61ab473a3c5b1c1b5d6cfcea157841fe529339b4cf95c9b1aaa8df3675538fa8

Sharing

Copy URL Twitter E-mail

General

Target

61ab473a3c5b1c1b5d6cfcea157841fe529339b4cf95c9b1aaa8df3675538fa8
Size

53KB
MD5

118547b3c13366e1b2c284fa612880c1
SHA1

f15cfd0fb7f3e8bdaed0b7ef36bbc20b778ccdfa
SHA256

61ab473a3c5b1c1b5d6cfcea157841fe529339b4cf95c9b1aaa8df3675538fa8
SHA512

4ee55041a70007c05f4c6803358eadd0c57b4096d74b3eb944d7127f372a1681f43278425052c6d8a0e604ba0c80003e1fb6ccc9a7cdd1f215c330c87cc3153c
SSDEEP

1536:wLItcxpGNBOy7HHJ4PqmVUhy5jZNBXUR:3tcTy7HKPqyHXUR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61ab473a3c5b1c1b5d6cfcea157841fe529339b4cf95c9b1aaa8df3675538fa8

Files

61ab473a3c5b1c1b5d6cfcea157841fe529339b4cf95c9b1aaa8df3675538fa8
.exe windows:4 windows x86 arch:x86

105fa747eb416b374ea7fc2bbceda422

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

OpenThreadToken
QueryServiceObjectSecurity

comctl32

ImageList_DrawEx
ImageList_GetImageCount

crtdll

memmove
strrchr

winmm

waveInGetNumDevs
timeKillEvent

user32

AppendMenuW
AdjustWindowRectEx
CharNextA
AppendMenuA
CharLowerBuffA
CopyRect
CheckMenuRadioItem
BeginPaint
CallWindowProcA
CloseClipboard
CreateDialogIndirectParamA
CreateDialogIndirectParamW
CharUpperBuffA
ClientToScreen
CharPrevA
DdeConnect
CheckRadioButton
CreatePopupMenu
DestroyCaret
DdeDisconnect
DestroyCursor
CreateWindowExA
DestroyWindow
DeleteMenu
FindWindowA
DrawTextW
DispatchMessageW
DefMDIChildProcA
DefFrameProcA
DdeUninitialize
DispatchMessageA
DefDlgProcA
DdeInitializeA
DestroyMenu
EqualRect
DrawMenuBar
FindWindowExA
ExitWindowsEx
DialogBoxParamA
GetClipboardFormatNameA
EnumChildWindows
GetClassLongA
EnableScrollBar
EndDeferWindowPos
DrawTextA
GetDCEx
EnumWindows
FlashWindowEx
GetClassNameA
EndPaint
GetForegroundWindow
GetAsyncKeyState
GetDlgItem
GetClassNameW
GetCapture
GetCaretPos
GetFocus
GetDoubleClickTime
FillRect
GetCursorPos
GetScrollRange
GetDlgItemTextA
GetCursor
GetDlgItemTextW
GetUpdateRect
GetMenu
GetKeyboardType
GetKeyboardLayoutNameA
GetWindowTextA
GetMenuItemInfoA
GetLastActivePopup
GetKeyNameTextA
GetWindow
GetWindowTextLengthA
GetScrollPos
GetKeyboardLayoutList
GetScrollInfo
LoadMenuA
GetMenuCheckMarkDimensions
GetWindowLongA
GetTopWindow
GetSystemMetrics
HideCaret
GetIconInfo
InsertMenuItemA
GetSystemMenu
GetWindowDC
IsCharAlphaNumericA
IsWindowVisible
ReleaseDC
InvalidateRect
LoadStringW
ReleaseCapture
GetMessageTime
PostThreadMessageA
GetWindowPlacement
MessageBoxW
ScreenToClient
LoadIconW
InflateRect
LoadIconA
SendDlgItemMessageA
ScrollWindow
ModifyMenuA
SendMessageW
RegisterHotKey
SetDlgItemTextW
RegisterClipboardFormatA
IsDlgButtonChecked
IsZoomed
LoadMenuW
InvalidateRgn
LoadStringA
ScrollDC
SendMessageTimeoutA
MsgWaitForMultipleObjects
SetKeyboardState
LoadImageA
SetUserObjectSecurity
RemoveMenu
PtInRect
SendMessageA
MapWindowPoints
SendDlgItemMessageW
RegisterClassA
OpenClipboard
SetFocus
mouse_event
SetClassLongA
ShowScrollBar
SystemParametersInfoW
SystemParametersInfoA
OemToCharA
SetWindowsHookExA
SetWindowPos
SetPropA
RegisterWindowMessageA
SetForegroundWindow
SetScrollPos
SetWindowRgn
WinHelpA
SetMenu
ShowCursor
ShowWindowAsync
TrackPopupMenuEx
wsprintfA
SetRect
SetParent
SetDlgItemTextA
SetScrollRange
SetActiveWindow
ToUnicode
SetClipboardData
ToAscii
TrackPopupMenu
UnregisterHotKey
ValidateRect

mpr

WNetGetConnectionA
WNetCloseEnum

shell32

DragAcceptFiles
SHGetFileInfoA

Sections

.rsrc
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

105fa747eb416b374ea7fc2bbceda422

Headers

File Characteristics

Imports

advapi32

comctl32

crtdll

winmm

user32

mpr

shell32

Sections

.rsrc Size: 512B - Virtual size: 56B

.data Size: 43KB - Virtual size: 43KB

.text Size: 3KB - Virtual size: 3KB

.bss Size: - Virtual size: 24KB

.idata Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 80B

.rsrc
Size: 512B - Virtual size: 56B

.data
Size: 43KB - Virtual size: 43KB

.text
Size: 3KB - Virtual size: 3KB

.bss
Size: - Virtual size: 24KB

.idata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 80B