ac166423c691a26e9a91b90b638ebf02

Sharing

Copy URL Twitter E-mail

General

Target

ac166423c691a26e9a91b90b638ebf02
Size

84KB
MD5

ac166423c691a26e9a91b90b638ebf02
SHA1

d36851fade059c37d575925dfbed584a214b4f9d
SHA256

d12d87bf2b2188f43061c9f5a6c086e57d0319d9dc25c8cdb8a243d88420cc52
SHA512

7eaa4c43b0e24a0580a9e63697644c98b92f23525c7d6c0402b7fae9bf61a07398a72205a8bab1c0fe4eff68327f8f953bff924fb4a760176141d4eb8ffbb5d7
SSDEEP

1536:xb9K31FvNC/FQ99JQXHaCAjbthUIS9TQaltTf8RyJkR:+1FvNJ9lCAXthbS9TQ4cya

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac166423c691a26e9a91b90b638ebf02

Files

ac166423c691a26e9a91b90b638ebf02
.exe windows:4 windows x86 arch:x86

3ff19a3c7d05e0ec63701ad3dff8ee09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
IsMenu
DrawIconEx
CloseWindow
DialogBoxParamW
LoadCursorA
GetWindowTextA
CopyIcon
DrawTextA
GetWindowTextLengthA
GetDlgItem
AppendMenuW
CopyImage
DialogBoxParamA
DrawIcon
AppendMenuA
EndDialog
CopyRect
InsertMenuA
IsWindow

comctl32

ImageList_AddIcon
ImageList_AddMasked
ImageList_Replace
ImageList_Copy
ImageList_BeginDrag
ImageList_Remove
ImageList_Draw
ImageList_GetIconSize
ImageList_DragEnter
ImageList_GetImageRect
InitCommonControls
ImageList_DragShowNolock
ImageList_Create
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_DragLeave
ImageList_GetImageCount
ImageList_GetDragImage
ImageList_GetIcon
ImageList_EndDrag

kernel32

GetCPInfo
ReadFile
CreateDirectoryA
ReadConsoleA
FindAtomA
FindFirstFileA
GetCommandLineA
DeleteAtom
OpenFileMappingA
CreateProcessA
DeleteFileA
Sleep
GetFileSize
GetStdHandle
DeleteFileW
WriteFile
GetLastError
GetFileTime

advapi32

RegLoadKeyW
RegCreateKeyW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteKeyA
RegOpenKeyExA
RegQueryInfoKeyW
RegOpenKeyW
RegEnumKeyExW
RegReplaceKeyA
RegQueryValueA
RegFlushKey
RegReplaceKeyW
RegQueryInfoKeyA
RegDeleteValueW
RegLoadKeyA
RegDeleteValueA
RegCreateKeyExA
RegEnumKeyExA
RegQueryValueExW

gdi32

GetClipBox
SetTextColor
DeleteObject
CancelDC
CloseFigure
BitBlt
BeginPath
GetPixel
AddFontResourceExW
ExcludeClipRect
GetBrushOrgEx
ExtTextOutA
GetDCOrgEx
AddFontResourceW
ClearBitmapAttributes
DeleteDC
AddFontResourceTracking

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 239B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ff19a3c7d05e0ec63701ad3dff8ee09

Headers

File Characteristics

Imports

user32

comctl32

kernel32

advapi32

gdi32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 64KB - Virtual size: 146KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: - Virtual size: 239B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 64KB - Virtual size: 146KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: - Virtual size: 239B