bad7e8cd865725835e2be875d10304d6

Sharing

Copy URL

Twitter E-mail

General

Target

bad7e8cd865725835e2be875d10304d6
Size

584KB
MD5

bad7e8cd865725835e2be875d10304d6
SHA1

6984ba61c42af498c4e54cbb96515fa896164da8
SHA256

4eaef436e9746e6267144e082abbd187042c97ae211b81e6777ac0f99a168e2c
SHA512

299ef45e276b5ba8ab9ca6eb6427a876dc384c7607d68b7801f9eaf30bac1700536787f496321bd51f3fa3aaae619ab2aa94c3161d0d3a0e7c4d851c866bffbb
SSDEEP

12288:+9Cix/iF7tLhIj3lu/C1HNwiWke+kFP+oGE5fuJaA:yClLhUluEHNwile+QW1E5WJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bad7e8cd865725835e2be875d10304d6

Files

bad7e8cd865725835e2be875d10304d6
.exe windows:4 windows x86 arch:x86

47af79a1636b816bfcafa8e9f9e16e41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MonitorFromPoint
GetMessageA
SendInput
GetClipboardOwner
SystemParametersInfoA
EnumPropsA
FindWindowW
EndPaint
wvsprintfW
GetClipboardFormatNameA
PackDDElParam
CreateDesktopW
DefWindowProcW
RegisterDeviceNotificationA
UnloadKeyboardLayout
UnregisterHotKey
MessageBoxA
RegisterClipboardFormatA
ScrollDC
DdeAccessData
CreateDialogIndirectParamA
SetClipboardData
GetShellWindow
MoveWindow
SendDlgItemMessageW
GetClipboardFormatNameW
GetWindowTextLengthA
SetWindowsHookW
GetMessagePos
GetMessageW
CreateDialogParamW
GetOpenClipboardWindow
FlashWindow
IsWindowVisible
CharNextExA
SystemParametersInfoW
ShowWindow
MapDialogRect
ShowCursor
SetClassLongW
DialogBoxParamA
IsDialogMessageA
SetCaretPos
RegisterClassExA
wvsprintfA
GetDlgItemInt
DdeCreateStringHandleW
WINNLSGetEnableStatus
MapVirtualKeyExA
CreateWindowExW
DlgDirSelectExW
DrawCaption
ReplyMessage
GetInputState
DrawStateA
RegisterClassA
DefFrameProcW
ShowScrollBar
LoadBitmapA
GetMenu
ModifyMenuA
DdeCmpStringHandles
GetActiveWindow
GrayStringA
LoadImageW
VkKeyScanExA
SwitchToThisWindow
GetKeyboardLayoutNameW
MessageBoxW
IsMenu
SetWindowPos
DestroyWindow
DdeInitializeA
SetClassLongA

comctl32

ImageList_Write
CreatePropertySheetPageA
ImageList_GetImageInfo
ImageList_SetFilter
InitCommonControlsEx
ImageList_GetIcon
ImageList_Read

kernel32

GetSystemInfo
FreeEnvironmentStringsW
TerminateProcess
ReadFile
IsBadWritePtr
GetStartupInfoA
GetCPInfo
LCMapStringW
SetFilePointer
SetEnvironmentVariableA
GetProcAddress
LCMapStringA
CompareStringA
IsValidLocale
GetACP
WriteProfileSectionA
GetCurrentProcessId
GetTimeZoneInformation
InitializeCriticalSection
GetUserDefaultLCID
VirtualQuery
GetEnvironmentStringsW
TlsSetValue
GetStringTypeA
MultiByteToWideChar
UnhandledExceptionFilter
HeapReAlloc
EnumSystemLocalesA
HeapSize
InterlockedExchange
CreateMutexA
OpenMutexA
VirtualProtect
GetLocaleInfoW
GetTickCount
GetVersionExA
CloseHandle
GetModuleFileNameA
QueryPerformanceCounter
TlsFree
SetHandleCount
GetEnvironmentStrings
HeapCreate
GetTimeFormatA
DeleteCriticalSection
SetPriorityClass
GetCurrentThreadId
GetStdHandle
GetCurrentProcess
GetFileType
HeapFree
EnterCriticalSection
FreeEnvironmentStringsA
GetOEMCP
GetCommandLineA
GetCurrentThread
VirtualFree
GetModuleHandleA
LeaveCriticalSection
GetStringTypeW
WideCharToMultiByte
WriteFile
SetLastError
ExitProcess
GetSystemTimeAsFileTime
HeapAlloc
GetLastError
LoadLibraryA
SetStdHandle
GetDateFormatA
IsValidCodePage
GetLocaleInfoA
VirtualAlloc
CompareStringW
TlsGetValue
RtlUnwind
HeapDestroy
TlsAlloc
FlushFileBuffers

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47af79a1636b816bfcafa8e9f9e16e41

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 108KB - Virtual size: 133KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 108KB - Virtual size: 133KB

.rsrc
Size: 56KB - Virtual size: 53KB