a26f1a17dc83e9232d1368633cf65b72

Sharing

Copy URL

Twitter E-mail

General

Target

a26f1a17dc83e9232d1368633cf65b72
Size

128KB
MD5

a26f1a17dc83e9232d1368633cf65b72
SHA1

c9d8ce03e055f6aeb3efbf6186bfc0337824e842
SHA256

79e962de4c568619ff1666bf405d504dc0dccaabd88779df28e9b7d7e0df5476
SHA512

55fd3c8789d82539e73f21bb53c9a7f06dc99d7dec79ced1605a6cbf5d601d576895cd42261cd4eaa6412a6faa62e731ae749df898ba284856307972c54e39ea
SSDEEP

3072:l4y7k+gk7Ye4Kz0wuS8EaodfxAcYlFrb2lTk1uHxR+TEAnGScQ:l46/WqzEQMlWk1rTEAn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a26f1a17dc83e9232d1368633cf65b72

Files

a26f1a17dc83e9232d1368633cf65b72
.exe windows:4 windows x86 arch:x86

73451e9ba4278b5ca9fbfe0ddff31118

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerInstallFileA
VerFindFileA

shell32

SHFileOperationA

kernel32

lstrlenA
GetCommandLineA
GetVersionExA
GetLocalTime
GetProcAddress
GetModuleHandleA
MulDiv
SetErrorMode
FreeResource
GetCurrentProcessId
FindClose
VirtualAllocEx
ExitProcess
ExitThread
LoadLibraryA

gdi32

GetPixel

shlwapi

PathFileExistsA
SHQueryValueExA
SHDeleteValueA
PathIsContentTypeA
SHQueryInfoKeyA
PathGetCharTypeA
SHDeleteKeyA

user32

GetWindowPlacement
SetForegroundWindow
GetActiveWindow
DestroyMenu
DestroyIcon
GetDC
SendMessageA
GetWindow
FindWindowA
GetWindowLongW
GetKeyboardLayoutList
EnableMenuItem
ChildWindowFromPoint
InflateRect
ReleaseDC
WindowFromPoint
MessageBoxA
TranslateMDISysAccel
CreateIcon
IsWindowEnabled
DrawAnimatedRects
IsWindowVisible
CharLowerA
CharUpperBuffA
GetClipboardData
SetCursor
IsDialogMessageA
EnumThreadWindows
CharLowerBuffA
DrawTextA
DrawIconEx
SetParent
GetMenu
SetPropA
GetFocus
SetWindowLongW
SetFocus
PeekMessageA
GetKeyboardType
GetClientRect
PostQuitMessage
CharNextW
EnumChildWindows
GetForegroundWindow
GetSysColor
ShowWindow
RemovePropA
DrawMenuBar
EmptyClipboard
SetScrollInfo
SetRect
KillTimer
CallWindowProcA
EnableScrollBar
EnumWindows
GetWindowRect
SendMessageW
CharNextA
TranslateMessage
GetParent
IsDialogMessageW
GetWindowTextA
ScrollWindow
SetWindowPos
MoveWindow
OffsetRect
DestroyWindow
ClientToScreen
IsWindow
EnableWindow
GetIconInfo
GetClassInfoA
GetMenuStringA
TrackPopupMenu
SetMenuItemInfoA
GetWindowThreadProcessId
GetKeyNameTextA
SetTimer
GetDCEx
AdjustWindowRectEx
SetWindowLongA
UnhookWindowsHookEx
RegisterClipboardFormatA
GetKeyboardLayout
GetSubMenu
GetClassNameA
GetTopWindow
SetMenu
IsZoomed
CreateMenu
SetWindowTextA
LoadBitmapA
RemoveMenu
ReleaseCapture
GetMenuState
CallNextHookEx
GetScrollPos
GetDlgItem
GetLastActivePopup
wsprintfA
OemToCharA
DestroyCursor
IsWindowUnicode
GetCursor
SetCapture
IsRectEmpty
MapVirtualKeyA
MapWindowPoints
UpdateWindow
LoadKeyboardLayoutA
RegisterClassA
IsIconic
SetWindowsHookExA
LoadCursorA
PeekMessageW
WaitMessage
LoadStringA
DefWindowProcA
GetWindowDC
ShowScrollBar
ScreenToClient
EndPaint
MsgWaitForMultipleObjects
GetKeyboardLayoutNameA

comdlg32

GetFileTitleA

comctl32

ImageList_DragShowNolock

advapi32

RegDeleteKeyA
RegQueryInfoKeyA

Sections

CODE
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73451e9ba4278b5ca9fbfe0ddff31118

Headers

File Characteristics

Imports

version

shell32

kernel32

gdi32

shlwapi

user32

comdlg32

comctl32

advapi32

Sections

CODE Size: 38KB - Virtual size: 38KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 73KB - Virtual size: 73KB

.rsrc Size: 10KB - Virtual size: 9KB

CODE
Size: 38KB - Virtual size: 38KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 73KB - Virtual size: 73KB

.rsrc
Size: 10KB - Virtual size: 9KB