Losinium[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Losinium.exe
Size

88KB
MD5

3fad30ef9bbb47488e86defa0f81acab
SHA1

8c014730e8eb3ca0883e556c873855671b2c62ae
SHA256

69d2ad4ddd61c4b2e6ff350fd87b61db5de36218626812e69c4289de5782cd0c
SHA512

f93f101cef376c8c214960826fe8784bccffbd0bfbc80c07ea861517adc4cbc2968b28d5e1a8aa7628bd999acc139eb16cacb011367dd58ec4fb51dc8c574c4a
SSDEEP

1536:7uLn5vxcEJM/tHLeN29Jdhe2oDHkTaT345K5BCsW5cd6BBIPbKWEfx:6LRxmHCgJdIdDHOa05CBz6BBIPlEfx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Losinium.exe

Files

Losinium.exe
.exe windows x86

9afa14a04c413077ccf4aedf814b305d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetConsoleCP
FlushFileBuffers
HeapReAlloc
HeapSize
GetProcessHeap
GetStringTypeW
SetFilePointerEx
SetStdHandle
LCMapStringW
CompareStringW
WriteConsoleW
GetConsoleWindow
ExitProcess
GetProcAddress
CreateThread
CloseHandle
LoadLibraryA
Sleep
TerminateThread
CreateFileW
WriteFile
GetFileType
GetCurrentProcess
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RaiseException
GetStdHandle
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
GetACP
HeapFree
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetFileAttributesExW
HeapAlloc
FindClose
FindFirstFileExA
FindNextFileA
DecodePointer

user32

GetDesktopWindow
SetCursorPos
GetCursorPos
EnableWindow
FindWindowW
GetWindowRect
GetDC
MessageBoxW
EnumChildWindows
SendMessageW
GetSystemMetrics
SetWindowTextW
GetShellWindow
WindowFromPoint
ShowWindow
RedrawWindow
ExitWindowsEx
GetForegroundWindow

gdi32

SelectObject
StretchBlt
PlgBlt
TextOutW
SetStretchBltMode
CreateSolidBrush
BitBlt

advapi32

AdjustTokenPrivileges
OpenProcessToken
LookupPrivilegeValueW

shell32

ShellExecuteW

winmm

waveOutOpen
waveOutClose
waveOutUnprepareHeader
waveOutWrite
waveOutPrepareHeader

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9afa14a04c413077ccf4aedf814b305d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

winmm

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 488B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 488B

.reloc
Size: 4KB - Virtual size: 4KB