c0b75861608c592a5db5104c4ba62885

Sharing

Copy URL Twitter E-mail

General

Target

c0b75861608c592a5db5104c4ba62885
Size

218KB
MD5

c0b75861608c592a5db5104c4ba62885
SHA1

c043829f89e2b61104e422d368a20f7482c02e3a
SHA256

cb64d7c45da5f88e9e4e0b9634e4adfbe8e5259132b361fe8845302a10172732
SHA512

0a9c405c56ae19ab2e752ed141b3d5be4e411170757e2f67eb71fe3c84e7d0892531d7eb57ed0619cea43eb777c9b0491b011777e3b8820da1edff5b250644f0
SSDEEP

6144:QJdPdMlrqjEXLLab1v2oAITzGH3mkvnv4zDdm:0dPylmjEXLmb5QOGXsDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0b75861608c592a5db5104c4ba62885

Files

c0b75861608c592a5db5104c4ba62885
.exe windows:4 windows x86 arch:x86

7e743a4ad4a2df824bb0748d3cb1c280

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

version

VerQueryValueA
VerInstallFileA
VerFindFileA

advapi32

RegEnumKeyA
RegQueryValueExA
RegOpenKeyExA

user32

RemoveMenu
GetFocus
BeginPaint
GetWindowThreadProcessId
GetCursor
GetSystemMenu
EnableScrollBar
GetMenuState
SetForegroundWindow
DrawAnimatedRects
GetSysColor
TrackPopupMenu
DeleteMenu
GetCursorPos
WaitMessage
SetMenuItemInfoA
FillRect
GetLastActivePopup
DispatchMessageW
ScrollWindow
SetParent
GetWindow
CreateIcon
SetPropA
CharToOemA
GetMessagePos
EnumWindows
IsZoomed
InflateRect
GetKeyboardLayoutList
MessageBoxA
SetClipboardData
PeekMessageW
DestroyWindow
SetWindowsHookExA
EqualRect
GetDC
GetWindowDC
FindWindowA
ShowWindow
DrawMenuBar
GetKeyboardLayout
KillTimer
LoadStringA
SetScrollPos
GetKeyboardState
DefWindowProcA
GetActiveWindow
CreatePopupMenu
LoadBitmapA
SendMessageA
GetMenuItemCount
DestroyMenu
GetKeyboardLayoutNameA
MoveWindow
SetRect
SetScrollInfo
DestroyIcon
GetKeyState
PtInRect
SetWindowLongW
IsDialogMessageW
GetWindowLongA
DrawFrameControl
OffsetRect
GetClassNameA
EndPaint
OpenClipboard
wsprintfA
MsgWaitForMultipleObjects
ScreenToClient
UpdateWindow

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

gdi32

GetPixel
SelectObject
CreateDIBitmap
GetObjectA
CreatePenIndirect
GetDIBColorTable
GetDIBits
BitBlt
CreateDIBSection

msvcrt

srand
atan
tan
mbstowcs

comctl32

ImageList_Read
ImageList_Write
ImageList_Destroy
ImageList_Add
ImageList_Remove
ImageList_Create
ImageList_DragShowNolock
ImageList_GetBkColor

ole32

CLSIDFromProgID
CoUnmarshalInterface
CoUninitialize
GetHGlobalFromStream
CoCreateInstanceEx
CoGetContextToken
WriteClassStm
ReleaseStgMedium

kernel32

GetProcAddress
GlobalAlloc
GetLastError
LoadLibraryExA
GetModuleHandleA
VirtualAlloc
GetCommandLineW
ExitThread
IsBadReadPtr
ExitProcess
GetVersionExA
GetCommandLineA

Sections

CODE
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC3
Size: 1024B - Virtual size: 730B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC1
Size: 512B - Virtual size: 305B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 1024B - Virtual size: 1021B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e743a4ad4a2df824bb0748d3cb1c280

Headers

File Characteristics

Imports

version

advapi32

user32

comdlg32

gdi32

msvcrt

comctl32

ole32

kernel32

Sections

CODE Size: 67KB - Virtual size: 66KB

.data Size: 142KB - Virtual size: 141KB

.RSRC3 Size: 1024B - Virtual size: 730B

.RSRC8 Size: 1KB - Virtual size: 1KB

.RSRC4 Size: 1KB - Virtual size: 1KB

.RSRC1 Size: 512B - Virtual size: 305B

.RSRC7 Size: 1024B - Virtual size: 1021B

.RSRC5 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 992B

CODE
Size: 67KB - Virtual size: 66KB

.data
Size: 142KB - Virtual size: 141KB

.RSRC3
Size: 1024B - Virtual size: 730B

.RSRC8
Size: 1KB - Virtual size: 1KB

.RSRC4
Size: 1KB - Virtual size: 1KB

.RSRC1
Size: 512B - Virtual size: 305B

.RSRC7
Size: 1024B - Virtual size: 1021B

.RSRC5
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 992B