c30b7fd29730dec1821ac0d4058d7e87

Sharing

Copy URL Twitter E-mail

General

Target

c30b7fd29730dec1821ac0d4058d7e87
Size

171KB
MD5

c30b7fd29730dec1821ac0d4058d7e87
SHA1

5032e9aa631221d07126ae754a6b163e20545e56
SHA256

f0ca4b0f6e11dfae020d2e32ff3f82c10d767f71268bd720e168f19079c7bc4e
SHA512

f60f808efa54bf8a0cafb8cd0334d75456ea399613b91de6aea7abd97f9a8b385b1e1883c4d9e352e1512bde6a185f3d2af7f4cf043edbf841eddf59feb855ca
SSDEEP

3072:MmmuL6k/zfhXTgIkO4GYhUmr5BQ9eVqNQU/rQ+7X6kGHge1kqUFBNgsDUY4y2Bkf:xmjk/ZkuYSmrg90qjBGHZ1kVTNNT4y2W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c30b7fd29730dec1821ac0d4058d7e87

Files

c30b7fd29730dec1821ac0d4058d7e87
.exe windows:5 windows x86 arch:x86

5a649db8b1393cff02681a49b61c2e8c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\kuewGpngolnLDh\NhwknvmpNV\Oymbygn\rohiNfgquzgKGk.pdb

Imports

comdlg32

PageSetupDlgW
ReplaceTextW
PrintDlgW
CommDlgExtendedError
GetOpenFileNameA
ChooseColorW

kernel32

WaitForSingleObject
GetCommProperties
ResumeThread
GetVersionExA
CompareStringA
ConnectNamedPipe
SetErrorMode
ReleaseSemaphore
GetBinaryTypeA
Sleep
GetLocaleInfoW
CreateWaitableTimerA
GetLastError
GetPriorityClass
GlobalHandle
GetSystemWindowsDirectoryW
UnmapViewOfFile
GlobalAddAtomA
GetOverlappedResult
EnumResourceLanguagesA
SetCurrentDirectoryA
TlsFree
SetEndOfFile
VerSetConditionMask
GetModuleHandleA
RaiseException
GetThreadContext
FindResourceA
lstrcmpiW
lstrlenA
UnlockFile
AddAtomW
SetMailslotInfo
ReleaseMutex
GetSystemDirectoryW
SetFilePointer
OpenFile
GetSystemDefaultUILanguage
FileTimeToSystemTime
IsValidLanguageGroup
lstrcmpiA
WaitForMultipleObjectsEx
GetWindowsDirectoryW
CopyFileW
GetLocalTime
GetSystemDefaultLangID
GetVersionExW
MoveFileExW
LeaveCriticalSection
SearchPathA
SetLastError
SetFileTime
lstrcpyA
GetModuleFileNameA

comctl32

ImageList_ReplaceIcon
CreatePropertySheetPageW
ImageList_Remove
InitCommonControlsEx
CreateToolbarEx
ImageList_GetIconSize

msvcrt

malloc
_controlfp
strspn
gets
iswctype
atol
__set_app_type
srand
wcscpy
__p__fmode
fgets
puts
mbtowc
__p__commode
printf
clock
gmtime
_amsg_exit
wcstombs
_initterm
wcstol
_ismbblead
_XcptFilter
isalnum
vswprintf
_exit
wcscmp
fclose
bsearch
_cexit
__setusermatherr
swscanf
realloc
isupper
wcscat
strcoll
wcsstr
atoi
__getmainargs
isalpha
iswdigit
islower
wcslen
fseek
getc
strtok
wcspbrk

user32

GetSysColor
GetMenu
ShowWindow
InsertMenuA
SetWindowPlacement
UnloadKeyboardLayout
GetMessageTime
IsCharAlphaW
wsprintfA
DefFrameProcW
ShowCaret
BringWindowToTop
CharPrevW
GetMenuItemInfoW
GetKeyboardLayout
DefWindowProcW
EndPaint
GetDlgItemTextA
GetFocus
CharPrevA
GetShellWindow
CreateCaret
ActivateKeyboardLayout
GetForegroundWindow
AllowSetForegroundWindow
SetFocus
GetUpdateRgn
DefDlgProcA
ReplyMessage
wsprintfW
SetCursorPos
CharNextExA
GrayStringW
AdjustWindowRectEx
DrawTextA
SetRectEmpty
SetDlgItemTextW
GetNextDlgTabItem
GetWindowTextA
CallWindowProcW
GetMenuItemRect
CharUpperBuffA
LoadMenuW
SetMenu
GetKeyNameTextW
GetMessageW
BeginPaint
CheckRadioButton
MonitorFromPoint
ChangeMenuW
SendNotifyMessageW
LookupIconIdFromDirectory
CreateWindowExA
GetWindowTextW
DrawIconEx
GetMenuStringW
GetClipCursor
AppendMenuW
EndDialog
InvalidateRgn
EnableWindow
SetParent
GetMenuCheckMarkDimensions
GetWindowRect
DefWindowProcA
LoadCursorW
RemovePropW
TabbedTextOutW
GetCaretPos
MapVirtualKeyA
FindWindowExA
InflateRect
GetDCEx
SetForegroundWindow
RegisterWindowMessageW
keybd_event
LoadIconW
DragObject
DialogBoxParamA
SetPropW
DrawEdge
AttachThreadInput
OpenInputDesktop
IsCharAlphaA
GetKeyboardLayoutNameW
CharNextA
SetMenuDefaultItem
FindWindowA
LoadBitmapW
KillTimer
TranslateAcceleratorW
SetWindowLongW
CreateAcceleratorTableW
CreatePopupMenu
TrackPopupMenu
DestroyCursor
GetActiveWindow
VkKeyScanA
mouse_event
CreateIconIndirect
InternalGetWindowText
LoadStringW
GetScrollRange
GetAsyncKeyState
CreateWindowExW
RegisterClassW
SendMessageTimeoutW
GetDlgCtrlID
DefFrameProcA
DestroyWindow
GetMessageExtraInfo
LoadStringA
CopyRect
GetSystemMenu
GetDialogBaseUnits
CharToOemW
GetClassNameW
RegisterHotKey
GetClassLongA
PeekMessageA
MessageBoxW

Exports

Exports

?RegenerateMainValues@@YGKPBDDPAX:O

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.e_tab
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.redit
Size: 1KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i_tab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.site
Size: 512B - Virtual size: 338B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a649db8b1393cff02681a49b61c2e8c

Headers

File Characteristics

PDB Paths

Imports

comdlg32

kernel32

comctl32

msvcrt

user32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 22KB

.e_tab Size: 512B - Virtual size: 125B

.redit Size: 1KB - Virtual size: 256KB

.data Size: 2KB - Virtual size: 1KB

.i_tab Size: 6KB - Virtual size: 5KB

.site Size: 512B - Virtual size: 338B

.wdata Size: 512B - Virtual size: 192B

.rsrc Size: 136KB - Virtual size: 136KB

.text
Size: 22KB - Virtual size: 22KB

.e_tab
Size: 512B - Virtual size: 125B

.redit
Size: 1KB - Virtual size: 256KB

.data
Size: 2KB - Virtual size: 1KB

.i_tab
Size: 6KB - Virtual size: 5KB

.site
Size: 512B - Virtual size: 338B

.wdata
Size: 512B - Virtual size: 192B

.rsrc
Size: 136KB - Virtual size: 136KB