1774249f0344c7c60522455ba1bfddb5c37441d0baad37287f61453b074caed5

Sharing

Copy URL Twitter E-mail

General

Target

1774249f0344c7c60522455ba1bfddb5c37441d0baad37287f61453b074caed5
Size

149KB
MD5

ada759220d7dbf11aeeb403a6e5f42fd
SHA1

2ee347f29f8bdc4ac3afcdd53853b759509b6f82
SHA256

1774249f0344c7c60522455ba1bfddb5c37441d0baad37287f61453b074caed5
SHA512

803570085dba56f8cbb28d66c03aa8f1ab9d05fc6abc6677d2efcc9d44ec9967aab01ad081a6c2f1caeef7a64a48054f3926e218533fd3977622a884ea01b68d
SSDEEP

1536:YzHbLrZNJueyhCsT5U90FfH8EkKJECPYeWYEUxT3ZyTGbD6I4GcGQQMcBQf:SNJu1skfH8LmvEUxThJscBQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1774249f0344c7c60522455ba1bfddb5c37441d0baad37287f61453b074caed5

Files

1774249f0344c7c60522455ba1bfddb5c37441d0baad37287f61453b074caed5
.dll windows:1 windows x86 arch:x86

0e58596176a5a85f28edc6f34c9668a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CloseHandle
CreateFileA
EnterCriticalSection
ExitProcess
FindResourceA
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetSystemInfo
GetVersion
GetVersionExA
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetErrorMode
SetFilePointer
SetHandleCount
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile
lstrcmpiA

gdi32

CreateBrushIndirect
CreateFontA
CreateFontIndirectA
CreateHatchBrush
CreatePatternBrush
CreateSolidBrush
DeleteObject
ExtTextOutA
GetCurrentObject
GetDeviceCaps
GetObjectA
GetStockObject
GetTextExtentPointA
GetTextMetricsA
LineTo
MoveToEx
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
ResetDCA
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
TextOutA

user32

AppendMenuA
BeginPaint
CallWindowProcA
CheckMenuItem
CheckMenuRadioItem
ClientToScreen
CreateMenu
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeleteMenu
DestroyCursor
DestroyMenu
DestroyWindow
DispatchMessageA
DrawIcon
DrawMenuBar
DrawTextA
EnableMenuItem
EnableWindow
EndPaint
EnumThreadWindows
FrameRect
GetActiveWindow
GetClassInfoA
GetClassNameA
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetFocus
GetMenu
GetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetParent
GetScrollInfo
GetSubMenu
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRgn
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
GrayStringA
InsertMenuA
InsertMenuItemA
IsChild
IsDialogMessageA
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsZoomed
LoadAcceleratorsA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadMenuIndirectA
MessageBoxA
MessageBoxExA
ModifyMenuA
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageA
SetCapture
SetCursor
SetFocus
SetMenu
SetMenuDefaultItem
SetMenuItemInfoA
SetParent
SetScrollInfo
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowTextA
ShowScrollBar
ShowWindow
TabbedTextOutA
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UnregisterClassA
WaitMessage

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
pass

Sections

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e58596176a5a85f28edc6f34c9668a5

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 109KB - Virtual size: 112KB

.data Size: 25KB - Virtual size: 28KB

.tls Size: 512B - Virtual size: 4KB

.idata Size: 5KB - Virtual size: 8KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 7KB - Virtual size: 8KB

.text
Size: 109KB - Virtual size: 112KB

.data
Size: 25KB - Virtual size: 28KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 5KB - Virtual size: 8KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 7KB - Virtual size: 8KB