de0e5f4f45b96f90732615336162862e

Sharing

Copy URL

Twitter E-mail

General

Target

de0e5f4f45b96f90732615336162862e
Size

213KB
MD5

de0e5f4f45b96f90732615336162862e
SHA1

c1fa779942ab226f3296783704096bef1615bebf
SHA256

53b6d73e720fd3ccbbed5c5c22beaaa6533ef3262d06c175c277585fccd406d8
SHA512

4a3e4341072fabb92e3b40924b76389e4f7254a84bcf22f8c0bd625555bf82773f9a2ec9d65bb767d14cc717c393aebdb8340fa3257e38e32e9efb6f96715276
SSDEEP

3072:BFRqYsV+LLKM8jenSlZ/TFJoXv/jICqMN92e4LOwlOToeGYSHg+Te:EYXGoQ/TfoXvBV9TqOwkYHg+C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de0e5f4f45b96f90732615336162862e

Files

de0e5f4f45b96f90732615336162862e
.exe windows:5 windows x86 arch:x86

2d78b997f1682f4114e9f5889a6c4a97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\vpoakvvn\vifzpsreT\iNkoyvbN.pdb

Imports

advapi32

LookupPrivilegeValueA

kernel32

FileTimeToSystemTime
GetAtomNameA
GetStartupInfoA
GlobalAlloc
GetFileAttributesExA
SetFileAttributesA
lstrcatW
lstrcatA
DeleteCriticalSection
GetModuleHandleA
GlobalAddAtomW
QueryPerformanceCounter
GlobalFlags
GetStartupInfoW
CopyFileW
CreateNamedPipeA
SetErrorMode

comdlg32

FindTextW
GetSaveFileNameA
GetOpenFileNameW
ChooseColorW

user32

IsChild
CharPrevA
TileWindows
DeferWindowPos
GetWindowTextA
GetClassInfoExA
GetSysColor
ScreenToClient
InflateRect
MoveWindow
SetMenuItemBitmaps
RegisterClassW
GetWindowTextLengthW
SetDlgItemInt
InvalidateRgn
CharNextW
DispatchMessageA
CreateIconFromResource
IsCharAlphaNumericW
GetIconInfo
PostMessageA
ScrollWindowEx
GetScrollRange
SendMessageW
GetWindowRect
SendDlgItemMessageW
LookupIconIdFromDirectory
ShowScrollBar
DrawFrameControl
LoadBitmapA
ModifyMenuW
MessageBoxExW
CharUpperW
ChildWindowFromPoint

gdi32

ExtFloodFill
SetBkMode
GetPixel
EndPath
StretchBlt
CreateCompatibleDC
BeginPath
SetPaletteEntries
OffsetRgn
ResizePalette
CreateEllipticRgnIndirect
GetDeviceCaps
LineDDA
PtVisible
GetRgnBox
IntersectClipRect

msvcrt

_controlfp
__set_app_type
strspn
__p__fmode
__p__commode
_amsg_exit
_initterm
_acmdln
strchr
wcstok
strcpy
wcslen
exit
_ismbblead
isalpha
printf
_XcptFilter
_exit
strpbrk
wcsstr
_cexit
__setusermatherr
__getmainargs
setvbuf

Exports

Exports

?InitializeCriticalSectionAndSpinCountHDhdhHGHdhds@@YGKEPA_WG@Z

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 59B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.plus
Size: 1024B - Virtual size: 806B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d78b997f1682f4114e9f5889a6c4a97

Headers

File Characteristics

PDB Paths

Imports

advapi32

kernel32

comdlg32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 178KB - Virtual size: 178KB

.diag_y Size: 512B - Virtual size: 59B

.diag_x Size: 512B - Virtual size: 28B

.idat Size: 512B - Virtual size: 408B

.div Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.plus Size: 1024B - Virtual size: 806B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 178KB - Virtual size: 178KB

.diag_y
Size: 512B - Virtual size: 59B

.diag_x
Size: 512B - Virtual size: 28B

.idat
Size: 512B - Virtual size: 408B

.div
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.plus
Size: 1024B - Virtual size: 806B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 1KB