56205f17a73728a859c97b1cabfe56f1bd379107ae847975091ee8f29cf5e4cc

Sharing

Copy URL

Twitter E-mail

General

Target

56205f17a73728a859c97b1cabfe56f1bd379107ae847975091ee8f29cf5e4cc
Size

180KB
MD5

3be47bb98fe32d6e9329d51ec97c3e5f
SHA1

c8e1a509217446a2159e9e30b8e8c844c7f6e0d4
SHA256

56205f17a73728a859c97b1cabfe56f1bd379107ae847975091ee8f29cf5e4cc
SHA512

3bbf453700b8dc2686625c5af6192e941d7874a85c7be25d62a990b24f803279244329f70bf46c1d22b039383a97a32b5d5e9af40b58b4209202b27deb26465c
SSDEEP

3072:8/Y8RA0noJD0hCkIThWQIKXTZaZN6V4y5NfAi:8/TMJ5J1zJXoH/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56205f17a73728a859c97b1cabfe56f1bd379107ae847975091ee8f29cf5e4cc

Files

56205f17a73728a859c97b1cabfe56f1bd379107ae847975091ee8f29cf5e4cc
.exe windows:4 windows x86 arch:x86

39735b4dd3d8380bb8d8ce07f9c4761a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerInstallFileA
GetFileVersionInfoA

shlwapi

SHSetValueA
SHDeleteValueA
PathIsDirectoryA
SHQueryInfoKeyA
SHQueryValueExA

comctl32

ImageList_DragShowNolock
ImageList_Add

gdi32

CopyEnhMetaFileA
SetBkColor
CreateCompatibleBitmap

oleaut32

SafeArrayPtrOfIndex
GetErrorInfo
SysAllocStringLen
SysReAllocStringLen
OleLoadPicture
SafeArrayGetElement
SysStringLen

msvcrt

tolower
memmove
pow
strncmp
memcpy

kernel32

GetVersion
lstrlenA
VirtualAlloc
ExitThread
LoadLibraryA
FreeLibrary
GetVersionExA
GetModuleHandleA
LoadLibraryExA

ole32

CoDisconnectObject
CLSIDFromProgID
CreateOleAdviseHolder
WriteClassStm
CoReleaseMarshalData
CoCreateInstanceEx
CoRegisterClassObject
CLSIDFromString
StgCreateDocfileOnILockBytes

advapi32

RegDeleteKeyA
RegDeleteValueA
RegEnumValueA
RegCreateKeyExA

user32

GetClassInfoA
EnableMenuItem
CreatePopupMenu
CreateIcon
GetMessagePos
BeginPaint
GetMenuStringA
DefFrameProcA
GetActiveWindow
GetDCEx
CharLowerA
GetIconInfo
GetKeyNameTextA
CharNextA
ClientToScreen
GetParent
GetClipboardData
CreateMenu
SystemParametersInfoA
DrawEdge
GetDesktopWindow
DispatchMessageW
SetWindowTextA
DefMDIChildProcA
DeferWindowPos
DispatchMessageA
EnumThreadWindows
EndPaint
GetMenuState
GetDlgItem
EnableWindow
DrawMenuBar
DrawTextA
SetWindowPos
ShowScrollBar
IsMenu
SetWindowLongA
GetClientRect
GetMenuItemCount
TrackPopupMenu
GetCursorPos
GetScrollInfo
GetMenuItemInfoA
SetTimer
CheckMenuItem
IsWindowVisible
GetLastActivePopup
BeginDeferWindowPos
CharLowerBuffA
GetDC
EnumWindows
HideCaret
CreateWindowExA
FrameRect
IsDialogMessageA
GetWindowTextA
FindWindowA
GetForegroundWindow
CharToOemA
GetSubMenu
MessageBoxA
IsChild
GetScrollRange
ShowWindow
CallNextHookEx
GetSysColorBrush
GetWindow
EnableScrollBar
GetMenuItemID
GetScrollPos

comdlg32

GetSaveFileNameA
ChooseColorA

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 3KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

39735b4dd3d8380bb8d8ce07f9c4761a

Headers

File Characteristics

Imports

version

shlwapi

comctl32

gdi32

oleaut32

msvcrt

kernel32

ole32

advapi32

user32

comdlg32

Sections

.text Size: 57KB - Virtual size: 56KB

.tls Size: 3KB - Virtual size: 103KB

DATA Size: 118KB - Virtual size: 117KB

.text
Size: 57KB - Virtual size: 56KB

.tls
Size: 3KB - Virtual size: 103KB

DATA
Size: 118KB - Virtual size: 117KB