dc79e65b7dfc2aed78cef1fb6bf056208f0eededde60f21763429773a47efc78

Sharing

Copy URL Twitter E-mail

General

Target

dc79e65b7dfc2aed78cef1fb6bf056208f0eededde60f21763429773a47efc78
Size

263KB
MD5

4961c9149a8db7c773aec5ee02ada9d9
SHA1

29dad9bb2f0b86ccc60e473141fbeac6f5da3272
SHA256

dc79e65b7dfc2aed78cef1fb6bf056208f0eededde60f21763429773a47efc78
SHA512

ad5bf82a0ed0e99d8e57c96c29324f8b6a0d16d474edd9a19961bf464c78a7f6a3bce8df8dabcd231a6318292ee68aeef16989d36907ea6a80746cbc613f1f7a
SSDEEP

6144:ITN/I2jF526yFODsl9S9NyV8Fi76CEey+O4DVOH:J4HFDsl4qInBWi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc79e65b7dfc2aed78cef1fb6bf056208f0eededde60f21763429773a47efc78

Files

dc79e65b7dfc2aed78cef1fb6bf056208f0eededde60f21763429773a47efc78
.exe windows:4 windows x86 arch:x86

dc8b5348a462311b00d5e14ad1cb9d83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
GlobalFindAtomA
GetStringTypeA
HeapAlloc
Sleep
GetModuleHandleA
FindResourceA
EnumCalendarInfoA
SetEndOfFile
GetUserDefaultLCID
LockResource
GetStringTypeW
GetCommandLineA
lstrcmpiA
GetOEMCP
GetCurrentProcessId
GetTickCount
GetProcessHeap
GetLocaleInfoA
SetEvent
SetErrorMode
LocalReAlloc
SetHandleCount
SetLastError
lstrlenA
CompareStringA
GetACP
GetDiskFreeSpaceA
CreateThread
GetLastError
DeleteFileA
GetSystemDefaultLangID
GetFileType
CreateEventA
VirtualAllocEx
GetStdHandle
WaitForSingleObject
LoadResource
GetModuleFileNameA
RaiseException
SizeofResource
DeleteCriticalSection
GetProcAddress
WriteFile
ReadFile
SetThreadLocale
EnterCriticalSection
GetLocalTime
VirtualFree
HeapDestroy
LoadLibraryA
FindClose
GetFileSize
GetVersion
lstrcpyA
GetVersionExA
GetCPInfo
FindFirstFileA
FreeResource
LocalFree
MulDiv
lstrcatA
ResetEvent
GetDateFormatA
InitializeCriticalSection
VirtualAlloc
GlobalAddAtomA
GetThreadLocale
GlobalDeleteAtom
WideCharToMultiByte
CloseHandle
LocalAlloc
lstrcmpA
GetFileAttributesA
VirtualQuery
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
FreeLibrary
ExitProcess
SetFilePointer
MoveFileA
ExitThread
CreateFileA
FormatMessageA
GlobalAlloc

msvcrt

cos
mbstowcs
memcpy

user32

CreateMenu
IsDialogMessageA
RegisterClipboardFormatA
GetSysColorBrush
DestroyIcon
SetCapture
GetSystemMetrics
wsprintfA
EnableWindow
GetScrollInfo
SetTimer
DestroyWindow
GetKeyNameTextA
DeleteMenu
IsWindowEnabled
GetMenuItemInfoA
FindWindowA
RegisterWindowMessageA
GetMenu
InvalidateRect
SendMessageW
EnableMenuItem
DestroyCursor
DestroyMenu
EnableScrollBar
CharLowerBuffA
MessageBeep
SetClassLongA
InsertMenuItemA
IsZoomed
GetIconInfo
DefWindowProcA
OemToCharA
CharNextA
GetDCEx
MapWindowPoints
TranslateMessage
CallWindowProcA
SystemParametersInfoA
MsgWaitForMultipleObjects
GetCursorPos
GetWindowLongA
ScrollWindow
RedrawWindow
OffsetRect
LoadKeyboardLayoutA
GetForegroundWindow
UnhookWindowsHookEx
DrawIcon
GetTopWindow
SendMessageA
UnregisterClassA
SetWindowPlacement
GetWindowTextA
MapVirtualKeyA
GetKeyboardLayout
GetWindowRect
GetMessagePos
GetLastActivePopup
PtInRect
IsIconic
GetMenuItemCount
IsWindow
FrameRect
GetScrollRange
SetForegroundWindow
ReleaseDC
PostQuitMessage
GetKeyboardLayoutNameA
ClientToScreen
ScreenToClient
GetCapture
GetKeyboardState
GetKeyboardType
SetWindowPos
SetWindowLongW
EnumWindows
GetClassNameA
CreateWindowExA
GetSystemMenu
GetDlgItem
GetWindowPlacement
EnumThreadWindows
GetWindow
EqualRect
GetMenuStringA
ReleaseCapture
GetScrollPos
GetDesktopWindow
DispatchMessageA
SetActiveWindow
BeginPaint
SetWindowsHookExA
EndPaint
SetMenuItemInfoA
RemoveMenu
CharToOemA
SetWindowLongA
SetPropA
GetWindowThreadProcessId
GetMenuItemID
GetClientRect
FillRect
SetParent
ActivateKeyboardLayout
OpenClipboard
SetFocus
LoadCursorA
GetClipboardData
KillTimer
InsertMenuA
GetActiveWindow
GetSubMenu
RemovePropA
GetClassInfoA
GetSysColor
LoadStringA
DispatchMessageW
DrawTextA
GetWindowLongW
IsWindowUnicode
SetCursor
EnumChildWindows
CheckMenuItem
GetKeyState
IsChild
SetScrollRange
IsDialogMessageW
CharLowerA
GetCursor
AdjustWindowRectEx
GetClassLongA
DefFrameProcA
DrawIconEx
PostMessageA
IntersectRect
CallNextHookEx
SetRect
WaitMessage
DrawMenuBar
SetClipboardData
SetScrollPos
DrawFrameControl
GetKeyboardLayoutList
MessageBoxA
RegisterClassA
CreateIcon
SetMenu
EmptyClipboard
GetWindowDC
CharNextW
TranslateMDISysAccel
IsWindowVisible
LoadIconA
GetParent
InflateRect
GetMenuState
DrawEdge
IsRectEmpty
ShowWindow
DefMDIChildProcA
CharUpperBuffA
PeekMessageW
UpdateWindow
LoadBitmapA
GetFocus
CloseClipboard
WindowFromPoint
PeekMessageA
ShowOwnedPopups
MoveWindow
SetWindowTextA
TrackPopupMenu
ChildWindowFromPoint
GetDC

Sections

.text
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc8b5348a462311b00d5e14ad1cb9d83

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 249KB - Virtual size: 249KB

.bss Size: 7KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.text
Size: 249KB - Virtual size: 249KB

.bss
Size: 7KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB