78db5e343530044a5da904ebee9d1093b45839808aea3469ffb5614cb282e099

Sharing

Copy URL Twitter E-mail

General

Target

78db5e343530044a5da904ebee9d1093b45839808aea3469ffb5614cb282e099
Size

235KB
MD5

c767f81fff80c7834cbd0a25487fe31d
SHA1

39a3619bc0656487702329c4bfea50cefa7f8b34
SHA256

78db5e343530044a5da904ebee9d1093b45839808aea3469ffb5614cb282e099
SHA512

5d18174dcf818f42098f6e633ae416a9177923c148d42f3ee8b4a84b2540a484ae01a19fd8cc6358648d2eb067beb8578981a36f54e2c6918cd6622af802104e
SSDEEP

6144:6ggYG76IN/qP2d7QYmrsiU6U8Dgxi9xJsv:3/G799qPo7R158sI9xav

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78db5e343530044a5da904ebee9d1093b45839808aea3469ffb5614cb282e099

Files

78db5e343530044a5da904ebee9d1093b45839808aea3469ffb5614cb282e099
.exe windows:4 windows x86 arch:x86

d51160d6c02e20f8f7cd8a288d96aad4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
GetCurrentDirectoryA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateDirectoryA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
LoadLibraryA
SetStdHandle
FlushFileBuffers
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetFilePointer
ReadFile
WriteFile
GetFileType
GetStdHandle
SetHandleCount
VirtualAlloc
VirtualFree
HeapCreate
GetOEMCP
GetACP
GetCPInfo
GetVersion
GetStartupInfoA
HeapReAlloc
GetModuleHandleA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GlobalReAlloc
GlobalHandle
GetTimeZoneInformation
DosDateTimeToFileTime
LocalFileTimeToFileTime
CreateFileA
SetFileTime
CloseHandle
GetModuleFileNameA
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
GetFullPathNameA
GetVolumeInformationA
SetVolumeLabelA
GetFileAttributesA
FindFirstFileA
DeleteFileA
FindClose
GetLastError
GetCommandLineA
GetTempPathA
GetTempFileNameA
SetFileAttributesA
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
lstrlenW
GetProcAddress

user32

GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
GetWindow
GetDlgItem
SendMessageA
LoadIconA
MoveWindow
ScreenToClient
GetParent
GetWindowLongA
SetWindowTextA
GetActiveWindow
GetWindowTextLengthA
SetWindowLongA
MessageBeep
LoadStringA
MessageBoxA
DialogBoxParamA
GetWindowTextA
EndDialog
PeekMessageA
TranslateMessage
DispatchMessageA
InvalidateRect
OffsetRect

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA

ole32

CoUninitialize
CoInitialize

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
SysAllocString

comctl32

ord17

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d51160d6c02e20f8f7cd8a288d96aad4

Headers

File Characteristics

Imports

kernel32

user32

shell32

ole32

oleaut32

comctl32

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 14KB - Virtual size: 71KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 14KB - Virtual size: 71KB

.rsrc
Size: 4KB - Virtual size: 3KB