d52d25d4590db5d1a883b67808d9e6ea

Sharing

Copy URL

Twitter E-mail

General

Target

d52d25d4590db5d1a883b67808d9e6ea
Size

162KB
MD5

d52d25d4590db5d1a883b67808d9e6ea
SHA1

8cedceba778ba9a662e653e67b0bf385eac4592a
SHA256

2fc39d4cb16b80795b16353dbf775c1403e14ae303f861e7b79e1862567121c6
SHA512

533af977e5855e3c0c8c74d18609b3b4c9e2624d12bac96595983b470e7d4896f913c99c512f9dec82e08afd92564934e3ee5674447f21186fb9a11252d2d003
SSDEEP

3072:lVXaHU1nBjaMU8oAptsc1k0VLrjaXXbIROVImbf6Yo5zTf9NGagH:bXhOL8BpbVLrjaXrI5mbCF5H9t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d52d25d4590db5d1a883b67808d9e6ea

Files

d52d25d4590db5d1a883b67808d9e6ea
.exe windows:4 windows x86 arch:x86

6a481b6e466ab9233efc6b2a9308fa27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
GetStringTypeA
GetTickCount
LoadLibraryA
LocalReAlloc
ExitThread
CompareStringA
lstrlenA
lstrcmpiA
GlobalAlloc
ExitProcess
VirtualAlloc
GetFileSize
FindResourceA
GetLocalTime
LoadResource
GetModuleHandleA
GetCurrentThread
GetProcessHeap
GetACP

msvcrt

wcstol
_acmdln
abs
mbstowcs
memmove
cos
exp
clock
memcmp
srand
memcpy
strlen
time

shlwapi

SHSetValueA

comctl32

ImageList_Remove
ImageList_Destroy
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Write

oleaut32

OleLoadPicture

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

gdi32

CreateCompatibleBitmap
BitBlt
GetDIBits
CopyEnhMetaFileA
CreateCompatibleDC
GetBitmapBits

user32

CharLowerBuffA
HideCaret
CallNextHookEx
DeferWindowPos
IsDialogMessageA
ClientToScreen
MessageBoxA
DrawIconEx
EqualRect
DispatchMessageA
CreateWindowExA
CheckMenuItem
IsWindowEnabled
GetDlgItem
FindWindowA
GetScrollRange
EndPaint
DrawMenuBar
GetScrollPos
BeginPaint
GetCursorPos
DrawEdge
EnableScrollBar
GetClipboardData
EnumThreadWindows
CharToOemA
GetPropA
IsChild
GetSysColor
DispatchMessageW
SystemParametersInfoA
GetClassLongA
DefWindowProcA
DefMDIChildProcA
GetClassInfoA
CharNextA
IsWindowVisible
GetMessagePos
GetActiveWindow
SetWindowLongA
GetScrollInfo
ShowScrollBar
GetClientRect
GetMenu
GetDC
DrawFrameControl
EndDeferWindowPos
GetMenuItemCount
EnableMenuItem
GetFocus
GetWindowTextA
DefFrameProcA
GetMenuItemInfoA
ShowWindow
TrackPopupMenu
GetIconInfo
GetKeyState
CreateIcon
GetCursor
DrawTextA
EnableWindow
SetWindowPos
IsMenu
GetDesktopWindow
CharLowerA
EnumWindows
SetCursor
GetParent
GetCapture
GetMenuStringA
CreateMenu
FrameRect
GetLastActivePopup
DrawIcon
GetSysColorBrush
RegisterClassA
GetDCEx
FillRect
SetTimer
EnumChildWindows
BeginDeferWindowPos
GetWindow
GetMenuState
GetKeyNameTextA
CallWindowProcA
GetSubMenu
SetWindowTextA
CreatePopupMenu
GetMenuItemID
GetForegroundWindow

advapi32

RegCreateKeyExA
RegLoadKeyA

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 116KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 498B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a481b6e466ab9233efc6b2a9308fa27

Headers

File Characteristics

Imports

kernel32

msvcrt

shlwapi

comctl32

oleaut32

comdlg32

gdi32

user32

advapi32

Sections

.text Size: 41KB - Virtual size: 41KB

.init Size: 116KB - Virtual size: 176KB

.idata Size: 512B - Virtual size: 498B

INIT Size: 2KB - Virtual size: 1KB

.text
Size: 41KB - Virtual size: 41KB

.init
Size: 116KB - Virtual size: 176KB

.idata
Size: 512B - Virtual size: 498B

INIT
Size: 2KB - Virtual size: 1KB