dfc622d76834e6b9c5c975f3e97e1eca9f5213fcd82e7170898299f5f3ba64c2N

Sharing

Copy URL Twitter E-mail

General

Target

dfc622d76834e6b9c5c975f3e97e1eca9f5213fcd82e7170898299f5f3ba64c2N
Size

156KB
MD5

20e0b2631acc9d87b39160d7ae5e85f0
SHA1

5e69b4f3aaee68b7ca3641f56b8cb18a0ad3c77c
SHA256

dfc622d76834e6b9c5c975f3e97e1eca9f5213fcd82e7170898299f5f3ba64c2
SHA512

0f106c1058639ad96a6a007c269e6da35363dcd199d94b300c7ad5672c6bc681720dcc1717785e3741f404d5aff5f7ba80ae83ebbb531fa66690bd1b6c524b10
SSDEEP

3072:MQYEfl9Hc5mwhiNyppB/07qBISReOfiV0dNH0WCanMEu3BOZyUU:MQYEX4mwhiNyD+gzfvAWCanIEkUU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfc622d76834e6b9c5c975f3e97e1eca9f5213fcd82e7170898299f5f3ba64c2N

Files

dfc622d76834e6b9c5c975f3e97e1eca9f5213fcd82e7170898299f5f3ba64c2N
.exe windows:4 windows x86 arch:x86

17cf39818e8839be81afa3aa1965abf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
GetVersion
CreateFileA
LocalAlloc
GlobalFindAtomA
GetStdHandle
GetCurrentThread
LocalFree
GetFileSize
SetFilePointer
LockResource
CloseHandle
GetVersionExA
GetFullPathNameA
RaiseException
ExitProcess
CreateThread
ResetEvent
SizeofResource
GetCurrentProcessId
GetTickCount
HeapAlloc
GetLocalTime
GetCommandLineA
GetFileAttributesA
GlobalDeleteAtom
GetModuleHandleA
FindClose
lstrcmpiA
GetLastError
GetThreadLocale
GetDiskFreeSpaceA
GetProcAddress
MoveFileA
lstrcatA
GetModuleFileNameA
lstrcpynA
FreeResource
GetCurrentProcess
GetCurrentThreadId
DeleteCriticalSection
GetDateFormatA
VirtualAllocEx
ExitThread
Sleep
MulDiv
GetLocaleInfoA
VirtualQuery
WideCharToMultiByte
GetEnvironmentStrings
SetHandleCount
CompareStringA
GetStartupInfoA
GlobalAddAtomA
WriteFile
FreeLibrary
GetUserDefaultLCID
FindFirstFileA
SetErrorMode
GetCPInfo
lstrcpyA
GetACP
FindResourceA
InitializeCriticalSection
HeapFree
GetStringTypeA
EnumCalendarInfoA
SetLastError
GetFileType
SetThreadLocale
CreateEventA
EnterCriticalSection
VirtualAlloc
WaitForSingleObject
GetStringTypeW
VirtualFree
GlobalAlloc
FormatMessageA
lstrcmpA
lstrlenA
LoadLibraryA
SetEndOfFile
LocalReAlloc
DeleteFileA
LoadLibraryExA
MoveFileExA

