b461d6c2ee91e30a81bc82ed84168b0d

Sharing

Copy URL

Twitter E-mail

General

Target

b461d6c2ee91e30a81bc82ed84168b0d
Size

26KB
MD5

b461d6c2ee91e30a81bc82ed84168b0d
SHA1

03e3f94aad9760bab5b65cebd71ad03b54b7f4f5
SHA256

f07ad8074d2626e12b969b10c0e65a1c2d83175a0f717db93d768e10dce46c0c
SHA512

7f9d8b6b75b5309f2e1304363210a96d882b35bfb2051bbc8f594191e2353dc1422f500aacf2ca7cf5f3f96504e19d6c7229a74b3a26cf12e9e2d589bfef96b9
SSDEEP

384:jOKOlGibzO5K+o8A+Q3Fo3+Gc0gz2GOzKIbjG+uclw6rN9zvL/VZ4IzWn:jONF/YRo1+Q0cTGRbjdL9vL/vfCn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b461d6c2ee91e30a81bc82ed84168b0d

Files

b461d6c2ee91e30a81bc82ed84168b0d
.exe windows:5 windows x86 arch:x86

cc9d75045da9a488723d73f8c03b9f49

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GetFullPathNameA
LoadLibraryA
GetCommandLineA
WritePrivateProfileStringA
GlobalReAlloc
GetExitCodeThread
GetModuleHandleA
HeapAlloc
HeapFree
HeapDestroy
HeapCreate
ReleaseMutex
SetCurrentDirectoryA
CreateFileA
GetTickCount
TerminateThread
ReadFile
CreateProcessA
CreateThread
GlobalLock
GetFileAttributesA
GlobalFree
GetEnvironmentVariableA
VirtualAlloc
SetThreadPriority
WriteFile
WaitForSingleObject
CloseHandle
SetFilePointer
GetFileSize
GetSystemTime
ExitProcess
GetProcAddress
lstrcmpiA
GetPrivateProfileStringA
ExitThread
GlobalUnlock
VirtualFree

user32

TranslateMessage
TranslateAccelerator
GetDlgItem
EmptyClipboard
CheckMenuItem
WinHelpA
InvalidateRect
SetCapture
wvsprintfA
IsDlgButtonChecked
GetWindowPlacement
BeginPaint
ReleaseCapture
LoadIconA
DestroyCaret
CreateWindowExA
GetUpdateRect
EndDialog
GetSystemMetrics
SetScrollInfo
DispatchMessageA
GetWindowRect
DefWindowProcA
SetWindowLongA
CharUpperA
SetClipboardData
CloseClipboard
LoadMenuA
SetFocus
DialogBoxParamA
SendDlgItemMessageA
ToAscii
SetWindowPos
SetForegroundWindow
ShowWindow
GetScrollInfo
DestroyWindow
CreateCaret
ClientToScreen
GetMessageA
GetDlgItemTextA
LoadBitmapA
wsprintfA
EnableWindow
IsClipboardFormatAvailable
GetCursorPos
RegisterClassA
PostMessageA
GetKeyboardState
MoveWindow
EndPaint
GetClipboardData
SendMessageA
OpenClipboard
UpdateWindow
HideCaret
GetDC
FindWindowA
GetSubMenu
LoadCursorA
SetDlgItemTextA
PostQuitMessage
SetCaretPos
MessageBoxA
SetWindowPlacement
DrawTextA
ReleaseDC
LoadAcceleratorsA
ShowCaret
GetSysColor
CheckDlgButton
GetClientRect
TrackPopupMenu
EnableMenuItem
GetDlgItemInt
GetWindowLongA
FillRect

gdi32

DeleteObject
SelectObject
GetObjectA
CreateSolidBrush
GetTextMetricsA
CreateFontA
CreateFontIndirectA
GetTextExtentPoint32A
SetTextColor
SetBkColor

comdlg32

ChooseFontA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA
GetFileTitleA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

DragAcceptFiles
DragFinish
DragQueryFile
ShellExecuteA

comctl32

ImageList_Add
ImageList_Create
ImageList_Destroy
ord6

rpcrt4

UuidCreateNil

msvcrt

_except_handler3

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cs
Size: 512B - Virtual size: 139B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc9d75045da9a488723d73f8c03b9f49

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

rpcrt4

msvcrt

Sections

.text Size: 9KB - Virtual size: 9KB

.cs Size: 512B - Virtual size: 139B

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 50KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.cs
Size: 512B - Virtual size: 139B

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 50KB

.rsrc
Size: 2KB - Virtual size: 1KB