2777f4cf13f7305756a0ee5516577907394d0b088a8494cb776bd8999438e5bc

Sharing

Copy URL

Twitter E-mail

General

Target

2777f4cf13f7305756a0ee5516577907394d0b088a8494cb776bd8999438e5bc
Size

148KB
MD5

0eb02c555e3a0f8a215b8e7def973e60
SHA1

c2257228fba74654546f2a91f115ac436d08119d
SHA256

2777f4cf13f7305756a0ee5516577907394d0b088a8494cb776bd8999438e5bc
SHA512

d73f96550e39f4170ae56553d9cdaf7126021d2871967db1e70b92f3ea339959e99758039eb318678ac33a6a43b1b51fc39606a71a3daa88f770e9c3fe8ef235
SSDEEP

3072:zHTzKJdn9SZ2DhhCn9TL5KMLp3WluilO:zKXn9SsXC9AML6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2777f4cf13f7305756a0ee5516577907394d0b088a8494cb776bd8999438e5bc

Files

2777f4cf13f7305756a0ee5516577907394d0b088a8494cb776bd8999438e5bc
.dll windows:4 windows x86 arch:x86

805e31560e3a8aeb30138f681dcfa517

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedIncrement
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GlobalUnlock
GlobalLock
GlobalAlloc
MulDiv
GetWindowsDirectoryA
FreeLibrary
GetCurrentProcess
GetProcAddress
LoadLibraryA
CloseHandle
GetCurrentProcessId
GetCurrentThreadId
CreateFileA
GetLocalTime
GetModuleFileNameA
GetCurrentThread
ExitProcess
IsDebuggerPresent
WaitForSingleObject
InitializeCriticalSection
RtlUnwind
RaiseException
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetLastError
TerminateProcess
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetCPInfo
GetOEMCP
IsBadReadPtr
IsBadCodePtr
SetFilePointer
InterlockedDecrement
MultiByteToWideChar
CompareStringW
SetEnvironmentVariableA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CompareStringA
lstrcmpiA
GetUserDefaultLangID
lstrcpyA
Sleep
GetACP
GetVersionExA
InterlockedExchange
SetLastError
lstrlenA

user32

ReleaseDC
GetDC
LoadCursorA
EndPaint
BeginPaint
SetParent
PtInRect
SetFocus
DialogBoxParamA
CreateDialogParamA
GetDesktopWindow
EndDialog
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
GetDlgItem
GetClassNameA
EnumChildWindows
SetWindowTextA
GetWindowTextA
CreatePopupMenu
DestroyMenu
AppendMenuA
TrackPopupMenu
GetCursorPos
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
DrawTextA
AdjustWindowRect
RedrawWindow
GetSystemMetrics
GetClientRect
GetWindowRect
UpdateWindow
ShowWindow
PostQuitMessage
CreateWindowExA
RegisterClassA
DefWindowProcA
EnableWindow
MessageBoxA
SendMessageA
MoveWindow
GetSysColor
GetWindowLongA

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32A
SetBkMode
SetTextColor
Polygon
BitBlt
Rectangle
CreateFontA
CreatePen
DeleteObject
CreateSolidBrush
GetDeviceCaps
SelectObject

Exports

Exports

?CreatePlugin@@YA_NPAUsPluginCreateInfo@@@Z

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 546KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

805e31560e3a8aeb30138f681dcfa517

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 16KB - Virtual size: 546KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 16KB - Virtual size: 546KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 12KB - Virtual size: 10KB