d2279c33d13436178eb3b133b61ecb23526ef4d99989307db32cc11ed4dfdd94

Sharing

Copy URL Twitter E-mail

General

Target

d2279c33d13436178eb3b133b61ecb23526ef4d99989307db32cc11ed4dfdd94
Size

172KB
MD5

4d1716718e783d743eedbb2dcc91b459
SHA1

840dbcc3c53b7bbff8e2a287f52c2ceecd59561d
SHA256

d2279c33d13436178eb3b133b61ecb23526ef4d99989307db32cc11ed4dfdd94
SHA512

eb9d97a0e6090f1208f547dc059dc5131ccbaf5bee3ae8321a3f48e0a8d26d000c15f8385cebc24a9bd3b9fb0c2a11dc72ce335a2877d9fecd56a8220b6c8f3c
SSDEEP

3072:wpn53Y8GfQO9VY8vDxNx6BVAUnQRT2TbylHRKJPzrlKsySdXjGXnQU9kQBqSk:wpnxY8ovfPdT6jNQJ23zqXnQU9kek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2279c33d13436178eb3b133b61ecb23526ef4d99989307db32cc11ed4dfdd94

Files

d2279c33d13436178eb3b133b61ecb23526ef4d99989307db32cc11ed4dfdd94
.exe windows:4 windows x86 arch:x86

2099108da2e76aa251643c8ef7cc664e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
CreatePropertySheetPageA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

winmm

timeGetTime

msimg32

AlphaBlend

kernel32

FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
TerminateProcess
GetStringTypeW
GetStringTypeA
ExitProcess
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetEnvironmentStringsW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
GetCPInfo
GetOEMCP
GetACP
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
HeapAlloc
HeapFree
SetHandleCount
GetFileType
VirtualProtect
GetSystemInfo
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwind
InterlockedExchange
SetErrorMode
UnmapViewOfFile
LoadResource
SizeofResource
LockResource
FreeResource
FindFirstFileA
CreateFileA
CreateFileMappingA
MapViewOfFile
CloseHandle
ReadFile
FindResourceA
FindResourceExA
GetCurrentThreadId
CreateProcessA
Sleep
FreeLibrary
GetLastError
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
LoadLibraryA
GetPrivateProfileStringA
lstrcatA
GetWindowsDirectoryA
SetThreadLocale
GetSystemDefaultLCID
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetCommandLineA
lstrcpyA
GetModuleFileNameA
lstrcmpiA
lstrlenA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrcpynA
GetLocaleInfoW
HeapSize
SetFilePointer
SetStdHandle
FlushFileBuffers
LCMapStringW

user32

SetFocus
PostQuitMessage
SetTimer
GetForegroundWindow
GetAsyncKeyState
LoadMenuA
GetSubMenu
EnableMenuItem
GetWindowThreadProcessId
AttachThreadInput
TrackPopupMenu
DestroyMenu
ModifyMenuA
DeleteMenu
DialogBoxParamA
RemovePropA
SetPropA
GetPropA
UpdateWindow
CreatePopupMenu
CheckMenuItem
InsertMenuItemA
GetWindow
MoveWindow
EnumWindows
EnumDisplaySettingsExA
ChangeDisplaySettingsA
EnumDisplaySettingsA
ShowWindow
ExitWindowsEx
GetSystemMetrics
WinHelpA
MessageBoxA
RegisterWindowMessageA
GetMessageA
TranslateMessage
DispatchMessageA
CreateWindowExA
LoadIconA
FindWindowA
GetWindowTextA
SetWindowTextA
SetWindowPos
CharPrevA
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
GetWindowRect
GetSystemMenu
SetWindowLongA
DrawIconEx
DrawStateA
DestroyIcon
SetMenuItemInfoA
GetMenuItemCount
GetMenuItemInfoA
CheckMenuRadioItem
InsertMenuA
DrawIcon
MessageBeep
LoadImageA
DrawEdge
OffsetRect
DrawTextA
SystemParametersInfoA
CharNextA
GetDlgItem
CheckDlgButton
EnableWindow
CheckRadioButton
PostMessageA
GetDlgItemInt
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
FillRect
IsDlgButtonChecked
wsprintfA
LoadCursorA
RegisterClassA
DefWindowProcA
GetCursorPos
PtInRect
SetCursor
ReleaseCapture
SetCapture
KillTimer
GetSysColor
IsWindowEnabled
IsWindowVisible
GetDC
GetWindowLongA
GetClientRect
GetUpdateRect
BeginPaint
EndPaint
SendMessageA
CopyRect
GetParent
MapWindowPoints
CopyImage
GetWindowDC
ReleaseDC
DeferWindowPos
GetDesktopWindow
SetForegroundWindow

gdi32

GetStockObject
SetBkMode
CreateFontIndirectA
CreateSolidBrush
MoveToEx
LineTo
Ellipse
CreatePen
GetObjectA
GetCurrentObject
GetTextExtentPoint32A
GetTextMetricsA
GetDeviceCaps
CreateDCA
CreateBitmap
SetTextColor
SetStretchBltMode
GetPixel
PatBlt
CreatePatternBrush
ExtSelectClipRgn
Polygon
CreateRectRgn
GetTextColor
SelectClipRgn
GetPaletteEntries
ExtEscape
CreateDIBSection
ExtTextOutA
Rectangle
StretchBlt
UpdateColors
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
BitBlt
DeleteObject
SelectPalette
RealizePalette
CreateDIBitmap
SetBkColor
CreatePalette

advapi32

RegQueryValueExA
RegDeleteValueA
RegEnumKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
GetUserNameA
RegCloseKey

shell32

FindExecutableA
Shell_NotifyIconA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA

Sharing

General

Malware Config

Signatures

Files

2099108da2e76aa251643c8ef7cc664e

Headers

File Characteristics

Imports

comctl32

version

winmm

msimg32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 40KB - Virtual size: 40KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 40KB - Virtual size: 40KB