d77fdf1c9007e2b55725fc3c5791edc7

Sharing

Copy URL Twitter E-mail

General

Target

d77fdf1c9007e2b55725fc3c5791edc7
Size

179KB
MD5

d77fdf1c9007e2b55725fc3c5791edc7
SHA1

34326fa673d6d7954fbad680c4d2e5a228a536e0
SHA256

bdca6d3837e7fa45d98e5c801482558623cb4b195e7c267998afe7d60522c32a
SHA512

e2edadf73b75207d205057b0ea7b7f035a1ebf78a535618bd4a6b0a7448261a4b6a41d8f81543affb9b1d6f28d91e586b5110e5d61cb8347e0859ab3b5d6ffba
SSDEEP

3072:ssGh4Rxs14zY+w7JHhgC7Rjsqwco5DP21krFKClBjxikVB:cws1oFCNjhwV2iFp3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d77fdf1c9007e2b55725fc3c5791edc7

Files

d77fdf1c9007e2b55725fc3c5791edc7
.exe windows:4 windows x86 arch:x86

19ffde36a5ffb345db03b476e54dd3ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
CompareStringA
CopyFileA
CreateEventW
CreateFileA
CreateProcessA
CreateThread
DeleteFileA
EnterCriticalSection
EnumCalendarInfoA
FileTimeToDosDateTime
FileTimeToSystemTime
FindNextFileA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileTime
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetStartupInfoA
GetStringTypeW
GetSystemDirectoryA
GetTempPathW
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalHandle
HeapReAlloc
InterlockedCompareExchange
InterlockedIncrement
IsDebuggerPresent
LCMapStringW
LeaveCriticalSection
LoadResource
LocalAlloc
MapViewOfFile
MoveFileA
MulDiv
MultiByteToWideChar
OutputDebugStringA
RaiseException
RemoveDirectoryA
ResetEvent
SetCurrentDirectoryA
SetErrorMode
SetFilePointer
SetStdHandle
SetUnhandledExceptionFilter
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsGetValue
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WritePrivateProfileStringA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrlenA
lstrlenW

user32

BeginPaint
CallWindowProcA
CharLowerA
CharNextA
CreateMenu
CreateWindowExA
DefWindowProcA
DrawEdge
EmptyClipboard
EnableMenuItem
EqualRect
FillRect
FindWindowA
GetClassInfoA
GetForegroundWindow
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetSysColorBrush
GetSystemMenu
GetWindow
InflateRect
IsChild
IsDialogMessageA
IsZoomed
OemToCharA
OffsetRect
PeekMessageA
PostMessageA
RegisterClassA
ReleaseCapture
ReleaseDC
RemoveMenu
SendMessageA
SetPropA
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
TrackPopupMenu
WinHelpA
wsprintfA

gdi32

CloseMetaFile
CopyMetaFileA
CreateBrushIndirect
CreateFontIndirectA
CreateFontW
CreatePalette
CreatePatternBrush
CreateRectRgnIndirect
EndPage
EnumFontFamiliesA
ExtFloodFill
ExtTextOutA
FillRgn
GetBitmapBits
GetBkMode
GetCharWidthW
GetCharacterPlacementA
GetDIBColorTable
GetDIBits
GetEnhMetaFileDescriptionA
GetROP2
GetSystemPaletteEntries
GetTextExtentPointW
GetTextFaceA
GetTextFaceW
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
OffsetRgn
Pie
PlayMetaFile
PlayMetaFileRecord
PolyBezierTo
SelectClipRgn
SetAbortProc
SetArcDirection
SetDIBColorTable
SetMapMode
StartPage
StretchBlt
TranslateCharsetInfo

shell32

DoEnvironmentSubstW
DragQueryFile
DragQueryFileA
ExtractIconExW
ExtractIconW
SHAddToRecentDocs
SHAppBarMessage
SHBrowseForFolder
SHBrowseForFolderA
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExA
SHCreateDirectoryExW
SHGetFolderLocation
SHGetFolderPathW
SHGetPathFromIDListA
SHGetSpecialFolderPathA
ShellExecuteExA
Shell_NotifyIconA

comctl32

CreatePropertySheetPageW
CreateStatusWindowA
CreateToolbarEx
ImageList_Add
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_Draw
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_Read
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_Write
InitCommonControls
InitCommonControlsEx
InitializeFlatSB
PropertySheetA
PropertySheetW

advapi32

AdjustTokenPrivileges
EqualSid
GetUserNameA
IsValidSid
LookupPrivilegeValueA
OpenSCManagerW
RegCreateKeyExA
RegDeleteValueA
RegEnumKeyA
RegEnumValueA
RegOpenKeyW
RegQueryInfoKeyW
RegSetValueExA
RegSetValueExW

ole32

CoCreateInstance
CoDisconnectObject
CoGetClassObject
CoGetInterfaceAndReleaseStream
CoInitialize
CoSetProxyBlanket
CreateStreamOnHGlobal
GetRunningObjectTable
OleGetClipboard
RegisterDragDrop
RevokeDragDrop
StgOpenStorage

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19ffde36a5ffb345db03b476e54dd3ab

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

ole32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 26KB - Virtual size: 28KB