cb76a12f47cd01dc5787c74d4c839b44

General

Target

cb76a12f47cd01dc5787c74d4c839b44
Size

315KB
MD5

cb76a12f47cd01dc5787c74d4c839b44
SHA1

6055bd9e38441f2d42635cbcd5bc1cbac548bb28
SHA256

dbc818c5de3108d72a428471d4d920e65545d9920d6af1143fe12038c8a23055
SHA512

343b481d013f93bfa5cadf67cf7451f589b87028ff36130bc2915b367394fffcbff82117df295fd32ff15023ad674f3b457f7c0bb371ee0b69f48ea63278fc42
SSDEEP

6144:u+/SuJfVXnkdVyepTqblOfJ3xKpqi57VMAuZqo3izpuXN2:Z/SYlfeJUlOxspl5+ZT3iluM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb76a12f47cd01dc5787c74d4c839b44

Files

cb76a12f47cd01dc5787c74d4c839b44
.exe windows:4 windows x86 arch:x86

863e943ccece38f270a3620550bf2e1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegDeleteValueA
RegSetValueA
RegOpenKeyExA
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegCloseKey
RegEnumValueA
RegCreateKeyExA
RegSetValueExA

user32

GetWindowTextA
CharPrevW
MessageBoxA
ClientToScreen
LoadStringA
CreateDialogIndirectParamA
RegisterClassA
CreateWindowExA
wsprintfA
GetWindowLongA
DialogBoxParamA
CharNextW
LoadCursorA
FindWindowA
SetRectEmpty
GetWindowTextLengthA
TranslateAcceleratorA
EndDialog
EnableMenuItem
SendMessageA
GetParent
EnumWindowStationsW
IsWindowVisible
TrackPopupMenuEx
GetClientRect
InvalidateRect

kernel32

GetCurrentThreadId
EnterCriticalSection
HeapAlloc
WideCharToMultiByte
FlushFileBuffers
IsBadWritePtr
LockResource
lstrlenW
HeapFree
FindResourceA
ExitProcess
lstrcpyA
lstrlenA
GetProcessHeap
LoadResource
lstrcatA
LeaveCriticalSection
HeapReAlloc

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CreateOleAdviseHolder

secur32

GetUserNameExW

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

863e943ccece38f270a3620550bf2e1e

Headers

File Characteristics

Imports

advapi32

user32

kernel32

ole32

secur32

Sections

.text Size: 206KB - Virtual size: 205KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 101KB - Virtual size: 100KB

.venue Size: 5KB - Virtual size: 74KB

.text
Size: 206KB - Virtual size: 205KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 101KB - Virtual size: 100KB

.venue
Size: 5KB - Virtual size: 74KB