d6a854c8c745ce0cfd940679586e2f80N

Sharing

Copy URL Twitter E-mail

General

Target

d6a854c8c745ce0cfd940679586e2f80N
Size

704KB
MD5

d6a854c8c745ce0cfd940679586e2f80
SHA1

31af4b63970120c1d1df3d1b293629a3c7ba3fb4
SHA256

4e22801bf9055c7ca4a343fe65c1da434cf50bfbe5902abb66bf2e11e97ee66f
SHA512

f4f445777af8b416d21af0be24a324546f08108ac841ec66de414358966df4abdb8d9b7c4ec373ab2d89bd37821ef30fe90f1f09559f7f7da0af8b828996fd0e
SSDEEP

12288:3cACnmKAHPgmgusPjOF3YvlqnLTXZHSumhQoI4YSCzLQEtIDbWYh8pcxy6:3cmn3sk3YInLty5NI4LCzLQgKb7h8pcV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6a854c8c745ce0cfd940679586e2f80N

Files

d6a854c8c745ce0cfd940679586e2f80N
.exe windows:4 windows x86 arch:x86

60bb09dd1f5037228144d29c9f3885f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawInsert
ImageList_Remove
ImageList_GetImageCount
ImageList_Add
ImageList_AddMasked
ImageList_GetImageRect
ImageList_Duplicate
_TrackMouseEvent
CreatePropertySheetPageA
ImageList_AddIcon
CreateStatusWindowW
ImageList_SetFlags
ImageList_GetDragImage
ImageList_DragMove
CreateStatusWindowA
CreateToolbarEx
ImageList_Merge
ImageList_Create
ImageList_GetBkColor
CreateStatusWindow
ImageList_GetImageInfo
ImageList_SetFilter
DrawStatusTextW
ImageList_DragLeave
ImageList_GetFlags
InitCommonControlsEx

kernel32

GetDateFormatA
UnhandledExceptionFilter
GetSystemTimeAdjustment
ReadFile
SetConsoleOutputCP
GlobalGetAtomNameA
SetVolumeLabelW
WritePrivateProfileSectionA
GlobalUnlock
GetLocaleInfoW
DeleteCriticalSection
GetCommandLineA
SetThreadPriority
HeapAlloc
FreeEnvironmentStringsA
GetSystemInfo
LoadLibraryW
ConvertDefaultLocale
GetConsoleMode
GetFileType
GetSystemTimeAsFileTime
OpenEventA
GetACP
OpenSemaphoreW
CreateProcessA
GetLocaleInfoA
TlsAlloc
ReadConsoleOutputAttribute
ExitProcess
SetEndOfFile
HeapLock
VirtualProtect
GlobalDeleteAtom
OpenProcess
GetLastError
FindAtomW
GetCurrentThreadId
InterlockedExchange
LCMapStringW
WideCharToMultiByte
GetTimeFormatW
QueryPerformanceCounter
VirtualFree
HeapReAlloc
SetEnvironmentVariableA
HeapSize
WriteFileEx
HeapDestroy
VirtualFreeEx
TlsSetValue
LoadLibraryA
GetStringTypeA
IsBadWritePtr
GetVersionExA
EnumSystemLocalesA
InitializeCriticalSection
WaitForDebugEvent
GetUserDefaultLCID
GetProcAddress
SetFilePointer
GetCommandLineW
GetNamedPipeHandleStateW
ExpandEnvironmentStringsW
GetPrivateProfileStructA
GetStartupInfoA
SetLastError
ExpandEnvironmentStringsA
GetModuleFileNameA
VirtualAlloc
LCMapStringA
SetConsoleCtrlHandler
GetEnvironmentStrings
WriteFile
GlobalUnfix
OpenMutexA
CloseHandle
OpenMutexW
CreateToolhelp32Snapshot
MultiByteToWideChar
LeaveCriticalSection
LocalFree
SetHandleCount
GetModuleFileNameW
IsValidCodePage
GetStringTypeW
GetProcAddress
GetStartupInfoW
GetSystemDefaultLCID
FreeEnvironmentStringsW
GetTickCount
TlsGetValue
WriteProfileSectionA
UnlockFileEx
GetOEMCP
DosDateTimeToFileTime
TlsFree
CreateMailslotA
CreateMutexA
lstrcpyn
IsValidLocale
FlushFileBuffers
WritePrivateProfileStructW
WaitForSingleObject
GetCurrentProcessId
TerminateProcess
GetEnvironmentStringsW
GetCPInfo
CreateThread
CompareStringA
lstrcatA
LoadModule
GetTimeZoneInformation
HeapFree
lstrcpynW
OpenFileMappingA
GetPrivateProfileStringW
SetStdHandle
HeapCreate
CompareStringW
GetStdHandle
GetModuleHandleA
GetCurrentThread
GetCalendarInfoA
EnumSystemCodePagesW
GetTimeFormatA
RtlUnwind
VirtualQuery
EnterCriticalSection
GetCurrentProcess

user32

SendNotifyMessageW
SetActiveWindow
IsClipboardFormatAvailable
CloseWindowStation
CallWindowProcW
DdeGetData
CreateWindowStationA
DrawAnimatedRects
DispatchMessageA
ChangeDisplaySettingsW
GetDCEx
CharToOemBuffA
ChangeDisplaySettingsExA
BroadcastSystemMessage
GetMenuItemCount
OpenClipboard
RegisterClassExA
EndTask
SwitchToThisWindow
EnumWindows
RegisterClassA
GetDlgItem
ScrollWindow
MessageBoxExW

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60bb09dd1f5037228144d29c9f3885f7

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 444KB - Virtual size: 443KB

.data Size: 132KB - Virtual size: 134KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 444KB - Virtual size: 443KB

.data
Size: 132KB - Virtual size: 134KB

.rsrc
Size: 36KB - Virtual size: 34KB