58b190a42ce5f60a2e38a2e8d8579143456e7905abf781782a6d1cb22a263431

Sharing

Copy URL

Twitter E-mail

General

Target

58b190a42ce5f60a2e38a2e8d8579143456e7905abf781782a6d1cb22a263431
Size

308KB
MD5

6a32463384d72989e2cd114fad82306c
SHA1

9023592695fe9ecbf822cd08c5848a2892c65928
SHA256

58b190a42ce5f60a2e38a2e8d8579143456e7905abf781782a6d1cb22a263431
SHA512

b2258bfce8d65bba4fa151d3b7e453c605cefc9cb662bd82a8a8d556ca28501e3c9f93196be57c5849bdbe32019526aa85a99176c6c186e72880a344afd85fbf
SSDEEP

6144:UxtbyZ6jBl5wIykFO5iwLczWvWo4pcui8OJ7Cq8WNt9sb2ECSiGZhYtw+a:0py0j35zxFeikAWv74pnnOV7GgM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58b190a42ce5f60a2e38a2e8d8579143456e7905abf781782a6d1cb22a263431

Files

58b190a42ce5f60a2e38a2e8d8579143456e7905abf781782a6d1cb22a263431
.exe windows:4 windows x86 arch:x86

6c91291b8e22bd4ab2f7005f2ad1547a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageA
FindWindowA
DispatchMessageA
TranslateMessage
GetSysColorBrush
LoadImageA
RegisterClassA
GetClassInfoA
InvertRect
IsDialogMessageA
GetWindowLongA
LoadMenuA
TrackPopupMenu
DestroyMenu
GetMenu
DestroyCursor
UnregisterClassA
PostQuitMessage
CheckMenuRadioItem
GetCapture
DialogBoxParamA
GetSystemMenu
LoadBitmapA
GetAsyncKeyState
SetCursorPos
SetForegroundWindow
SetScrollInfo
EndDialog
CreateDialogParamA
SetCursor
LoadCursorA
GetActiveWindow
GetDlgCtrlID
GetSubMenu
EnableMenuItem
EnableScrollBar
GetMenuStringA
PostMessageA
SetRect
FillRect
UpdateWindow
SetCapture
ReleaseCapture
DefWindowProcA
InsertMenuA
GetClientRect
ScrollWindow
ClientToScreen
GetFocus
CreateWindowExA
MoveWindow
SystemParametersInfoA
GetDC
ReleaseDC
CheckMenuItem
LoadIconA
SetClassLongA
CheckDlgButton
IsDlgButtonChecked
BeginPaint
EndPaint
GetParent
SetScrollRange
SetScrollPos
SetFocus
GetDlgItemTextA
PtInRect
DestroyWindow
PeekMessageA
ModifyMenuA
DrawMenuBar
WINNLSEnableIME
SetWindowPos
EnableWindow
MessageBoxA
DeleteMenu
GetMenuState
MenuItemFromPoint
AppendMenuA
CreatePopupMenu
GetMenuItemCount
SetMenuItemBitmaps
wvsprintfA
GetCursorPos
ScreenToClient
GetScrollPos
OpenClipboard
EmptyClipboard
CloseClipboard
SetClipboardData
GetSysColor
InvalidateRect
ShowWindow
GetWindowTextA
SetWindowTextA
wsprintfA
GetDlgItem
SetDlgItemTextA
GetWindowPlacement
GetWindowRect
SetWindowPlacement
GetSystemMetrics
SendMessageA
SendDlgItemMessageA

gdi32

CreateSolidBrush
GetStockObject
GetTextExtentPoint32A
CreateCompatibleDC
TextOutA
BitBlt
DeleteDC
EnumFontFamiliesA
SetTextColor
SetBkColor
CreatePen
Polyline
IntersectClipRect
MoveToEx
LineTo
SelectObject
Polygon
Rectangle
DeleteObject
CreateFontIndirectA
SetBkMode
SetROP2

winmm

midiOutShortMsg
midiOutUnprepareHeader
midiOutLongMsg
timeGetDevCaps
midiOutGetNumDevs
midiOutGetDevCapsA
timeBeginPeriod
timeSetEvent
sndPlaySoundA
timeKillEvent
timeEndPeriod
midiOutReset
midiOutClose
midiOutPrepareHeader
midiOutOpen

shell32

FindExecutableA
DragAcceptFiles
ShellExecuteA
SHAppBarMessage
DragFinish
DragQueryFileA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

ord17

msvfw32

MCIWndCreateA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
GetProcessHeap
GetVersionExA
GetCommandLineA
GetFullPathNameA
HeapAlloc
HeapFree
GetLastError
GetTempPathA
GetSystemDirectoryA
CreateMutexA
EnterCriticalSection
FindNextFileA
FindResourceA
LoadResource
LockResource
GetFileAttributesA
CreateProcessA
CloseHandle
SetCurrentDirectoryA
GetTickCount
GetModuleFileNameA
GetLocalTime
GetCurrentDirectoryA
FindFirstFileA
FindClose
IsDBCSLeadByte
CopyFileA
DeleteFileA
MultiByteToWideChar
WideCharToMultiByte
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
WaitForSingleObject
ReleaseMutex
GetLocaleInfoA
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
FlushFileBuffers
LoadLibraryA
WriteFile
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
GetFileType
ExitProcess
RtlUnwind
GetDriveTypeA
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetVersion
SetEndOfFile
HeapSize
ReadFile
CreateFileA

Sections

.text
Size: 208KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c91291b8e22bd4ab2f7005f2ad1547a

Headers

File Characteristics

Imports

user32

gdi32

winmm

shell32

comdlg32

comctl32

msvfw32

version

kernel32

Sections

.text Size: 208KB - Virtual size: 204KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 16KB - Virtual size: 75KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 208KB - Virtual size: 204KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 16KB - Virtual size: 75KB

.rsrc
Size: 56KB - Virtual size: 54KB