user32

GetClassNameA
SetScrollPos
SetMenu
SetParent
IntersectRect
SetWindowTextA
DrawFrameControl
KillTimer
DrawMenuBar
SetWindowLongW
UnregisterClassA
TranslateMessage
GetCapture
BeginPaint
RedrawWindow
LoadIconA
GetDC
TranslateMDISysAccel
EmptyClipboard
LoadCursorA
GetMenuState
GetDlgItem
GetKeyState
RegisterClassA
MapVirtualKeyA
WindowFromPoint
ShowScrollBar
OffsetRect
CreateWindowExA
DestroyIcon
GetKeyboardLayoutNameA
GetMenuItemCount
EnumWindows
CallWindowProcA
SetCursor
DefMDIChildProcA
RemoveMenu
DrawIconEx
SetWindowLongA
IsZoomed
GetWindow
EnumChildWindows
GetKeyboardLayout
SystemParametersInfoA
PeekMessageW
EnableMenuItem
MapWindowPoints
GetScrollPos
ScrollWindow
CreateIcon
GetFocus
DefWindowProcA
GetMenuStringA
MoveWindow
GetLastActivePopup
GetKeyboardLayoutList
GetKeyNameTextA
CreatePopupMenu
GetWindowPlacement
CharNextA
GetClientRect
DrawEdge
IsRectEmpty
GetSysColor
GetMenu
GetActiveWindow
SetRect
LoadKeyboardLayoutA
IsDialogMessageW
RegisterWindowMessageA
IsDialogMessageA
ActivateKeyboardLayout
CreateMenu
SetForegroundWindow
EnableWindow
UnhookWindowsHookEx
GetClassLongA
MsgWaitForMultipleObjects
SetActiveWindow
GetSysColorBrush
IsWindowVisible
GetParent
SetClassLongA
CloseClipboard
GetTopWindow
RegisterClipboardFormatA
GetWindowLongW
FillRect
GetScrollRange
OpenClipboard
SetWindowPlacement
GetWindowDC
DestroyWindow
SetWindowsHookExA
GetDesktopWindow
SetPropA
GetMenuItemInfoA
LoadBitmapA
GetKeyboardState
SendMessageW
InsertMenuItemA
LoadStringA
ShowWindow
DestroyMenu
SetCapture
GetForegroundWindow
IsWindowUnicode
SetWindowPos
IsChild
EndPaint
GetPropA
CharLowerBuffA
GetSystemMetrics
wsprintfA
CharToOemA
SendMessageA
EnableScrollBar
CharLowerA
EqualRect
DrawIcon
InsertMenuA
InvalidateRect
ReleaseCapture
DispatchMessageW
GetWindowThreadProcessId
GetWindowRect
DispatchMessageA
FrameRect
DrawTextA
GetClipboardData
ChildWindowFromPoint
PostMessageA
GetWindowLongA
GetCursor
DestroyCursor
GetMessagePos
GetWindowTextA
PostQuitMessage
AdjustWindowRectEx
PeekMessageA
MessageBeep
SetMenuItemInfoA
SetScrollInfo
GetMenuItemID
GetClassInfoA
IsWindow
RemovePropA
IsWindowEnabled
EnumThreadWindows
IsIconic
TrackPopupMenu
DeleteMenu
CharUpperBuffA
GetSubMenu
SetTimer
DrawAnimatedRects
FindWindowA
GetCursorPos
GetIconInfo
PtInRect
UpdateWindow
ClientToScreen
GetDCEx
InflateRect
ReleaseDC
MessageBoxA
SetFocus
GetKeyboardType
ShowOwnedPopups
CharNextW
CheckMenuItem
DefFrameProcA

shlwapi

PathFileExistsA
SHQueryValueExA
SHEnumValueA
SHStrDupA
PathIsContentTypeA
SHDeleteKeyA
SHQueryInfoKeyA
PathIsDirectoryA
SHGetValueA
PathGetCharTypeA

gdi32

CreatePenIndirect
GetRgnBox
RestoreDC
GetPixel
BitBlt
LineTo
GetPaletteEntries
GetClipBox
CopyEnhMetaFileA
SelectObject

msvcrt

memcpy
atol
sin
log
memmove
wcsncmp
memset

ole32

MkParseDisplayName
CoReleaseMarshalData
CoTaskMemFree
CLSIDFromString
CoCreateInstanceEx
WriteClassStm
OleRegGetUserType

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

17cf39818e8839be81afa3aa1965abf1

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

gdi32

msvcrt

ole32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 512B - Virtual size: 92KB

DATA Size: 120KB - Virtual size: 120KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 512B - Virtual size: 92KB

DATA
Size: 120KB - Virtual size: 120KB