07132ef0817e23eb13a00ec5f64509dc15076f98082f36343471615b4a340c2cN

Sharing

Copy URL

Twitter E-mail

General

Target

07132ef0817e23eb13a00ec5f64509dc15076f98082f36343471615b4a340c2cN
Size

468KB
MD5

e32adc920873655061e4626313b3b1b0
SHA1

fca978d84717942dd6597266f7105c81a1ef9be2
SHA256

07132ef0817e23eb13a00ec5f64509dc15076f98082f36343471615b4a340c2c
SHA512

4877a614998fc4e001f4e98bc71ccf7a88e92ea1ed2d1c412788a832c93ca2750a7edfcc4a03c9bee90b538f027a6ab8d0b0ef0a84d22a543e56932994daa17c
SSDEEP

12288:P7lO+ipJJuRs/IKfImm2NUvokD7aiqd38:P8+igCwEm2Nem8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07132ef0817e23eb13a00ec5f64509dc15076f98082f36343471615b4a340c2cN

Files

07132ef0817e23eb13a00ec5f64509dc15076f98082f36343471615b4a340c2cN
.exe windows:5 windows x86 arch:x86

3c332c93bc4b107512aa1c45c3a97f74

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

FlatSB_SetScrollRange
ShowHideMenuCtl
InitCommonControlsEx
InitCommonControls
ImageList_Duplicate
ImageList_GetIconSize
ImageList_SetDragCursorImage
ImageList_AddIcon
ImageList_GetImageRect
ImageList_SetFlags
CreateMappedBitmap
InitCommonControls
ImageList_ReplaceIcon
PropertySheetA

kernel32

GetVersionExW
SetEvent
lstrcmpA
GetProcessHeap
GetSystemTime
QueryPerformanceCounter
GetCurrentThreadId
CloseHandle
VirtualAlloc
GetCurrentProcess
CreateEventA
GetVersionExA
ResetEvent
HeapFree
GetModuleHandleA
lstrlenA
GetTickCount
HeapAlloc
ExitProcess
GetStartupInfoW
GetStartupInfoA

msvcrt

__RTtypeid
atexit
_strrev
__getmainargs
??_7exception@@6B@
__set_app_type
strcmp
_except_handler3
strcspn
labs
atof
_exit
??0bad_typeid@@QAE@PBD@Z
_ismbckata
__setusermatherr
_ismbcupper
__p__commode
wcsftime
strtod
_mbspbrk
__p__fmode
exit
_XcptFilter
perror
_initterm
srand
_adjust_fdiv
_controlfp
_acmdln
_close
tolower
_mbsstr
__pioinfo

user32

ReleaseCapture
LockWindowUpdate
GetTabbedTextExtentA
GetUserObjectInformationW
GetSystemMenu
ModifyMenuW
CopyAcceleratorTableW
SetUserObjectInformationA
DrawStateW
GetDlgItem
CreateMenu
EnumDisplayMonitors
WCSToMBEx
SetPropW
CharPrevA
AppendMenuA
SetWindowLongW
GetDC
GetAncestor
GetQueueStatus
SendNotifyMessageA
CreateWindowExW
SetWindowTextA
GetWindowRgn
SetClassLongW

shlwapi

PathFindOnPathW
PathStripPathA
StrStrIA
SHCreateShellPalette
PathFindExtensionW
StrTrimW
PathRemoveBlanksW
PathIsFileSpecA
StrStrA
PathCanonicalizeW
PathGetDriveNumberW
StrTrimA
StrCmpIW
StrStrIW
PathRemoveExtensionA
PathStripPathW
PathFindExtensionA
StrCSpnA
PathStripToRootA
SHOpenRegStream2W
StrCSpnW
StrCmpLogicalW
PathFindFileNameA
StrCmpW
SHAutoComplete
PathSkipRootA
StrStrW
PathStripToRootW
PathRemoveBlanksA
SHRegGetBoolUSValueA
PathUnExpandEnvStringsW
PathRemoveExtensionW
PathGetDriveNumberA
PathSkipRootW
PathFindFileNameW
SHEnumValueA

gdi32

CreateFontIndirectA
DeleteObject
CreatePen
EqualRgn
CreatePenIndirect
SelectObject
CreateSolidBrush
CreateBrushIndirect
GetStockObject
CreatePalette

olepro32

DllRegisterServer
OleTranslateColor
DllGetClassObject
OleCreatePropertyFrameIndirect
OleLoadPicture
OleCreateFontIndirect

ole32

CoUninitialize
CoInitialize

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 446KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c332c93bc4b107512aa1c45c3a97f74

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

msvcrt

user32

shlwapi

gdi32

olepro32

ole32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 446KB - Virtual size: 445KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 446KB - Virtual size: 445KB

.reloc
Size: 4KB - Virtual size: 3KB