c09986324abe83b2fb8ffd36538a7bab

Sharing

Copy URL Twitter E-mail

General

Target

c09986324abe83b2fb8ffd36538a7bab
Size

133KB
MD5

c09986324abe83b2fb8ffd36538a7bab
SHA1

275e32bd6eaffa7926fe47bc521d9e35d45a39a5
SHA256

5edea85e645157f0060bb33fd27977a925d17afef7a672175c17cb5b7730aebc
SHA512

786c103e1fae4a83bcd5dbe00c56e023ecaf65cf031c921f8cf32d6b762355c1b42bdfac3789de65572597492409caa06505789393161df35bd536f57069d661
SSDEEP

1536:UprqoPEC3eHPWqlFKVvTNdOvSevkMqo6xpKNpa6SkpM/o2/QHzT5plpwtIqzPCxb:IhiH6mvSoyp2DXpMwu2fnnwVDgaUY5aB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c09986324abe83b2fb8ffd36538a7bab

Files

c09986324abe83b2fb8ffd36538a7bab
.exe windows:4 windows x86 arch:x86

21bc76ed57ea9fbe4eaded343893001a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
CreateThread
GetProcessHeap
CreateDirectoryW
FileTimeToLocalFileTime
GetStartupInfoA
GetDriveTypeA
GetModuleHandleW
FreeLibrary
GetFileAttributesW
LockResource
TerminateProcess
TerminateThread
LoadLibraryA
GetModuleHandleA
GetFileType
GetProcAddress
TlsFree
VirtualFree
GetVersionExA
InterlockedExchange
MultiByteToWideChar
LoadResource
OpenEventW
CreateFileW
GetModuleFileNameW
GetConsoleMode
SetCurrentDirectoryW
GetLongPathNameW
HeapCreate
GetConsoleOutputCP
GetEnvironmentStringsW
GetLastError
GetCurrentThreadId
FindFirstFileW
GetCurrentProcessId
lstrcmpiW
GetTempPathW
SetStdHandle
GetDateFormatA
ExitProcess
UnhandledExceptionFilter
WaitForMultipleObjects
LocalFree
WaitForSingleObject
GetCurrentProcess
GlobalFree
GetSystemInfo
QueryPerformanceCounter
FreeEnvironmentStringsA
GetStdHandle
GetExitCodeProcess
HeapDestroy
CreatePipe
lstrcpynW
RaiseException
GetTimeFormatW
GetStringTypeA
GetCurrentDirectoryW
HeapFree
GetModuleFileNameA
VirtualAllocEx
GetLocaleInfoA
FlushFileBuffers
GetStringTypeW
LCMapStringW
LCMapStringA
SetFilePointer
ReadFile
SetEndOfFile
GetSystemTimeAsFileTime
GetTickCount
VirtualQuery
RtlUnwind
IsBadWritePtr
HeapReAlloc
VirtualAlloc
GetCPInfo
GetOEMCP
GetACP
HeapAlloc
CreateFileA
CloseHandle
SetHandleCount
WideCharToMultiByte
FreeEnvironmentStringsW
VirtualProtect
GetEnvironmentStrings
WriteFile
GetCommandLineA

user32

PostQuitMessage
DrawTextW
GetActiveWindow
DrawEdge
GetScrollPos
FillRect
SetScrollRange
SetCursor
SetScrollPos
CheckMenuRadioItem
SetFocus
DispatchMessageW
GetMenuItemID
MessageBeep
GetMenuItemCount
GetWindowPlacement
CharLowerW
GetMonitorInfoW
LoadImageW
GetWindowTextW
DrawMenuBar
EmptyClipboard
DrawFrameControl
CreateCaret
MessageBoxW
CharUpperW
LoadBitmapW
ShowCaret
RedrawWindow
DrawIcon
DestroyWindow
SystemParametersInfoW
DefWindowProcW
GetSubMenu
SendDlgItemMessageW
DestroyCursor
CreateAcceleratorTableW
TrackPopupMenu
mouse_event
FindWindowW
DestroyIcon
WindowFromPoint
CallNextHookEx
CreateWindowExW
RemoveMenu
MoveWindow
IsClipboardFormatAvailable
DeferWindowPos
GetClassNameW
ScrollWindow
InflateRect
EnableMenuItem
SetCapture
LoadMenuW
GetDlgItemTextW
InsertMenuItemW
DialogBoxIndirectParamW
ClientToScreen
GetMessageA
SetWindowPlacement
DeleteMenu
IsZoomed
RealChildWindowFromPoint

comdlg32

ChooseFontW
GetFileTitleA
ChooseFontA
FindTextA
GetOpenFileNameA
ReplaceTextA
ReplaceTextW
GetFileTitleW
FindTextW
ChooseColorA
GetSaveFileNameW
ChooseColorW
PrintDlgA
GetOpenFileNameW
PageSetupDlgA
PrintDlgW
GetSaveFileNameA

oleaut32

VarUI8FromDisp

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21bc76ed57ea9fbe4eaded343893001a

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

oleaut32

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 89KB - Virtual size: 136KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 89KB - Virtual size: 136KB

.rsrc
Size: 4KB - Virtual size: 4KB