d7bae9c52b079073a5af56ba76555f5a

Sharing

Copy URL Twitter E-mail

General

Target

d7bae9c52b079073a5af56ba76555f5a
Size

194KB
MD5

d7bae9c52b079073a5af56ba76555f5a
SHA1

0b01c4da84ef6d3ead75fb3ecca12a44d0e21bd4
SHA256

eb07c8325dac22bbe949ef3b6a649c359f06c5b1ee8d76a33a4eb07bf4ae4c31
SHA512

21186705e35af90af59b2cd233afb024c9cc38896240bb37ae2256f4083620e12577ed8c9b9e62e85e4c9a5ec7e9be5d3ac23e929bb97bf0a24da2a116245b03
SSDEEP

3072:U3ubgd4TmVOwFZnBUQyNt0NxrEcc4QayoM6UQN4IXxvoflpPa+77zpufQHEqGUg8:U3GwzhyNt0Ptaay5HRDNpPlnt5Eq9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7bae9c52b079073a5af56ba76555f5a

Files

d7bae9c52b079073a5af56ba76555f5a
.exe windows:4 windows x86 arch:x86

a1513282f6878d153416ee84777f3675

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
CopyEnhMetaFileA
GetPixel
SaveDC
SetBkMode
CreatePalette
CreateBrushIndirect
CreateCompatibleBitmap
GetRgnBox
SaveDC
GetDCOrgEx
SetPixel
GetCurrentPositionEx
BitBlt
GetDCOrgEx
SaveDC
CreateCompatibleBitmap
CreateDIBSection
CreatePenIndirect

shlwapi

SHQueryValueExA
SHStrDupA
SHDeleteKeyA
SHEnumValueA
SHGetValueA
SHQueryInfoKeyA
PathIsContentTypeA
SHDeleteKeyA
SHDeleteValueA
SHDeleteKeyA
SHSetValueA
PathIsDirectoryA
SHQueryInfoKeyA
SHStrDupA
PathGetCharTypeA

msvcrt

memset
swprintf
cos
_acmdln
wcstol
exit
tan
log
atan
mbstowcs
strncmp
clock
mbstowcs
rand
sprintf
malloc
wcstol
clock
tan
cos
log10
rand
abs

kernel32

VirtualQuery
HeapAlloc
GetCurrentProcess
SetErrorMode
DeleteCriticalSection
GetCommandLineW
IsBadHugeReadPtr
ExitThread
lstrlenW
GetLastError
GetProcAddress
LoadLibraryA
GetCommandLineA
IsBadReadPtr
GetOEMCP
LoadLibraryExA
ExitProcess
GetModuleHandleA
VirtualAllocEx
LoadLibraryExA
GetVersion
GetFileAttributesA
lstrlenA
lstrlenW
GetOEMCP
LocalAlloc
LockResource
GetSystemDefaultLangID
GetModuleHandleA

user32

EnumChildWindows
GetSubMenu
PeekMessageW
LoadKeyboardLayoutA
DestroyMenu
CreatePopupMenu
SetForegroundWindow
GetScrollPos
GetClassNameA
SetTimer
GetKeyboardType
GetSysColor
GetKeyboardLayout
SetMenuItemInfoA
SetScrollInfo
RemovePropA
SetParent
ShowWindow
GetTopWindow
LoadStringA
GetMenuState
DispatchMessageW
GetScrollRange
GetFocus
DrawAnimatedRects
OemToCharA
DestroyCursor
SetWindowLongA
GetSystemMenu
BeginPaint
GetKeyboardLayout
IsZoomed
GetParent
WaitMessage
GetCapture
SendMessageW
EndPaint
IntersectRect
ShowScrollBar
GetClassLongA
GetKeyboardLayoutNameA
GetDCEx
FindWindowA
LoadStringA
GetMenuStringA
SetScrollRange
GetKeyboardState
SetCapture
OffsetRect
DestroyWindow
GetMenuItemCount
ClientToScreen
GetSystemMetrics
GetIconInfo
SetClipboardData
GetKeyboardLayoutNameA
OpenClipboard
SetPropA
RedrawWindow
CharUpperBuffA
EndPaint
SetForegroundWindow
CharLowerA
GetClassLongA
DestroyWindow
MessageBoxA
SendMessageA
CheckMenuItem
ScrollWindow
IntersectRect
GetDesktopWindow
GetKeyNameTextA
PostMessageA
GetMenuItemInfoA
DrawAnimatedRects
GetCapture
TranslateMessage
RegisterWindowMessageA
GetKeyboardType
GetCursor
SetWindowLongW

oleaut32

GetErrorInfo
SafeArrayGetUBound
SysReAllocStringLen
SysFreeString
SafeArrayPtrOfIndex
SysAllocStringLen
SafeArrayCreate
VariantCopyInd
VariantChangeType
SafeArrayGetUBound
SysStringLen
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayCreate
VariantCopyInd
VariantCopyInd
SafeArrayUnaccessData
OleLoadPicture
SafeArrayGetElement
RegisterTypeLib
SysFreeString
SafeArrayGetElement
SafeArrayCreate
SysFreeString
SysStringLen
SafeArrayGetUBound
GetErrorInfo
SysAllocStringLen
SysReAllocStringLen
SafeArrayGetElement
VariantCopyInd
SafeArrayUnaccessData
OleLoadPicture
RegisterTypeLib
SysFreeString
SafeArrayGetUBound
GetErrorInfo
SafeArrayCreate
VariantChangeType
SysReAllocStringLen

version

GetFileVersionInfoA
VerFindFileA
VerFindFileA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
VerFindFileA
VerQueryValueA
VerQueryValueA

comdlg32

ChooseColorA
GetSaveFileNameA
GetFileTitleA
FindTextA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
GetOpenFileNameA

advapi32

RegQueryValueExA
GetLengthSid
RegDeleteValueA
RegOpenKeyExA
RegQueryValueA
RegLoadKeyA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegLoadKeyA
RegDeleteValueA

comctl32

ImageList_GetBkColor
ImageList_Add
ImageList_Remove
ImageList_DrawEx
ImageList_Destroy
ImageList_Draw
ImageList_Write
ImageList_Read
ImageList_DragShowNolock
ImageList_Create
ImageList_Create
ImageList_GetBkColor
ImageList_Remove
ImageList_Read
ImageList_Write
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Add
ImageList_Destroy
ImageList_Draw

ole32

CoRevokeClassObject
CoGetContextToken
CoCreateFreeThreadedMarshaler
OleCreateStaticFromData
CoGetMalloc
MkParseDisplayName
CoCreateGuid
StgOpenStorage
CoRevokeClassObject
MkParseDisplayName
CoGetContextToken
CoDisconnectObject
CoUnmarshalInterface
OleRegGetUserType
CoCreateGuid

shell32

SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetFolderPathA
SHGetSpecialFolderLocation
DragQueryFileA
Shell_NotifyIconA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
SHGetFileInfoA
SHFileOperationA
DragQueryFileA

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 490B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1513282f6878d153416ee84777f3675

Headers

File Characteristics

Imports

gdi32

shlwapi

msvcrt

kernel32

user32

oleaut32

version

comdlg32

advapi32

comctl32

ole32

shell32

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 512B - Virtual size: 490B

.data Size: 11KB - Virtual size: 46KB

BSS Size: 2KB - Virtual size: 1KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 512B - Virtual size: 490B

.data
Size: 11KB - Virtual size: 46KB

BSS
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 5KB - Virtual size: 5KB