0598c5740c4b43a587a562ad88352034e5b1101d55187d98bd265a1993d91e9a

Sharing

Copy URL Twitter E-mail

General

Target

0598c5740c4b43a587a562ad88352034e5b1101d55187d98bd265a1993d91e9a
Size

355KB
MD5

bbf1bb4dddec309f783fe139f71f22b5
SHA1

145442af08aac9927cd3c73d5b33f165dd0eee59
SHA256

0598c5740c4b43a587a562ad88352034e5b1101d55187d98bd265a1993d91e9a
SHA512

e9f1e3c80a9dea3289ecdf006082db6e82cdc119d201c3291c1a8dc3554f5d87eed5698afbc1884c144b58911dc93d79491a22a05ed7380530dc4083fd3234b5
SSDEEP

6144:SRJRlWaqSQFJzhk8WojoPGigW6mI41c3oSbUVzHdZPd2m/pz:Iifhk8Woj8Q741KvbUVZZPdH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0598c5740c4b43a587a562ad88352034e5b1101d55187d98bd265a1993d91e9a

Files

0598c5740c4b43a587a562ad88352034e5b1101d55187d98bd265a1993d91e9a
.exe windows x86

a91b20579871fecdd1fc4127f8d87b1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
OutputDebugStringW
LoadLibraryExW
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
SetEndOfFile
FlushFileBuffers
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStringTypeW
GetProcessHeap
GetModuleFileNameW
GetStdHandle
HeapSize
AreFileApisANSI
GetModuleHandleExW
GetCurrentThreadId
SetLastError
GetCPInfo
GetOEMCP
IsValidCodePage
RtlUnwind
RaiseException
GetCommandLineA
IsProcessorFeaturePresent
IsDebuggerPresent
HeapReAlloc
HeapFree
HeapAlloc
DecodePointer
EncodePointer
ExitProcess
GetACP
ReadConsoleW
WriteConsoleW
TerminateProcess
CreateFileW
WaitForSingleObject
GetOverlappedResult
WriteFile
CreateThread
GetCommMask
ExitThread
WaitForMultipleObjects
ClearCommError
WaitCommEvent
LeaveCriticalSection
PurgeComm
MultiByteToWideChar
SetCommState
BuildCommDCBA
GetCommState
SetCommMask
SetCommTimeouts
EnterCriticalSection
InitializeCriticalSection
CreateEventA
ResetEvent
SetEvent
Sleep
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetTickCount
GetModuleHandleA
GetModuleFileNameA
LockResource
SizeofResource
FreeResource
LoadResource
FindResourceA
GetLastError
IsDBCSLeadByte
WideCharToMultiByte
GetProcAddress
LoadLibraryA
MulDiv
TlsAlloc
GetFileAttributesExW

user32

SetWindowRgn
IsZoomed
IsIconic
PtInRect
SetCursor
LoadCursorA
CharNextA
MapWindowPoints
GetMonitorInfoA
MonitorFromWindow
GetParent
ShowWindow
SendMessageA
GetCursorPos
ScreenToClient
SetWindowTextA
EnableWindow
GetWindowLongA
SetWindowLongA
SetFocus
GetClientRect
InvalidateRect
DefWindowProcA
GetWindowTextLengthA
GetWindowTextA
InflateRect
OffsetRect
PeekMessageA
MessageBoxA
CharPrevA
SetRect
DrawTextA
FillRect
ReleaseCapture
SetCapture
KillTimer
SetTimer
GetFocus
EndPaint
BeginPaint
GetUpdateRect
GetDC
ReleaseDC
DestroyWindow
IsRectEmpty
PostMessageA
GetPropA
SetPropA
CallWindowProcA
RegisterClassExA
GetClassInfoExA
RegisterClassA
GetWindowRect
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
GetWindow
IsWindow
CreateWindowExA
GetCaretPos
GetKeyState
GetSysColor
ClientToScreen
SetCaretPos
HideCaret
ShowCaret
CreateCaret
IntersectRect
SetWindowPos

gdi32

CreatePenIndirect
ExtTextOutA
SetBkColor
SetStretchBltMode
StretchBlt
CreateDIBSection
CombineRgn
CreateRoundRectRgn
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
SelectClipRgn
GetTextMetricsA
GetCharABCWidthsA
Rectangle
RestoreDC
MoveToEx
SaveDC
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
CreateFontIndirectA
GetStockObject
GetDeviceCaps
GetObjectA
CreateSolidBrush
SetTextColor
SetBkMode
DeleteObject
GetTextExtentPoint32A
TextOutA
LineTo
BitBlt
RoundRect
SetWindowOrgEx
CreatePen

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegEnumValueA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA

ole32

CoInitialize
CoUninitialize

gdiplus

GdipDrawString
GdipFree
GdipCloneBrush
GdipAlloc
GdipDeleteBrush
GdipCreateLineBrushI
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipSetTextRenderingHint
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdiplusShutdown
GdiplusStartup

imm32

ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow

comctl32

ord17
_TrackMouseEvent

Sections

.text
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a91b20579871fecdd1fc4127f8d87b1c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

gdiplus

imm32

comctl32

Sections

.text Size: 259KB - Virtual size: 258KB

.rdata Size: 66KB - Virtual size: 66KB

.data Size: 9KB - Virtual size: 17KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 259KB - Virtual size: 258KB

.rdata
Size: 66KB - Virtual size: 66KB

.data
Size: 9KB - Virtual size: 17KB

.rsrc
Size: 19KB - Virtual size: 18KB