bec65ee027a661a771405690a5947291

General

Target

bec65ee027a661a771405690a5947291
Size

88KB
MD5

bec65ee027a661a771405690a5947291
SHA1

1c79c77a0df46b3bd512af20f3b84bd014063815
SHA256

9c70db65c4f138986ec03bb8eb3e94ebdf6a36557fd792d1023eee9b56b8b287
SHA512

f566d22e1c0b6db40d9862888acc9aa646c0b25ceae99f6d492b1533c54c1b04a33c40d35318db7143a86831234d38a4760df80d06596c2979207c4e41b61f98
SSDEEP

1536:s1T51ynbWoA5YhwyuJ27s5EntZkLFJ1/+d194K7OhaoKQVKZPskU3q:s1TnyKoeYG3JicKZk5E94KTQVMUkmq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bec65ee027a661a771405690a5947291

Files

bec65ee027a661a771405690a5947291
.exe windows:4 windows x86 arch:x86

1fd88ab8517fa152b73cedc86dea98cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
ChooseColorW
ChooseFontW
CommDlgExtendedError
FindTextA
FindTextW
GetFileTitleA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetSaveFileNameW
PrintDlgA
PrintDlgExA
ReplaceTextW
dwLBSubclass

user32

BeginPaint
LoadImageA
InflateRect
GetUserObjectSecurity
GetUpdateRgn
GetSysColor
GetCursorPos
DispatchMessageA
RegisterWindowMessageA
SetClassLongA
SetPropA
SetWindowPlacement
SetWindowPos

kernel32

GetACP
DnsHostnameToComputerNameW
ConvertThreadToFiber
CloseHandle
AllocConsole
VerLanguageNameA
Thread32First
SetSystemTimeAdjustment
SetComputerNameExA
OpenProcess
MapUserPhysicalPagesScatter
LoadLibraryExA
LCMapStringA
IsBadStringPtrA
HeapCreate
HeapAlloc
GetVolumePathNameA
GetVersionExA
GetUserDefaultLangID
GetTimeZoneInformation
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
GetCPInfoExA
EnumSystemLanguageGroupsW
FindVolumeClose
FindFirstVolumeA
ExitProcess
EnumResourceTypesA

ole32

StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoFileTimeNow
CLSIDFromString
CoBuildVersion
CoCreateInstance
CoGetMalloc

dbghelp

UnmapDebugInformation
SymFromAddr
MiniDumpWriteDump

comctl32

FlatSB_GetScrollProp
FlatSB_SetScrollRange
ImageList_DragEnter
DrawStatusTextW

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fd88ab8517fa152b73cedc86dea98cf

Headers

File Characteristics

Imports

comdlg32

user32

kernel32

ole32

dbghelp

comctl32

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 28KB - Virtual size: 27KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB