c273d20f1597cd72d708d9f71d2dc8f7

Sharing

Copy URL Twitter E-mail

General

Target

c273d20f1597cd72d708d9f71d2dc8f7
Size

158KB
MD5

c273d20f1597cd72d708d9f71d2dc8f7
SHA1

155a712393c555ee1e7ac282a559e8d011601ed7
SHA256

54c73a86b4944bf4687f444c59a8efe50db46a990b8e26d548f8402a5414787f
SHA512

99dc25c80b3aa0cbff1d6b4d8e6eaddd12459a0a9b291299d01faf6d56ac4cbac9f7deee07dd3f1d68268180c3435bbacc6686108b166042442dde642ba06212
SSDEEP

3072:yRwXKjfzJh4ElslZ/uTpypg1UjO0Tidqqn4n92V/et1tI7pFi4E:ya6DtGwWWoUUj8FnEoi4E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c273d20f1597cd72d708d9f71d2dc8f7

Files

c273d20f1597cd72d708d9f71d2dc8f7
.exe windows:4 windows x86 arch:x86

8e352e81891be70f583969b291043219

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strlen
memcpy
memmove
calloc
rand
sqrt
_acmdln
wcstol
exit
wcscspn
malloc
_acmdln
calloc
wcscspn
mbstowcs
sprintf
memmove
strlen
atol
sqrt
clock

version

VerQueryValueA
VerInstallFileA
VerFindFileA

comctl32

ImageList_Draw
ImageList_GetBkColor
ImageList_Add
ImageList_Read
ImageList_Create

ntdll

_wcsnicmp
NtWaitForSingleObject
wcscat
atoi

ole32

CoFreeUnusedLibraries
CoRegisterClassObject
CoCreateGuid
MkParseDisplayName

oleaut32

OleLoadPicture
SafeArrayGetElement
VariantChangeType
SysAllocStringLen
VariantCopyInd
SysStringLen
VariantCopyInd
SysReAllocStringLen
OleLoadPicture
SysFreeString
SafeArrayGetUBound
GetErrorInfo
RegisterTypeLib
SafeArrayCreate

comdlg32

GetOpenFileNameA
FindTextA
GetSaveFileNameA
GetFileTitleA

gdi32

GetCurrentPositionEx
LineTo
GetPixel
RestoreDC
CreateBitmap
CreatePalette

shlwapi

PathIsDirectoryA
SHEnumValueA
SHQueryValueExA
SHQueryInfoKeyA

user32

GetDC
ShowScrollBar
GetMenuItemInfoA
CheckMenuItem
BeginPaint
CharNextA
EndDeferWindowPos
FrameRect
GetWindowTextA
DrawEdge
MessageBoxA
IsDialogMessageA
GetScrollPos
GetDesktopWindow
GetParent
DeferWindowPos
GetSubMenu
DefFrameProcA
GetClipboardData
DefMDIChildProcA
RegisterClassA
GetDlgItem
ClientToScreen
GetDCEx
ShowWindow
SetCursor
CreateIcon
EnumThreadWindows
EndPaint
GetMessagePos
GetClassLongA
CallWindowProcA
CallNextHookEx
BeginDeferWindowPos
GetLastActivePopup
TrackPopupMenu
DrawIconEx
GetClassInfoA
GetSysColor
CreatePopupMenu
HideCaret
GetFocus
EnableScrollBar
DrawMenuBar
DrawIcon
GetMenuStringA
CharLowerBuffA
SetWindowLongA
GetScrollInfo
GetMenuItemCount
GetKeyNameTextA
CharToOemA
DrawTextA
FindWindowA
EnumChildWindows
DrawFrameControl
GetCursorPos
GetScrollRange
GetCapture
EnableMenuItem
IsMenu
GetWindow
GetActiveWindow
SetWindowPos
FillRect
GetPropA
EnableWindow
IsChild
SetWindowTextA
DefWindowProcA
CreateWindowExA
IsWindowVisible
CreateMenu
GetForegroundWindow
GetIconInfo
GetMenuItemID
SetTimer
GetCursor
EqualRect

kernel32

LoadLibraryA
EnumCalendarInfoA
MoveFileA
lstrcmpiA
LoadLibraryExA
ExitThread
FormatMessageA
GetCurrentThreadId
ExitProcess
GetVersionExA
GetCPInfo
GetACP
GetCurrentThread
SetEvent
GetFileSize
GetProcessHeap
GetModuleHandleA
GetOEMCP
VirtualAlloc
CloseHandle

advapi32

RegQueryInfoKeyA

shell32

Shell_NotifyIconA
SHGetDesktopFolder
SHGetFolderPathA
DragQueryFileA

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1024B - Virtual size: 951B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8e352e81891be70f583969b291043219

Headers

File Characteristics

Imports

msvcrt

version

comctl32

ntdll

ole32

oleaut32

comdlg32

gdi32

shlwapi

user32

kernel32

advapi32

shell32

Sections

.text Size: 27KB - Virtual size: 27KB

.tls Size: 122KB - Virtual size: 121KB

.bss Size: 5KB - Virtual size: 4KB

BSS Size: 1024B - Virtual size: 92KB

DATA Size: 1024B - Virtual size: 951B

.text
Size: 27KB - Virtual size: 27KB

.tls
Size: 122KB - Virtual size: 121KB

.bss
Size: 5KB - Virtual size: 4KB

BSS
Size: 1024B - Virtual size: 92KB

DATA
Size: 1024B - Virtual size: 951B