f11ac901ad98c9970527a16de1dd5975427e5f0ae4edf99370ea01e9fb426984

Sharing

Copy URL

Twitter E-mail

General

Target

f11ac901ad98c9970527a16de1dd5975427e5f0ae4edf99370ea01e9fb426984
Size

261KB
MD5

922d6d7b009cb56c24112ceb25bc4803
SHA1

3aebf0c7c987ded785f103a833fdeec22e35267d
SHA256

f11ac901ad98c9970527a16de1dd5975427e5f0ae4edf99370ea01e9fb426984
SHA512

c0c220e9bbbc3ca28b9939ddb37e5d6abe3342f27ab569674a91c739fafa4ccd956c7bbc4c4caa724d4c6bd9f298e9ca062fad0428c95158207d7d89b1d818a0
SSDEEP

3072:yQrTmVGlLxccZ19gUlGjaceBLKeqNmOvh:yQX7Ncy19gUMjacRjNT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f11ac901ad98c9970527a16de1dd5975427e5f0ae4edf99370ea01e9fb426984

Files

f11ac901ad98c9970527a16de1dd5975427e5f0ae4edf99370ea01e9fb426984
.exe windows:4 windows x86 arch:x86

83402cb594a6b514d0cf615baa685c23

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StretchBlt
SelectObject
GetObjectA
GetDeviceCaps
BitBlt
TextOutW
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontA
CreateFontW
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
GetStockObject
GetTextExtentPoint32A
GetTextExtentPoint32W
LineTo
MoveToEx
PatBlt
Rectangle
SetBkColor
SetBkMode
SetTextColor
TextOutA

kernel32

CloseHandle
CreateFileW
CreateThread
FindResourceA
FindResourceW
FreeLibrary
GetCommandLineA
GetCommandLineW
GetCurrentProcess
GetExitCodeThread
GetFileSize
GetModuleFileNameA
GetModuleFileNameW
GetProcAddress
GetVersionExA
LoadLibraryA
LoadLibraryW
MultiByteToWideChar
ReadFile
RtlFillMemory
SetFilePointer
SetThreadPriority
TerminateThread
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
lstrcatA
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrlenA
lstrlenW
FlushFileBuffers
ExitProcess
GetModuleHandleA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
SetUnhandledExceptionFilter
WriteFile
CreateFileA

user32

DefFrameProcW
DefMDIChildProcA
DefMDIChildProcW
DefWindowProcA
DefWindowProcW
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DispatchMessageA
DispatchMessageW
TranslateMessage
DrawIcon
DrawIconEx
DrawMenuBar
DrawStateA
DrawStateW
DrawTextA
DrawTextW
EnableMenuItem
EndPaint
EnumWindows
FillRect
FrameRect
GetCapture
GetClassInfoExA
GetClassInfoExW
GetClassLongA
GetClassLongW
GetClassNameA
GetClassNameW
GetClientRect
GetFocus
GetKeyState
GetMessageA
GetMessageW
GetParent
GetScrollInfo
GetSysColor
DefFrameProcA
GetSystemMenu
GetSystemMetrics
GetWindow
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowTextA
GetWindowTextW
GetWindowThreadProcessId
InvalidateRect
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
KillTimer
LoadAcceleratorsA
LoadAcceleratorsW
LoadImageA
LoadImageW
LoadMenuA
LoadMenuW
LoadStringA
LoadStringW
MapDialogRect
MapWindowPoints
MessageBoxW
MoveWindow
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassExA
RegisterClassExW
ReleaseCapture
SendMessageW
SetActiveWindow
SetCapture
SetClassLongA
SetClassLongW
SetCursor
SetFocus
SetMenu
SetScrollInfo
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowTextA
SetWindowTextW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TranslateAcceleratorA
TranslateAcceleratorW
UnregisterClassA
UnregisterClassW
UpdateWindow
wsprintfA
wsprintfW
SetDlgItemInt
SendMessageA
ReleaseDC
OpenClipboard
MessageBoxA
IsClipboardFormatAvailable
GetWindowRect
GetDlgItemInt
GetDlgItem
GetDC
GetClipboardData
EnableWindow
DestroyAcceleratorTable
CloseClipboard
CreateWindowExW
CreateWindowExA
CreateMenu
CreateDialogParamW
CreateDialogParamA
CopyRect
CallWindowProcW
CallWindowProcA
BeginPaint
GetSysColorBrush
DrawFocusRect

comctl32

ImageList_Create
ImageList_Destroy
ImageList_AddIcon
ImageList_LoadImageW
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Remove
ImageList_SetBkColor
ImageList_LoadImageA
InitCommonControls
InitCommonControlsEx
ImageList_Add

advapi32

RegSetValueExA
RegDeleteValueW
RegEnumKeyExA
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegDeleteKeyA
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExW
RegDeleteValueA

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 371B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83402cb594a6b514d0cf615baa685c23

Headers

File Characteristics

Imports

gdi32

kernel32

user32

comctl32

advapi32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 512B - Virtual size: 371B

.data Size: 128KB - Virtual size: 127KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 40KB - Virtual size: 39KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 512B - Virtual size: 371B

.data
Size: 128KB - Virtual size: 127KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 40KB - Virtual size: 39KB

.reloc
Size: 4KB - Virtual size: 3KB