d99c56cb2d4aa132e1a9445aad735450N

Sharing

Copy URL Twitter E-mail

General

Target

d99c56cb2d4aa132e1a9445aad735450N
Size

204KB
MD5

d99c56cb2d4aa132e1a9445aad735450
SHA1

4335eb7ced233f42d09d456009221436c5b284b5
SHA256

fa07233ac39fdf04ffb35f310c264af383ac7abc05df130cbdee07f3c3968057
SHA512

2bc6acce3e28b60e8dc0c2cab7a5ea021c07967d741fc2dfe254fc269a35bc7365f8741e9cf1850362e0734ac966cc5ae9aa1e2b32dd8b17e89a4a19603d0683
SSDEEP

3072:EAU4g4RABYC7sk5tybKB10EEM5tZjYyRkIkaNBfjOLnypmfK8Xlo:EAzdA6kK+B10M530yS7YqTyE1l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d99c56cb2d4aa132e1a9445aad735450N

Files

d99c56cb2d4aa132e1a9445aad735450N
.exe windows:4 windows x86 arch:x86

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MoveWindow
GetScrollInfo
EqualRect
CheckMenuItem
UnhookWindowsHookEx
PostQuitMessage
GetMessagePos
DrawEdge
GetWindowThreadProcessId
SendMessageA
ShowScrollBar
GetKeyboardLayout
GetWindowRect
DestroyCursor
SetScrollInfo
ReleaseDC
GetMenu
GetClipboardData
PeekMessageA
SetScrollRange
UnregisterClassA
GetDC
SetWindowTextA
SetCapture
DrawTextA
IsWindowVisible
RegisterClassA
CreateIcon
SetMenu
GetMenuItemInfoA
PtInRect
GetKeyState
DrawIcon
wsprintfA
GetMenuItemCount
PeekMessageW
SetRect
DeleteMenu
IsDialogMessageA
GetClassNameA
CloseClipboard
ScreenToClient
TranslateMDISysAccel
SetForegroundWindow
DestroyMenu
GetSubMenu
GetTopWindow
GetMenuItemID
IsZoomed
GetWindowLongW
DispatchMessageW
GetDCEx
LoadKeyboardLayoutA
SetClipboardData
GetParent
RegisterWindowMessageA
ChildWindowFromPoint
SendMessageW
GetWindowTextA
SetParent
IsChild
OemToCharA
MapVirtualKeyA
EnumChildWindows
DrawMenuBar
CharNextW
SetScrollPos
TrackPopupMenu
SetFocus
LoadCursorA
GetLastActivePopup
CallWindowProcA
RedrawWindow

gdi32

CreateCompatibleBitmap
GetDIBColorTable
CreateBitmap
GetObjectA
GetDIBits
GetCurrentPositionEx
SetPixel
CreateCompatibleDC
SetBkColor
CopyEnhMetaFileA

kernel32

VirtualAlloc
GetACP
GetCommandLineW
GetLastError
ExitThread
IsBadReadPtr
LocalAlloc
LoadLibraryExA
GetModuleHandleA
VirtualAllocEx
GetCommandLineA
ExitProcess
LoadLibraryA
GetProcAddress

version

VerFindFileA
VerQueryValueA

shlwapi

PathGetCharTypeA
SHGetValueA
SHStrDupA
SHEnumValueA
SHDeleteValueA
PathIsDirectoryA
PathFileExistsA
SHSetValueA

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC7
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC3
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC9
Size: 1024B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC5
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RSRC2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC8
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a50e03a09fad54ec938e015ca3f98bdc

Headers

File Characteristics

Imports

user32

gdi32

kernel32

version

shlwapi

Sections

.text Size: 69KB - Virtual size: 69KB

DATA Size: 512B - Virtual size: 404B

.RSRC7 Size: 512B - Virtual size: 146B

.RSRC3 Size: 124KB - Virtual size: 123KB

.RSRC9 Size: 1024B - Virtual size: 540B

.RSRC5 Size: 512B - Virtual size: 108B

.RSRC2 Size: 1KB - Virtual size: 1KB

.RSRC8 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 69KB - Virtual size: 69KB

DATA
Size: 512B - Virtual size: 404B

.RSRC7
Size: 512B - Virtual size: 146B

.RSRC3
Size: 124KB - Virtual size: 123KB

.RSRC9
Size: 1024B - Virtual size: 540B

.RSRC5
Size: 512B - Virtual size: 108B

.RSRC2
Size: 1KB - Virtual size: 1KB

.RSRC8
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 992B