c168c492a1e7de4a212d8181661dbd94

Sharing

Copy URL

Twitter E-mail

General

Target

c168c492a1e7de4a212d8181661dbd94
Size

120KB
MD5

c168c492a1e7de4a212d8181661dbd94
SHA1

bde77e75f5e1b87e2738b2852afecadfbe96b3d1
SHA256

06a7e98dfaab3bd4b7f9fe020c4034e35df591a0737bf533f091dd4c3b450209
SHA512

49ce9926e3a9f157fecc9f53a24f793940065c94da56c8c2a2eb20e82ca3bd51729c85853729ba2754dd454c81bcfb3b7647a0506d50cd51a6c218571917e20a
SSDEEP

1536:ZlHpPpo03z0oHwLVLrvXe3b0IscbC9EzCJu79+EaNaBQhgj7xTOM:Zlo0D0s4ZrfeBVzNJM7+j7cM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c168c492a1e7de4a212d8181661dbd94

Files

c168c492a1e7de4a212d8181661dbd94
.exe windows:4 windows x86 arch:x86

970f9af4ce99135fad2e79ab0eea0dc4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
GetCurrentProcess
GetVersionExA
SetEvent
GetFileSize
GetOEMCP
GetACP
GetProcAddress
VirtualAllocEx
CompareStringA
GetDateFormatA
SetHandleCount
lstrcmpiA
ExitThread
CloseHandle
GetModuleHandleA
LocalAlloc

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_Destroy
ImageList_Write

gdi32

GetBitmapBits
CreateBrushIndirect
CreateDIBitmap
GetDIBColorTable
SetPixel
CopyEnhMetaFileA
RestoreDC
GetDIBits
GetObjectA
CreatePalette

shell32

SHGetDesktopFolder
SHGetFolderPathA
SHGetFileInfoA
SHFileOperationA
SHGetSpecialFolderLocation

ole32

CoReleaseMarshalData
WriteClassStm
CoRegisterClassObject
CoFreeUnusedLibraries
GetHGlobalFromStream
CreateStreamOnHGlobal
CoUnmarshalInterface
CoGetContextToken

version

GetFileVersionInfoA
VerFindFileA
VerInstallFileA

shlwapi

SHQueryInfoKeyA
SHGetValueA
SHQueryValueExA
PathFileExistsA
SHSetValueA
PathGetCharTypeA
PathIsDirectoryA
SHDeleteKeyA

user32

GetDlgItem
OpenClipboard
GetMenuItemID
SetClassLongA
IsWindowVisible
MessageBoxA
DefWindowProcA
CharNextA
CloseClipboard
GetMenuItemInfoA
EmptyClipboard
ShowWindow
GetForegroundWindow
WindowFromPoint
TranslateMDISysAccel
GetSysColor
OffsetRect
DrawEdge
GetDC
GetClassLongA
GetWindow
SetWindowLongW
AdjustWindowRectEx
InsertMenuA
EnableScrollBar
UpdateWindow
RegisterWindowMessageA
GetKeyboardState
EnableMenuItem
GetWindowTextA
GetWindowLongW
IsZoomed
SetWindowPos
EnumWindows
EnumChildWindows
GetPropA
GetWindowLongA
CreateMenu
SetActiveWindow
GetSysColorBrush
IsDialogMessageW
GetKeyboardType
GetWindowPlacement
GetFocus
GetScrollInfo
SetClipboardData
ShowOwnedPopups
CharLowerBuffA
PeekMessageA
CheckMenuItem
MapWindowPoints
LoadIconA
TrackPopupMenu
TranslateMessage
WaitMessage
SendMessageW
SetMenuItemInfoA
LoadCursorA
SetScrollRange
GetKeyboardLayoutNameA
SetTimer
RemovePropA
DefFrameProcA
GetKeyboardLayoutList
EndPaint
GetKeyboardLayout
IsWindowUnicode
GetClassNameA
DefMDIChildProcA
GetTopWindow
IsRectEmpty
SendMessageA
GetMenuState
GetScrollRange
SetScrollInfo
DestroyCursor
SetCapture
GetDesktopWindow
EqualRect
LoadKeyboardLayoutA
IsWindow
GetActiveWindow
InflateRect
DrawFrameControl
GetCursor
MessageBeep
InvalidateRect
SetParent
RegisterClipboardFormatA
DestroyWindow
DispatchMessageA
IsChild
SetMenu
SetRect
ReleaseCapture
FrameRect
GetIconInfo
DrawAnimatedRects
SetForegroundWindow
DrawIconEx
DrawMenuBar
GetKeyNameTextA
SystemParametersInfoA
PostQuitMessage
KillTimer
DrawIcon
SetScrollPos
PtInRect
DestroyIcon
IsIconic
SetWindowPlacement
ScreenToClient
FindWindowA
wsprintfA
MsgWaitForMultipleObjects
IsWindowEnabled
ClientToScreen
SetWindowsHookExA
GetCursorPos
FillRect
CharToOemA
DestroyMenu
GetClassInfoA
GetWindowDC
GetWindowRect
GetClipboardData
GetMenuItemCount
ShowScrollBar
SetPropA
EnumThreadWindows
MoveWindow
SetWindowLongA
IsDialogMessageA
CharNextW
ChildWindowFromPoint
SetFocus
GetMenuStringA
BeginPaint
GetWindowThreadProcessId
ScrollWindow
CreateWindowExA
DrawTextA
OemToCharA
GetSystemMetrics
DispatchMessageW
RemoveMenu
GetSubMenu
ActivateKeyboardLayout
RegisterClassA
GetDCEx
GetScrollPos
GetSystemMenu
PeekMessageW
InsertMenuItemA
MapVirtualKeyA
GetParent
GetKeyState
RedrawWindow
CallNextHookEx
UnregisterClassA
PostMessageA
GetCapture
GetClientRect
CharUpperBuffA
CreateIcon
SetCursor
LoadBitmapA
ReleaseDC
CharLowerA
UnhookWindowsHookEx
DeleteMenu
CallWindowProcA
CreatePopupMenu
EnableWindow
SetWindowTextA
IntersectRect
LoadStringA
GetMessagePos

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 926B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

970f9af4ce99135fad2e79ab0eea0dc4

Headers

File Characteristics

Imports

kernel32

comctl32

gdi32

shell32

ole32

version

shlwapi

user32

Sections

.text Size: 29KB - Virtual size: 28KB

DATA Size: 7KB - Virtual size: 6KB

BSS Size: 80KB - Virtual size: 80KB

.edata Size: 1024B - Virtual size: 926B

.data Size: 1KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 28KB

DATA
Size: 7KB - Virtual size: 6KB

BSS
Size: 80KB - Virtual size: 80KB

.edata
Size: 1024B - Virtual size: 926B

.data
Size: 1KB - Virtual size: 1KB