ca7ed82c328034cb3a7221684e3ff186

Sharing

Copy URL

Twitter E-mail

General

Target

ca7ed82c328034cb3a7221684e3ff186
Size

424KB
MD5

ca7ed82c328034cb3a7221684e3ff186
SHA1

89e38fc4422b4fe092f3c2806d4b4245814d7c11
SHA256

12483b3325fcf807076d29e789f7cae12e6c8c624d00e7c14138d0b274513cdd
SHA512

9a2ba93ed051356dc4a70d1ea4b253afc18cc29653ce20620ce1d1f54f385e62d8da410d604848e940ec19fcf9939187a1bea5dd796c748ef9e6608ab6817b49
SSDEEP

12288:Cu9HkI6/WKDcvUmhWXxn7d5/n6kPlrba1:Cu961cvUmhWBn7d5/n6kdrba1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca7ed82c328034cb3a7221684e3ff186

Files

ca7ed82c328034cb3a7221684e3ff186
.exe windows:4 windows x86 arch:x86

e0e137e526ea1bdf73966681128a4185

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\wra\mokhtonva.pdb

Imports

user32

SetScrollPos
ValidateRect
DrawStateA
MessageBoxExW
CascadeWindows
SetCaretPos
CreateDesktopW
GetQueueStatus
ToAscii
CreateDialogIndirectParamW
RegisterClassExA
InSendMessage
DestroyWindow
DdeClientTransaction
IsCharLowerW
GetUpdateRect
CallMsgFilter
UnhookWindowsHook
MessageBoxW
CreateWindowExA
DefWindowProcW
GetClassInfoExA
ChangeClipboardChain
LookupIconIdFromDirectory
BroadcastSystemMessageA
SetRect
OpenInputDesktop
ShowWindow
InSendMessageEx
ScrollDC
SetWindowLongW
RegisterClassA
RegisterClipboardFormatW
SendDlgItemMessageA
GetComboBoxInfo
GetDialogBaseUnits
DdeReconnect
BeginPaint
SetDlgItemInt
MessageBoxExA
LoadMenuIndirectW
GetPropA
DdeFreeStringHandle
GetKeyboardState

gdi32

SetICMMode
GetEnhMetaFileDescriptionA
GetPaletteEntries
BeginPath
TranslateCharsetInfo
RoundRect
GetRasterizerCaps
GetColorAdjustment
ExtTextOutW
GetEnhMetaFileW
GetOutlineTextMetricsW
GetCharWidth32A
GetViewportExtEx
GetICMProfileW
ExtEscape
GetViewportOrgEx
MoveToEx
GetFontLanguageInfo
GetNearestPaletteIndex
CreateBitmap
SetROP2
EnumObjects

comctl32

CreateToolbar
InitCommonControlsEx
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Remove
MakeDragList

kernel32

HeapDestroy
IsBadWritePtr
MultiByteToWideChar
GetSystemTimeAsFileTime
QueryPerformanceCounter
VirtualAlloc
LCMapStringW
GetCurrentThread
GetCurrentProcessId
WideCharToMultiByte
GetCPInfo
SetStdHandle
VirtualProtect
SetComputerNameA
GetLastError
GetSystemInfo
GetDateFormatA
GetStringTypeW
TlsSetValue
FreeEnvironmentStringsW
CompareStringA
CloseHandle
GetEnvironmentStringsW
EnumSystemLocalesA
WriteFile
InterlockedExchange
GetDiskFreeSpaceW
LeaveCriticalSection
FreeEnvironmentStringsA
GetCurrentThreadId
CreateMutexA
GetTimeFormatA
IsValidCodePage
SetHandleCount
GetACP
OpenMutexA
GetLocaleInfoW
GetUserDefaultLCID
GetTickCount
GetOEMCP
LCMapStringA
GetStartupInfoW
HeapAlloc
SetEnvironmentVariableA
VirtualFree
GetLocaleInfoA
WaitCommEvent
HeapCreate
GetFileType
TlsFree
HeapSize
SetFilePointer
GetProcAddress
GetVersionExA
UnhandledExceptionFilter
SetLastError
GetCommandLineW
GetTimeZoneInformation
GetStringTypeA
GetModuleFileNameA
TlsAlloc
DeleteCriticalSection
HeapReAlloc
GetStartupInfoA
GetCurrentProcess
GetModuleFileNameW
GetEnvironmentStrings
IsValidLocale
InitializeCriticalSection
TlsGetValue
LoadLibraryA
ExitProcess
GetCommandLineA
EnterCriticalSection
RtlUnwind
HeapFree
VirtualQuery
ReadFile
FlushFileBuffers
GetModuleHandleA
CompareStringW
TerminateProcess
GetStdHandle
CreateWaitableTimerW
RemoveDirectoryW

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0e137e526ea1bdf73966681128a4185

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

comctl32

kernel32

Sections

.text Size: 163KB - Virtual size: 163KB

.rdata Size: 95KB - Virtual size: 94KB

.data Size: 94KB - Virtual size: 102KB

.rsrc Size: 71KB - Virtual size: 70KB

.text
Size: 163KB - Virtual size: 163KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 94KB - Virtual size: 102KB

.rsrc
Size: 71KB - Virtual size: 70KB