bd9a4546d746c4b1d141ec0fc217f634

Sharing

Copy URL Twitter E-mail

General

Target

bd9a4546d746c4b1d141ec0fc217f634
Size

200KB
MD5

bd9a4546d746c4b1d141ec0fc217f634
SHA1

cc6e9c9291fb5b9706110eff13a3ba21977a0d38
SHA256

54c89bd11fbbbcf1f860e289726133363b1e3b75fb37c7f625055df14e6002cd
SHA512

f96de5922c8681c17bce3c3f65b8c2f22439fe7591d9d1f1a7a65891f36c5a1f595111543deb7e33af8bfb239b7946cb9e16189369677c4b835e6407d47c4c30
SSDEEP

6144:2aQ2v7Vmf/208rErYCqpczaAxBsAihN9:PQS7VmH2NErFUStxBsdZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd9a4546d746c4b1d141ec0fc217f634

Files

bd9a4546d746c4b1d141ec0fc217f634
.exe windows:5 windows x86 arch:x86

c3b9d8e06303159515d44f1e39d3f37a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\pecposywoengfaopeUlanHandaneaecry\PowsnagetusBunklatxunHandaneaecry\tokakadeowlarkeysowfaseeMeanweaxBaldawl.pdb

Imports

user32

CreatePopupMenu
CharNextA
LoadBitmapA
DefWindowProcW
IsRectEmpty
DefDlgProcA
GetMenuItemRect
HideCaret
CopyRect
GetClassLongA
MonitorFromPoint
CreateIconFromResource
MessageBoxExW
ReleaseDC
DeferWindowPos
SetForegroundWindow
GetUserObjectInformationA
TranslateMessage
DispatchMessageA
IsDialogMessageW
SystemParametersInfoA
DrawIcon
SetLastErrorEx
DragObject
ReplyMessage
SwitchToThisWindow
IsWindowVisible
DrawAnimatedRects
GetMenuStringA
AllowSetForegroundWindow
GetClassInfoA
SendMessageTimeoutA
GetUpdateRgn
SetScrollInfo
GetForegroundWindow
ExitWindowsEx
SetRectEmpty
InvalidateRect
SetPropW
EnableWindow
GetClipCursor
IsMenu
OpenInputDesktop
GetMessagePos
wsprintfA
EndPaint
ClipCursor
BringWindowToTop
LoadCursorW
DispatchMessageW
CascadeWindows
SendDlgItemMessageA
GetKeyboardLayoutNameW
GetSystemMenu
keybd_event
CharToOemW
InternalGetWindowText
GetClassInfoExA
SetMenu
RegisterWindowMessageA
CharPrevA
GetLastActivePopup
GetPropW
LoadImageA
LoadIconA
LoadAcceleratorsA
DeleteMenu
LoadAcceleratorsW
InsertMenuW
GetClassInfoExW
DrawIconEx
GrayStringW
GetWindowLongA
GetSystemMetrics
DestroyWindow
GetMessageTime
RegisterHotKey
ModifyMenuW
GetAsyncKeyState
GetWindow
DialogBoxParamA
SetRect
DialogBoxParamW
UpdateWindow
SetMenuDefaultItem
DrawMenuBar
RegisterWindowMessageW
CloseDesktop
IsIconic
CharToOemBuffA
LoadMenuA
BeginDeferWindowPos
GetDlgItemTextW
GetWindowLongW
DrawFocusRect
DefDlgProcW

comctl32

ImageList_GetIcon

gdi32

CreateFontA
Ellipse
LPtoDP
SelectObject
GetNearestColor
CreateHalftonePalette
ExtTextOutW
CreateFontIndirectW
GetTextAlign
CreateCompatibleBitmap
Rectangle
WidenPath
GetTextExtentPoint32A
CombineRgn
ExcludeClipRect
CreateRoundRectRgn
SetPixel
GetFontData
CreateRectRgn
CreateBrushIndirect
MoveToEx
DeleteDC
CreateEllipticRgnIndirect
SetTextColor
ScaleViewportExtEx
PathToRegion
GetROP2
BeginPath
AddFontResourceW
GetClipBox
EndPath
GetObjectW
GetTextExtentPointW
RectVisible
CreateHatchBrush
OffsetViewportOrgEx
SetDIBits
PtInRegion
GetSystemPaletteEntries
SetBkColor
StretchDIBits
Escape
GetStockObject
GetWindowOrgEx

shlwapi

PathIsURLA

kernel32

SetThreadPriority
FlushFileBuffers
FileTimeToDosDateTime
IsValidLanguageGroup
MultiByteToWideChar
HeapWalk
GetFileType
WaitForMultipleObjectsEx
ConnectNamedPipe
GetOverlappedResult
GetTempFileNameW
QueryPerformanceCounter
GetWindowsDirectoryW
HeapReAlloc
LocalAlloc
SetHandleInformation
SetLocalTime
GlobalAddAtomW
LoadLibraryW
FreeResource
TlsGetValue
GetComputerNameA
ExitThread
CancelIo
lstrcmpiA
HeapCreate
CreateNamedPipeA
GetFileAttributesExA
EscapeCommFunction
LocalReAlloc
IsValidLocale
GlobalFindAtomW
GetCommState
EnumResourceTypesA
SetFilePointer
FindResourceA
GetFullPathNameA
WaitForSingleObjectEx
ClearCommError
GetLocaleInfoW
GetLocaleInfoA
CallNamedPipeW
CreateFileMappingW
VirtualProtect
LocalUnlock
ReleaseMutex

Sections

.text
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3b9d8e06303159515d44f1e39d3f37a

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

gdi32

shlwapi

kernel32

Sections

.text Size: 164KB - Virtual size: 163KB

.data Size: 30KB - Virtual size: 30KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 164KB - Virtual size: 163KB

.data
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB