639a8074a3cdfeffa3798debe63ba7f6c7e70555e2cc4ac8a677f0f0b81c5d9d

Sharing

Copy URL Twitter E-mail

General

Target

639a8074a3cdfeffa3798debe63ba7f6c7e70555e2cc4ac8a677f0f0b81c5d9d
Size

1012KB
MD5

148ac201a008431f57035df4e2150055
SHA1

b933803cefca39ea72bbd78e01d7b48ecb1969c8
SHA256

639a8074a3cdfeffa3798debe63ba7f6c7e70555e2cc4ac8a677f0f0b81c5d9d
SHA512

e483ce6d6b7f2fb68ce2f51356106db90366c724c003f7cdf17dcd04168d7d49f4d8287e2929315e353c5f3a0841dcaa563ff8c953db7ef770f5bfa061b05bea
SSDEEP

12288:imroxpLPAgQNNycCOYtETmtdJneuQHpo5A0gsQ06Uu37TygGWCUZUq20b+Qptoas:/fN/YtFtdJneuQHp43JgGW/Uqlb+W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
639a8074a3cdfeffa3798debe63ba7f6c7e70555e2cc4ac8a677f0f0b81c5d9d

Files

639a8074a3cdfeffa3798debe63ba7f6c7e70555e2cc4ac8a677f0f0b81c5d9d
.exe windows x86

7542bcd568970d01905958d80082f5b0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundW

kernel32

GetFileSize
ReadFile
WriteFile
FlushFileBuffers
SetEndOfFile
GetCommandLineW
GetProcAddress
GetModuleHandleW
GetLocaleInfoA
SetStdHandle
LCMapStringW
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
HeapQueryInformation
HeapSize
HeapReAlloc
VirtualQuery
GetProcessHeap
HeapAlloc
HeapFree
SetConsoleCtrlHandler
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
HeapDestroy
HeapCreate
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetStringTypeW
CloseHandle
GetCPInfo
GetOEMCP
GetACP
ExitProcess
IsProcessorFeaturePresent
IsBadReadPtr
HeapValidate
FatalAppExitA
InitializeCriticalSectionAndSpinCount
lstrlenA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThread
SetLastError
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
DecodePointer
EncodePointer
RaiseException
RtlUnwind
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
Sleep
InterlockedDecrement
InterlockedIncrement
CreateFileW
SetFilePointer
GlobalAlloc
GlobalLock
GlobalUnlock
WideCharToMultiByte
MultiByteToWideChar
lstrcpyW
SystemTimeToFileTime
SetLocalTime
GetLocalTime
FindResourceW
SizeofResource
LoadResource
LockResource
GetCurrentDirectoryW
GetModuleFileNameW
IsValidLocale
GetLastError
LoadLibraryW
FreeLibrary
lstrlenW
EnumSystemLocalesA
IsValidCodePage
GetUserDefaultLCID

user32

DrawTextW
UpdateWindow
SetWindowPos
SetFocus
DestroyIcon
DestroyCursor
CreateIconFromResource
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CharUpperW
GetDC
MessageBeep
MessageBoxW
SetTimer
KillTimer
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemRect
CheckMenuRadioItem
CheckMenuItem
EnableMenuItem
GetMenuState
GetMenuCheckMarkDimensions
LoadImageW
ReleaseDC
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CharLowerW
IsWindowVisible
SetMenuItemBitmaps
LoadBitmapW
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuW
AppendMenuW
DrawMenuBar
RemoveMenu
SetForegroundWindow
DestroyWindow
SetCursor
GetClientRect
FillRect
GetSysColor
BeginPaint
EndPaint
GetCursorPos
ScreenToClient
LoadCursorW
GetKeyState
GetSystemMetrics
MoveWindow
SetWindowRgn
GetMenuItemCount
GetMenuItemID
GetDlgItem
LoadIconW
ClientToScreen
TrackPopupMenu
DestroyMenu
GetSubMenu
LoadMenuW
LoadAcceleratorsW
SetWindowPlacement
GetWindowPlacement
CallWindowProcW
GetWindowLongW
EnumChildWindows
CreateDialogParamW
GetWindow
SetWindowLongW
IsWindowEnabled
ShowWindow
SetActiveWindow
GetActiveWindow
SetMenu
GetSystemMenu
GetMenu
SetRect
PeekMessageW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
IsDialogMessageW
PostQuitMessage
SetParent
CheckDlgButton
IsDlgButtonChecked
SendMessageW
SetCapture
ReleaseCapture
GetWindowRect
InvalidateRect
GetParent
GetDlgItemInt
EnableWindow
GetClassLongW
GetClassNameW
GetDlgCtrlID
CloseClipboard

gdi32

RoundRect
SelectObject
CreatePen
SetBkColor
GetStockObject
SetBkMode
CreateSolidBrush
SetTextColor
GetObjectW
Rectangle
GetTextExtentPoint32W
GetTextMetricsW
CreateFontIndirectW
DeleteDC
BitBlt
StretchBlt
SetStretchBltMode
CreateCompatibleDC
GetDeviceCaps
DeleteObject
CreateRoundRectRgn

shell32

DragQueryFileW
DragQueryPoint
DragFinish
DragAcceptFiles
Shell_NotifyIconW

comctl32

ord17

Sections

.textbss
Size: - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 515KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 389KB - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7542bcd568970d01905958d80082f5b0

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

shell32

comctl32

Sections

.textbss Size: - Virtual size: 241KB

.text Size: 515KB - Virtual size: 514KB

.rdata Size: 71KB - Virtual size: 71KB

.data Size: 6KB - Virtual size: 20KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 389KB - Virtual size: 388KB

.reloc Size: 21KB - Virtual size: 21KB

.textbss
Size: - Virtual size: 241KB

.text
Size: 515KB - Virtual size: 514KB

.rdata
Size: 71KB - Virtual size: 71KB

.data
Size: 6KB - Virtual size: 20KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 389KB - Virtual size: 388KB

.reloc
Size: 21KB - Virtual size: 21KB