c856a29bf92bd1d3eb8fbd8f73b56192

Sharing

Copy URL Twitter E-mail

General

Target

c856a29bf92bd1d3eb8fbd8f73b56192
Size

103KB
MD5

c856a29bf92bd1d3eb8fbd8f73b56192
SHA1

7daba0d039427025f20d80902ff9b0971bdc9ba1
SHA256

306579381b60d93eaa2b5e86bdc78d354c7c55c31c3898ad3732e4ce7b01be45
SHA512

9b89c48bb405147bbb4aafdfc003336e91c3263aea1412149ac82cb7e786684d69273df22b2345b9c3dd813e761c762040f0abd72daa6df95f42dd7832df8ea4
SSDEEP

1536:4+JaoASwdVMpCXFTF09gmRTv1vkuUAw4hFgBooIyKqQkZa:4+kooLQCr0ymplB5F1oIFqQI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c856a29bf92bd1d3eb8fbd8f73b56192

Files

c856a29bf92bd1d3eb8fbd8f73b56192
.exe windows:4 windows x86 arch:x86

67a538471d3fa3b1e4ac71026fb5b17f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

user32

EnumChildWindows
mouse_event
EnumWindows
ExitWindowsEx
SetWindowTextA
keybd_event
OpenClipboard
EmptyClipboard
SetClipboardData
SystemParametersInfoA
GetWindowTextA
CloseClipboard
ShowWindow
SetSysColors
GetSubMenu
GetMenuItemID
SetDoubleClickTime
ChangeDisplaySettingsA
GetMenuItemCount
LoadStringA
UnhookWindowsHookEx
EnableWindow
MessageBoxA
SendMessageA
GetWindowLongA
IsWindowEnabled
GetLastActivePopup
GetParent
SetWindowsHookExA
PeekMessageA
CallNextHookEx
GetKeyState
DispatchMessageA
GetNextDlgTabItem
GetFocus
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindow
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetDlgCtrlID
GetDlgItem
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
PostMessageA
LoadIconA
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetClassNameA
PtInRect
ClientToScreen
PostQuitMessage
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA

kernel32

WaitForSingleObject
GetVersion
GetCurrentThreadId
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetProcessVersion
LocalReAlloc
TlsGetValue
GetCPInfo
GetOEMCP
GlobalFlags
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
lstrcmpA
TlsSetValue
RtlUnwind
GetStartupInfoA
GlobalReAlloc
RaiseException
HeapAlloc
HeapFree
HeapSize
HeapReAlloc
GetACP
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetExitCodeProcess
CompareStringW
SetEnvironmentVariableA
TlsAlloc
GlobalHandle
GlobalFree
LeaveCriticalSection
LocalAlloc
EnterCriticalSection
SetLastError
DeleteCriticalSection
InitializeCriticalSection
InterlockedIncrement
MultiByteToWideChar
InterlockedDecrement
WideCharToMultiByte
LocalFree
GetCurrentProcess
CompareStringA
GetVersionExA
CloseHandle
FreeLibrary
OpenProcess
GetFullPathNameA
TerminateProcess
GetModuleFileNameA
lstrlenA
GetSystemDirectoryA
lstrcatA
lstrcmpiA
lstrcpynA
GetFileAttributesA
ExitProcess
Sleep
CreateProcessA
GlobalLock
CopyFileA
GlobalAlloc
GetProcAddress
GlobalUnlock
LoadLibraryA
FindFirstFileA
GetCurrentProcessId
SetComputerNameA
GetLastError
DeleteFileA
FindNextFileA
FindClose
GetCommandLineA

gdi32

OffsetViewportOrgEx
SetViewportExtEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetMapMode
SetViewportOrgEx
GetStockObject
SelectObject
SaveDC
RestoreDC
DeleteObject
GetDeviceCaps
DeleteDC
SetBkColor
SetTextColor
GetObjectA
CreateBitmap
GetClipBox

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comctl32

ord17

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

67a538471d3fa3b1e4ac71026fb5b17f

Headers

File Characteristics

Imports

advapi32

user32

kernel32

gdi32

winspool.drv

comctl32

Sections

.text Size: 92KB - Virtual size: 92KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 10KB - Virtual size: 12KB