c74b636452808ae82397313240da2e57

Sharing

Copy URL Twitter E-mail

General

Target

c74b636452808ae82397313240da2e57
Size

630KB
MD5

c74b636452808ae82397313240da2e57
SHA1

c25ece5962aaf8bb8978c190879c578eb77b8bf7
SHA256

318a4c608214c74ea66259266528d814ceea193574147e0d8c74c644403a3966
SHA512

0e85d926daa00af6bc03f556f5af36924c96f2be60cbccf72596f3c42769777d096f16e32bc3061d47ee67f334a123201fde3f0d5a659b5b4b4ec97d073fc7f9
SSDEEP

12288:K3/b1RAX7C3QYgD1g9IbW5aE+mnnEs3R6ZCHhQoN:K3ym3SbC+bs3Es/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c74b636452808ae82397313240da2e57

Files

c74b636452808ae82397313240da2e57
.exe windows:4 windows x86 arch:x86

83e04f1dc6f890a88d2396b66a902266

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileAorW
ShellExecuteEx
ShellExecuteW

comctl32

ImageList_GetImageRect
CreateMappedBitmap
ImageList_DragLeave
ImageList_AddMasked
CreateUpDownControl
DrawStatusTextA
ImageList_Remove
InitMUILanguage
ImageList_DrawIndirect
ImageList_DragShowNolock
CreateStatusWindowA
InitCommonControlsEx

kernel32

IsValidCodePage
SetFilePointer
GlobalUnlock
CreateMutexW
EnumSystemLocalesA
LocalCompact
GetVolumeInformationA
CreateToolhelp32Snapshot
GetSystemInfo
GetPrivateProfileStringW
InterlockedExchangeAdd
SetUnhandledExceptionFilter
MoveFileW
OutputDebugStringA
TerminateProcess
ExitProcess
GetCurrentProcessId
RtlZeroMemory
FreeEnvironmentStringsW
SetVolumeLabelW
GetCurrentThread
GetTimeFormatA
CreateSemaphoreW
GetCPInfo
OpenEventW
CompareStringA
FreeEnvironmentStringsA
ReadFile
HeapFree
WritePrivateProfileSectionW
CreateMutexA
LoadModule
GetEnvironmentStrings
lstrcmpi
CompareStringW
GetUserDefaultLCID
FindResourceW
SetStdHandle
InterlockedDecrement
VirtualQuery
GetACP
ReadConsoleInputA
InitializeCriticalSection
GetLocalTime
GetDiskFreeSpaceW
ReadConsoleOutputCharacterW
GetVersion
CloseHandle
EnumCalendarInfoA
LocalHandle
TlsGetValue
InterlockedExchange
SetCurrentDirectoryA
GetStringTypeA
GetConsoleOutputCP
IsValidLocale
lstrcatW
GetCurrentThreadId
IsBadReadPtr
GetFileAttributesExA
DuplicateHandle
GetStartupInfoW
GetThreadTimes
SetConsoleCtrlHandler
HeapDestroy
EnumSystemLocalesW
VirtualAlloc
TlsAlloc
SetConsoleTextAttribute
LCMapStringW
GetTickCount
SetHandleCount
lstrcmpiW
HeapReAlloc
WritePrivateProfileSectionA
HeapSize
GetModuleFileNameW
Sleep
TlsFree
GetLocaleInfoW
GetProcAddress
EnumCalendarInfoExW
GetModuleFileNameA
lstrcmpW
WaitNamedPipeW
IsDebuggerPresent
OpenMutexA
GetCommandLineA
FlushFileBuffers
GetModuleHandleA
WriteFile
TlsSetValue
GetStdHandle
ExpandEnvironmentStringsA
LeaveCriticalSection
CreateFileA
EnterCriticalSection
FillConsoleOutputAttribute
WideCharToMultiByte
InterlockedIncrement
HeapAlloc
GetThreadLocale
LCMapStringA
LoadResource
UnhandledExceptionFilter
FreeLibrary
GetEnvironmentStringsW
GetPrivateProfileStringA
EnumResourceLanguagesA
WriteConsoleW
GetLastError
GetConsoleMode
GetProcessHeap
OpenMutexW
GetFileType
LoadLibraryA
GetFileSize
CreateFileW
WriteConsoleA
SetConsoleOutputCP
VirtualFree
GetStartupInfoA
DeleteCriticalSection
RtlUnwind
SetEnvironmentVariableA
QueryPerformanceCounter
GetDateFormatA
GetWindowsDirectoryA
GetStringTypeW
OutputDebugStringW
GetTimeZoneInformation
GetCurrentProcess
GetCommandLineW
GetOEMCP
SetLastError
MultiByteToWideChar
GetVersionExA
GetSystemTimeAsFileTime
GetLocaleInfoA
HeapLock
WriteConsoleOutputW
HeapCreate
FindResourceExA
ConnectNamedPipe
GetConsoleCP
ReleaseSemaphore

user32

DdeKeepStringHandle
RegisterClipboardFormatA
MessageBoxA
RegisterClassExA
SetMenuItemInfoW
PostMessageA
BlockInput
SetClassWord
DrawTextExA
GetWindowRect
MonitorFromRect
EnumPropsExA
LoadAcceleratorsA
GetDesktopWindow
GetAsyncKeyState
EnableScrollBar
DefWindowProcW
RegisterDeviceNotificationW
CheckRadioButton
GetSystemMetrics
CreateDialogParamA
DestroyWindow
EndDialog
GetClassNameW
SetShellWindow
DdeNameService
GetForegroundWindow
WINNLSGetIMEHotkey
RegisterWindowMessageA
RegisterClassA
CreateWindowExA
TranslateAccelerator
SetWindowTextW
InsertMenuItemA
EnumPropsExW
CreateAcceleratorTableA
ShowOwnedPopups
ShowWindow
ModifyMenuW
GetCursorPos
SetWindowsHookExA
ScrollWindow
CascadeChildWindows
SetSysColors
CopyAcceleratorTableA
LoadStringA
TabbedTextOutA
GetSystemMenu
ClientToScreen
UnregisterDeviceNotification
GetShellWindow
IsIconic
DialogBoxIndirectParamA
GetKeyState
CharUpperBuffW
LockWindowUpdate
GetThreadDesktop

Sections

.text
Size: 229KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83e04f1dc6f890a88d2396b66a902266

Headers

File Characteristics

Imports

shell32

comctl32

kernel32

user32

Sections

.text Size: 229KB - Virtual size: 228KB

.rdata Size: 256KB - Virtual size: 256KB

.data Size: 113KB - Virtual size: 129KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 229KB - Virtual size: 228KB

.rdata
Size: 256KB - Virtual size: 256KB

.data
Size: 113KB - Virtual size: 129KB

.rsrc
Size: 31KB - Virtual size: 30KB