1352a6f715bf88bd5eddb886916a4c0ebc056f29241db67e5f5da3c9eb94b8a4N

Sharing

Copy URL

Twitter E-mail

General

Target

1352a6f715bf88bd5eddb886916a4c0ebc056f29241db67e5f5da3c9eb94b8a4N
Size

204KB
MD5

1d6e99b3003b3d3e770b864db99400a0
SHA1

f7563dd64e43cdbae2d32c361f31c2d4c5a53a8d
SHA256

1352a6f715bf88bd5eddb886916a4c0ebc056f29241db67e5f5da3c9eb94b8a4
SHA512

a31d620314a9eef6b37021cf31f5efbaa2c64abd3982dc563b90b6cfa027d75b3fa17910285bc2338fd99c41b00b4715639a54d8ab4c915e990c97227ce34d65
SSDEEP

3072:F5u7yT4TVbkuRaX1w71jnRkCoyJTarYWbV+HOFxg+z1WxJsqWkoyjOowUVl/TlAQ:FLexkuRaX41xoyJV65gzyZko+uc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1352a6f715bf88bd5eddb886916a4c0ebc056f29241db67e5f5da3c9eb94b8a4N

Files

1352a6f715bf88bd5eddb886916a4c0ebc056f29241db67e5f5da3c9eb94b8a4N
.exe windows:4 windows x86 arch:x86

add9e90fe8cc1a6d600a60e22be53bf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
lstrcat
CompareFileTime
SetEvent
GetTempPathA
CopyFileExA
GlobalDeleteAtom
CopyFileA
LocalFree
CopyFileExW
ExitProcess
ExpandEnvironmentStringsA
LoadLibraryA
GetLogicalDriveStringsW
GetCommandLineA
IsValidLocale
SetPriorityClass
GetThreadPriority
GetWindowsDirectoryW
GetTempFileNameA
GetDateFormatA
SetThreadPriority
EnumCalendarInfoW
GetNumberFormatW
MultiByteToWideChar
OpenMutexW
GetFileAttributesW
GetSystemDefaultLCID
ExpandEnvironmentStringsW
GetProcAddress
GetLogicalDriveStringsA
lstrcpynW
GetLogicalDrives
GetCurrentDirectoryA
IsBadReadPtr
GetStringTypeA

user32

SetFocus
RegisterClassExW
SetTimer
CharLowerA
ShowWindow
MessageBoxW
CopyImage
LoadImageA
GetClassLongA
RegisterClassExA
PostMessageW
SetParent
GetDlgItemTextA
DefWindowProcA
GetClientRect
SendMessageW
DefFrameProcA
EnumDesktopsA
SetForegroundWindow
InvalidateRect
CheckDlgButton
LoadMenuIndirectA
GetWindowTextLengthA
SetWindowTextW
GetDC
LoadBitmapA
SendDlgItemMessageA
DefWindowProcW
SetDlgItemTextA
SendDlgItemMessageW
ChildWindowFromPoint
DestroyIcon
ArrangeIconicWindows
DrawTextA
CreateDialogIndirectParamA
DefDlgProcW
CharUpperA
CharPrevW
GetScrollPos
UpdateLayeredWindow
CallWindowProcA
GetDC
SetWindowRgn

gdi32

CreateRoundRectRgn
ResetDCW
Arc
CreatePen
CreateColorSpaceW
GetTextExtentPointA
GetPath
OffsetClipRgn
RectInRegion

advapi32

RegRestoreKeyW
RegDeleteKeyA
RegSaveKeyA
RegReplaceKeyW
RegReplaceKeyA
RegOpenKeyExA
RegFlushKey

shell32

SHCreateDirectoryExW
ShellExecuteExW
ExtractAssociatedIconExW
DuplicateIcon
SHGetDataFromIDListA
StrChrA
SHGetFileInfoA
StrChrIW
ExtractAssociatedIconA

shlwapi

UrlCombineA
PathMakeSystemFolderA
UrlUnescapeW
SHRegSetUSValueA
SHCreateThread
PathAppendA
PathCombineW
PathIsLFNFileSpecA
PathSetDlgItemPathW
StrToInt64ExA
SHCreateStreamOnFileW
StrCSpnIW
ColorRGBToHLS
SHRegGetBoolUSValueW

oleaut32

VarUI4FromUI1
VarIdiv
VarCyFromUI1
VarDateFromUI2
VarI8FromI2
VarR4CmpR8
VarNumFromParseNum

opengl32

glGetTexImage
glRectsv

crypt32

CryptSIPPutSignedDataMsg
CryptEnumKeyIdentifierProperties

Sections

.pGCC
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.XJy
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.TvKn
Size: 3KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CA
Size: 4KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ylLMGt
Size: 512B - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Z
Size: 1KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 758B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

add9e90fe8cc1a6d600a60e22be53bf7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

shlwapi

oleaut32

opengl32

crypt32

Sections

.pGCC Size: 3KB - Virtual size: 3KB

.XJy Size: 9KB - Virtual size: 9KB

.TvKn Size: 3KB - Virtual size: 472KB

.CA Size: 4KB - Virtual size: 45KB

.data Size: 117KB - Virtual size: 327KB

.ylLMGt Size: 512B - Virtual size: 264KB

.Z Size: 1KB - Virtual size: 313KB

.rsrc Size: 62KB - Virtual size: 62KB

.reloc Size: 1024B - Virtual size: 758B

.pGCC
Size: 3KB - Virtual size: 3KB

.XJy
Size: 9KB - Virtual size: 9KB

.TvKn
Size: 3KB - Virtual size: 472KB

.CA
Size: 4KB - Virtual size: 45KB

.data
Size: 117KB - Virtual size: 327KB

.ylLMGt
Size: 512B - Virtual size: 264KB

.Z
Size: 1KB - Virtual size: 313KB

.rsrc
Size: 62KB - Virtual size: 62KB

.reloc
Size: 1024B - Virtual size: 758B