ca45e2acf26bbcf77a3921abd0e802f6

Sharing

Copy URL Twitter E-mail

General

Target

ca45e2acf26bbcf77a3921abd0e802f6
Size

319KB
MD5

ca45e2acf26bbcf77a3921abd0e802f6
SHA1

beff1f5c1b47e7f8f80375ae0bd0bfde7574fcb2
SHA256

cf22887df81b7cd55c15dc66d595f29a3e4fcca5b3e3edd3a309c5a80a2a5dfd
SHA512

b4aa0192928dab277db3352e4b261063c92239cd61b74aad64f9eb271ffd2dbf6f651b33c86c8f36356c581924ccad4d394d46871ac79b2ccb6fdf8bf785ed43
SSDEEP

6144:mLiG2IuHewVW5Gk/ZKHtuY1z1EJAlafZ1udqKcLrQtu:+iG2/+ww5jEHtuJJAy1udarG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca45e2acf26bbcf77a3921abd0e802f6

Files

ca45e2acf26bbcf77a3921abd0e802f6
.exe windows:4 windows x86 arch:x86

f30040285e5fa3d66a600473449eeb7d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

StretchBlt
RestoreDC
CombineRgn
SelectClipRgn
CreateFontIndirectA
GetDeviceCaps
GetClipBox
TextOutW
GetMapMode
CloseMetaFile
EnumMetaFile
CreateMetaFileA
EnumFontFamiliesExA
Escape
BitBlt
MoveToEx
SetRectRgn
SetMapperFlags
GetCharWidthA
Rectangle
SetROP2
PlayMetaFile
CreateFontA
FillRgn
GetTextMetricsA
CreateRectRgnIndirect
GetCharWidth32A
DeleteMetaFile
SaveDC
RectVisible
Arc
GetBitmapBits
ExtTextOutW
GetCharWidth32W
CreatePatternBrush
SetStretchBltMode
GetObjectA
SetTextAlign
LineTo
TextOutA
CreateSolidBrush
SetBkMode
Ellipse
CreateCompatibleDC
GetTextFaceA
DeleteDC
SetWindowExtEx
SetBkColor
PatBlt
SetViewportExtEx
GetTextExtentPoint32A
GetMetaFileBitsEx
CreateICA
ExtTextOutA
SetMapMode
GetStockObject
CopyMetaFileA
GetCharWidthW
SelectObject
SetTextColor
DeleteObject
CreateRectRgn
CreatePen
CreateBitmap
Polygon
SetWindowOrgEx
EnumFontsA
PtVisible
CreateCompatibleBitmap

advapi32

RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyA
RegSetValueExA
RegOpenKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyExA

shell32

DragAcceptFiles

kernel32

GetCurrentProcessId
GlobalHandle
LocalUnlock
GetVersion
GlobalFlags
LocalReAlloc
LocalFree
GetProfileStringA
CreateFileA
GetProcAddress
GetFileType
lstrcmpA
ExitProcess
CompareStringA
GetACP
HeapReAlloc
GetTickCount
FatalAppExitA
GlobalFree
LoadLibraryA
GlobalUnlock
FreeLibrary
ReadFile
IsDBCSLeadByte
SetEnvironmentVariableA
LocalLock
GetWindowsDirectoryA

certcli

CAGetCACertificate

user32

MessageBoxA
MapWindowPoints
GetClassLongA
SetDlgItemTextA
GetDC
DialogBoxParamA
GetMessagePos
DefWindowProcA
IsDialogMessageA
LoadBitmapA
LoadKeyboardLayoutA
EndDialog
IntersectRect
CheckMenuItem
ActivateKeyboardLayout
IsWindowUnicode
EnableWindow
SetScrollPos
GetMenu
GetScrollRange
SetWindowLongA
LoadMenuA
GetParent
BringWindowToTop
ShowCursor
GetWindowRect
GetCaretBlinkTime
GetKeyboardLayoutList
GetWindowLongA
CloseClipboard
SetFocus
GetSystemMenu
IsIconic
IsWindowVisible
BeginPaint
CheckRadioButton
SetTimer
SetRect
GetClassNameA
GetMenuStringA
TranslateMessage
GetNextDlgTabItem
InflateRect
EnableMenuItem
GetDoubleClickTime
SetWindowPos
DestroyWindow
GetDlgItem
GetKeyState
KillTimer
GetSubMenu
VkKeyScanA
wsprintfA
ReleaseDC
ClientToScreen
GetMessageA
FillRect
EnumWindowStationsW
InvertRect
RegisterClipboardFormatA
EmptyClipboard
ShowWindow
DrawTextA
CopyRect
CreateDialogParamA
GetMenuItemID
PeekMessageA
ReleaseCapture
SetParent
MessageBeep
DrawMenuBar
WinHelpA
EndPaint
SetWindowTextA
DestroyMenu
DefWindowProcW
DispatchMessageW
GetDlgItemTextA
IsWindow
GetScrollPos
EqualRect
SendDlgItemMessageA
GetMenuState
GetClassInfoA
PostQuitMessage
GetSystemMetrics
AppendMenuA
GetActiveWindow
GetDesktopWindow
GetAsyncKeyState
IsZoomed
CreateWindowExA
SetClipboardData
DeleteMenu
InsertMenuA
GetMessageW
SetCapture
OpenClipboard
GetMessageTime
RemoveMenu
DispatchMessageA
GetDialogBaseUnits
PtInRect
InvalidateRgn
FindWindowA
OffsetRect
GetWindowDC
SetMenu
IsDlgButtonChecked
SetScrollRange
LoadStringA
IsRectEmpty
SetRectEmpty
PostMessageA
HiliteMenuItem
UpdateWindow
GetWindowTextA
GetFocus
SetCursor
CheckDlgButton
UnionRect
ScrollDC
LoadIconA
RegisterClassW
GetMenuCheckMarkDimensions
RegisterClassA
GetKeyboardLayout
LoadCursorA
GetClipboardData
SetForegroundWindow
GetCursorPos
GetMenuItemCount
MoveWindow
CreateMenu
GetClassLongW
IsClipboardFormatAvailable
ModifyMenuA
GetSysColor
SendMessageA
ScreenToClient
GetClientRect
InvalidateRect

ole32

GetRunningObjectTable
CoGetMalloc
OleInitialize
CoRegisterMessageFilter
CoLockObjectExternal
OleDestroyMenuDescriptor
CoRegisterClassObject
OleGetClipboard
OleTranslateAccelerator
ReleaseStgMedium
OleDuplicateData
CoDisconnectObject
WriteClassStg
OleSetClipboard
CoRevokeClassObject
OleRegEnumFormatEtc
GetHGlobalFromILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
WriteFmtUserTypeStg
CreateOleAdviseHolder
StgCreateDocfileOnILockBytes
OleFlushClipboard
OleCreateMenuDescriptor
CreateDataAdviseHolder

Sections

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f30040285e5fa3d66a600473449eeb7d

Headers

File Characteristics

Imports

gdi32

advapi32

shell32

kernel32

certcli

user32

ole32

Sections

.text Size: 205KB - Virtual size: 205KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 100KB - Virtual size: 100KB

.venue Size: 5KB - Virtual size: 74KB

.text
Size: 205KB - Virtual size: 205KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 100KB - Virtual size: 100KB

.venue
Size: 5KB - Virtual size: 74KB