26962abcd3fa389d62521c97172a701c686c8c5b0a1e7253461c1ec88816327bN

Sharing

Copy URL Twitter E-mail

General

Target

26962abcd3fa389d62521c97172a701c686c8c5b0a1e7253461c1ec88816327bN
Size

712KB
MD5

195adac3f2eb03761789c5f811c4be50
SHA1

d5cb2f9333c6e4e3ca8fbd1cdff641304a154f85
SHA256

26962abcd3fa389d62521c97172a701c686c8c5b0a1e7253461c1ec88816327b
SHA512

3cfd2949cfd65d2ba36ce4c6f79306affe2346e252cae67379f6b78a50d0079f4507f3b2d0dfb8491bbf49a45466f9532ecb0554f0db876983bf88418f2fcb66
SSDEEP

12288:7Ba02MtRWhaIYyVPH2i0MhGoSjEuKePisMLjd0Z5vHqgksjj/y3SsPd6:7Ba02MtRDIYgPH2i0iG/jqMxM3dApKEL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26962abcd3fa389d62521c97172a701c686c8c5b0a1e7253461c1ec88816327bN

Files

26962abcd3fa389d62521c97172a701c686c8c5b0a1e7253461c1ec88816327bN
.exe windows:4 windows x86 arch:x86

c701bec77b3ebf24b51ae875daa3e240

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

QueryPerformanceCounter
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
HeapSize
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
InitializeCriticalSection
LoadLibraryA
FlushFileBuffers
GetSystemTimeAsFileTime
GetModuleFileNameA
CreateFileA
GetCurrentProcessId
GetConsoleMode
GetConsoleCP
SetStdHandle
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RaiseException
GetTimeZoneInformation
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
LCMapStringW
LCMapStringA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetProcessHeap
GetVersionExA
ExitProcess
GetModuleHandleA
HeapAlloc
RtlUnwind
HeapFree
GetCurrentProcess
GlobalAlloc
ReadFile
CreateFileW
GlobalUnlock
GlobalFree
GetFileSize
CreateFileMappingW
SetFilePointer
MapViewOfFile
UnmapViewOfFile
CloseHandle
GlobalSize
WriteFile
GlobalLock
Beep
QueryPerformanceFrequency
MultiByteToWideChar
WideCharToMultiByte
GetTickCount
GetTempPathW
GetFileAttributesW
CreateDirectoryW
GetLastError
GetModuleFileNameW
DeleteCriticalSection
Sleep
InitializeCriticalSectionAndSpinCount
GetExitCodeThread
IsBadReadPtr
EnterCriticalSection
GetCurrentThreadId
LeaveCriticalSection
SearchPathW
GetModuleHandleW
GetSystemInfo
GetProcAddress
DeleteFileW

user32

CheckDlgButton
PostMessageW
IsZoomed
SetCapture
SetCursor
IsIconic
SetScrollInfo
GetDlgCtrlID
DestroyMenu
UpdateWindow
EndPaint
GetMonitorInfoW
ShowOwnedPopups
LoadImageW
GetSysColor
RedrawWindow
GetAsyncKeyState
RegisterClassExW
SendMessageW
GetDC
GetSystemMetrics
CreateWindowExW
SetFocus
BeginPaint
GetClientRect
IsWindow
WindowFromPoint
ShowWindow
IsDlgButtonChecked
GetScrollInfo
CreateDialogParamW
PtInRect
GetDlgItemInt
CheckMenuItem
LoadMenuW
ScreenToClient
GetCursor
GetCapture
DialogBoxParamW
GetParent
TranslateMessage
EnableMenuItem
InflateRect
GetMessageW
ReleaseCapture
PostQuitMessage
DispatchMessageW
LoadCursorW
GetDlgItem
TrackPopupMenu
SetDlgItemInt
EndDialog
GetDlgItemTextW
GetMenu
CloseWindow
SendDlgItemMessageW
SetDlgItemTextW
GetTopWindow
LoadIconW
EnableWindow
GetWindowTextW
EnumChildWindows
GetMenuItemCount
GetMenuItemID
DrawTextW
GetSubMenu
SetWindowTextW
GetMenuStringW
ModifyMenuW
GetWindowLongW
SetWindowLongW
ClientToScreen
DestroyWindow
SetTimer
IsChild
IsWindowVisible
KillTimer
GetDesktopWindow
GetWindowDC
CopyImage
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
MessageBoxW
SetWindowRgn
InvalidateRect
DefWindowProcW
GetWindowRect
MonitorFromPoint
IsRectEmpty
ReleaseDC
SetWindowPos
GetCursorPos

gdi32

SelectClipRgn
IntersectClipRect
CreateSolidBrush
SetBkColor
CreateDIBSection
StretchBlt
GetObjectW
SetBrushOrgEx
GetDIBits
SetStretchBltMode
GetCurrentObject
GdiFlush
CreateCompatibleDC
BitBlt
GetStockObject
DeleteDC
CreateDCW
GetObjectType
CreateFontW
GetTextFaceW
SetTextColor
CreateRoundRectRgn
SetBkMode
DeleteObject
SelectObject

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW
SHGetFolderPathW
DragFinish
DragQueryFileW

ole32

CoInitialize
CoUninitialize
CoCreateInstance

ws2_32

ntohl
htonl
htons
ntohs

Sections

.text
Size: 396KB - Virtual size: 394KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c701bec77b3ebf24b51ae875daa3e240

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

ws2_32

Sections

.text Size: 396KB - Virtual size: 394KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 12KB - Virtual size: 1.9MB

.rsrc Size: 196KB - Virtual size: 193KB

.text
Size: 396KB - Virtual size: 394KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 12KB - Virtual size: 1.9MB

.rsrc
Size: 196KB - Virtual size: 193KB