Copy URL Twitter E-mail

General

Target

98450877d6febcb96f3f591908e6ce9e
Size

119KB
MD5

98450877d6febcb96f3f591908e6ce9e
SHA1

5195d3a8e930bef817ccdb77ed6d11013f8d10e9
SHA256

de5769ebc74ca0a685be2e920993582764d9d6542c39eeef185359ad787de47c
SHA512

3793efad2497f2a4fec05c3aa117cbb53a120a9603f62b08c3f56ec24a9c7fea62d19176d1733b8708719ebc459365354099030d40b9b6369453914e44cb18f2
SSDEEP

1536:M5nASW1LiGf1qo3snx/Fzf0b8+ki+u/uTKCOs5NbQzpslcp:+nA/1LiGf1Lsntth+kiZueA5xQtslq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98450877d6febcb96f3f591908e6ce9e

Files

98450877d6febcb96f3f591908e6ce9e
.exe windows:4 windows x86 arch:x86

98576d03f1ac3dd84fff26ca08da4b76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetACP
LocalReAlloc
GlobalAlloc
DeleteCriticalSection
GetModuleHandleA
GetLastError
GetFileType
ExitThread
VirtualAllocEx
ExitProcess
GetLocalTime
GetProcAddress
FormatMessageA
RaiseException
WaitForSingleObject
VirtualAlloc

comctl32

ImageList_Read
ImageList_Add
ImageList_Destroy
ImageList_DragShowNolock

gdi32

GetClipBox
SetBkColor
CopyEnhMetaFileA
LineTo
CreatePenIndirect
GetPixel

user32

DrawFrameControl
DispatchMessageA
PostMessageA
SetWindowsHookExA
GetForegroundWindow
GetMenuItemInfoA
SetScrollRange
SetCapture
SetCursor
GetKeyboardType
IsRectEmpty
LoadIconA
OffsetRect
EndPaint
InvalidateRect
DispatchMessageW
GetKeyboardLayout
EnableWindow
CharUpperBuffA
IsWindowUnicode
PeekMessageA
UpdateWindow
GetKeyNameTextA
InflateRect
GetSystemMenu
CallNextHookEx
MoveWindow
ShowScrollBar
GetDCEx
GetMenuStringA
CreateMenu
BeginPaint
PostQuitMessage
GetWindowPlacement
IsZoomed
PtInRect
DestroyWindow
SetRect
DrawTextA
EmptyClipboard
CreatePopupMenu
GetSystemMetrics
DrawIcon
SendMessageW
RemoveMenu
GetWindowLongA
CallWindowProcA
LoadBitmapA
GetWindowLongW
GetMenuItemCount
GetKeyState
SendMessageA
GetClientRect
GetClipboardData
CreateIcon
GetMessagePos
SetWindowPlacement
GetMenuItemID
CharToOemA
MapWindowPoints
GetSysColor
TranslateMDISysAccel
EqualRect
DestroyIcon
DrawIconEx
RegisterWindowMessageA
FindWindowA
SetWindowTextA
InsertMenuItemA
EnableScrollBar
GetKeyboardLayoutList
OpenClipboard
IsWindowVisible
GetFocus
UnregisterClassA
RegisterClassA
GetLastActivePopup
SetForegroundWindow
DefWindowProcA
GetCapture
DrawAnimatedRects
ChildWindowFromPoint
GetCursorPos
SetWindowLongW
ScrollWindow
EnumThreadWindows
LoadKeyboardLayoutA
UnhookWindowsHookEx
FillRect
GetScrollPos
CharLowerBuffA
DestroyCursor

shlwapi

SHStrDupA
SHQueryValueExA
PathFileExistsA

shell32

SHFileOperationA
SHGetFileInfoA
Shell_NotifyIconA
SHGetSpecialFolderLocation

version

VerQueryValueA

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98576d03f1ac3dd84fff26ca08da4b76

Headers

File Characteristics

Imports

kernel32

comctl32

gdi32

user32

shlwapi

shell32

version

Sections

.text Size: 32KB - Virtual size: 32KB

.edata Size: 82KB - Virtual size: 81KB

BSS Size: 4KB - Virtual size: 3KB

.text
Size: 32KB - Virtual size: 32KB

.edata
Size: 82KB - Virtual size: 81KB

BSS
Size: 4KB - Virtual size: 3KB