86e2692ec08a589e7bd822df82e97437039493b6dcfd5eab9bdf1de9aa62cb2a

Sharing

Copy URL Twitter E-mail

General

Target

86e2692ec08a589e7bd822df82e97437039493b6dcfd5eab9bdf1de9aa62cb2a
Size

3.0MB
MD5

ff37c4ab5dcb0db3d73bbfe7dc2af721
SHA1

b4239463c2fead1377c33d0fbcf112fbab74e031
SHA256

86e2692ec08a589e7bd822df82e97437039493b6dcfd5eab9bdf1de9aa62cb2a
SHA512

5163f478402903a56ae02e86ef0a204cd197ffb0c75c923a1b5297e078f50c2d5dfc8ea58c1ea45da96c6e7187de14d5ba1ea6fa2b284b2a722569cb20a21edc
SSDEEP

49152:lR7xdqvUnoKdCpyR6Cca/QDc+D9JlVmjciHHACfziP4EReb4lu/K/s9jJ3T:VHaUR7JYDPD9J/mjciA0z6w4luys9lD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86e2692ec08a589e7bd822df82e97437039493b6dcfd5eab9bdf1de9aa62cb2a

Files

86e2692ec08a589e7bd822df82e97437039493b6dcfd5eab9bdf1de9aa62cb2a
.exe windows x86

a2ae028ba2710f175bb43d218ac7e3f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
TerminateThread
WaitForSingleObject
lstrcatA
lstrcpyA
CreateThread
DeleteFileA
GetCommandLineA
Sleep
GetPrivateProfileIntA
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
GetVersionExA
CreateFileA
GetModuleFileNameA
lstrlenA
CreateMutexA
RemoveDirectoryA
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
WriteFile
ReadFile
SetFilePointer
GetFileSize
GetExitCodeProcess
CreateProcessA
GetACP
CreateDirectoryA
lstrcpynA
SetLastError
GetLastError
ReleaseMutex
GetTempPathA
GetFileAttributesA
MultiByteToWideChar
WideCharToMultiByte
FlushFileBuffers
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
CloseHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetEnvironmentStringsW
GetStringTypeW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
SetStdHandle
IsBadWritePtr
UnhandledExceptionFilter
RtlUnwind
HeapAlloc
HeapFree
SetEndOfFile
GetFileType
GetStartupInfoA
GetVersion
ExitProcess
SetUnhandledExceptionFilter
SetHandleCount
GetCurrentProcess
HeapReAlloc
GetCPInfo
GetOEMCP
TerminateProcess
VirtualAlloc
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree

user32

DialogBoxParamA
SetTimer
GetMenuItemID
KillTimer
EndDialog
ShowWindow
LoadStringA
MessageBoxA
GetSystemMenu
SetWindowTextA
GetDlgItem
EnableMenuItem
EnableWindow
SendMessageA
IsWindowVisible
GetMenuItemCount
PostMessageA

gdi32

DeleteObject
CreateFontA

comctl32

ord17

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2ae028ba2710f175bb43d218ac7e3f7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 1.0MB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 1.0MB

.rsrc
Size: 12KB - Virtual size: 8KB