e086590186811c21cf2ac550edb4f6e1

Sharing

Copy URL Twitter E-mail

General

Target

e086590186811c21cf2ac550edb4f6e1
Size

183KB
MD5

e086590186811c21cf2ac550edb4f6e1
SHA1

2d8be7ffafb29a456bad345d00d76cbb52af2bfe
SHA256

ccac8e251653a11173ed8f9e53c495b83cea75fccfa24bdbcc68a08f0be9d180
SHA512

7430ff9fa451de2de2ab84af4cb268ef47806c4e556644c72b28e0435efcda12d72a2a878722579aa52e6b99266a834e069dac919cdb4d26ef8eb54f7591a600
SSDEEP

3072:73Sj8aE6R1+Z5m1gvXD0yml7mrew1D55lBGcC7UvQ8XPOvswcu:73LayoEz1reY55lUfYrXPZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e086590186811c21cf2ac550edb4f6e1

Files

e086590186811c21cf2ac550edb4f6e1
.exe windows:4 windows x86 arch:x86

3080aa5a74257b0fac7bfa94a4cda8e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindExtensionW
PathFileExistsW
PathStripToRootW
PathRemoveFileSpecW
PathFindFileNameW
PathIsUNCW
PathAppendW

oledlg

OleUIBusyW

gdi32

SetWindowExtEx
ScaleViewportExtEx
GetViewportExtEx
DeleteObject
SetMapMode
DeleteDC
GetRgnBox
RectVisible
GetMapMode
ExtSelectClipRgn
GetStockObject
GetWindowExtEx
CreateBitmap
RestoreDC
SetTextColor
Escape
SelectObject
ScaleWindowExtEx
SetViewportOrgEx
ExtTextOutW
SetBkColor
GetBkColor
GetObjectW
GetDeviceCaps
SetViewportExtEx
OffsetViewportOrgEx
GetTextColor
TextOutW
SaveDC
PtVisible
GetClipBox
CreateRectRgnIndirect

advapi32

RegDeleteKeyW
RegQueryValueW
RegCreateKeyExW
RegEnumKeyW
RegOpenKeyW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueExW

user32

AdjustWindowRectEx
SetActiveWindow
InvalidateRect
InvalidateRgn
WinHelpW
MapWindowPoints
UpdateWindow
RemovePropW
GetPropW
GetMessagePos
CopyAcceleratorTableW
IsChild
CreateWindowExW
SetForegroundWindow
CharNextW
IntersectRect
IsIconic
RegisterWindowMessageW
MessageBeep
CallWindowProcW
LoadIconW
IsWindow
GetClientRect
GetNextDlgGroupItem
GetClassInfoExW
GetMenu
GetClassLongW
IsRectEmpty
GetNextDlgTabItem
SetPropW
CharUpperW
GetForegroundWindow
GetWindowPlacement
DefWindowProcW
GetMessageTime
SetRect
EqualRect
OffsetRect
SendDlgItemMessageA
GetTopWindow
GetClassInfoW
RegisterClassW
DestroyMenu

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

ole32

CreateILockBytesOnHGlobal
CoInitialize
CoRegisterMessageFilter
CoUninitialize
CoTaskMemFree
CLSIDFromProgID
StgOpenStorageOnILockBytes
CoFreeUnusedLibraries
CoCreateInstance
CoTaskMemAlloc
CoGetClassObject
OleUninitialize
OleFlushClipboard
CoRevokeClassObject
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
OleInitialize
CLSIDFromString

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

kernel32

FreeLibrary
SystemTimeToFileTime
LoadResource
GetThreadLocale
GetACP
DeleteFileW
WideCharToMultiByte
GetCalendarInfoA
InterlockedDecrement
CreateFileW
FindResourceW
SetThreadContext
GetModuleHandleW
LocalFileTimeToFileTime
CreateDirectoryW
CreateMutexW
lstrcpyW
GetVersion
ReleaseMutex
CloseHandle
GetCurrentDirectoryW
GetLocaleInfoA
MultiByteToWideChar
EnumResourceLanguagesW
GetSystemDefaultLangID
GetCurrentProcessId
RemoveDirectoryW
EnumResourceNamesA
GetVersionExW
InterlockedExchange
SetFilePointer
FindFirstFileW
WaitForSingleObject
GetModuleFileNameW
ExitProcess
LockResource
FindClose
GetProcAddress
FindNextFileW
DeleteCriticalSection
WriteFile
GetLocaleInfoW
ConvertDefaultLocale
lstrcmpiA
SizeofResource
VirtualFree
GetFileAttributesW
InitializeCriticalSection
LoadLibraryW
SetFileTime
MoveFileW
RaiseException
ReadFile
lstrcmpA

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3080aa5a74257b0fac7bfa94a4cda8e3

Headers

File Characteristics

Imports

shlwapi

oledlg

gdi32

advapi32

user32

comdlg32

winspool.drv

ole32

shell32

kernel32

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 74KB - Virtual size: 73KB

.edata Size: 1024B - Virtual size: 368KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 74KB - Virtual size: 73KB

.edata
Size: 1024B - Virtual size: 368KB