TinyTerm[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

TinyTerm.exe
Size

5.2MB
MD5

5d468a36ce69d5d60f22e3eabad964c5
SHA1

5e5c0f2909f1f1f79eda2fb761eeadf687369e92
SHA256

93a56d4e1c6fa1cfd7fd8a85d277eb2019968c2fcf2c8fb42edfc45ab31b9402
SHA512

2e91a5ee89604afd36eafbbf81a9dea395cbadbb4a81d534a7d48520d83a997725182d86bdbc3c6e357b0a595784a0ee7dcc8a88c71dad6663209fb68473b04f
SSDEEP

98304:h9vR88FK80/FoJptoU3OavjYF2VKMx50N8q5aQcUPn8HIR:p8YXpoSvjY0dW2ecSnfR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TinyTerm.exe

Files

TinyTerm.exe
.exe windows x86

c29e3cbb1eec10e6d02f2b819842631d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GlobalFree
GlobalUnlock
GetExitCodeProcess
_lcreat
GetTempFileNameA
GetTempPathA
lstrlenA
lstrcatA
ExitProcess
Sleep
GlobalLock
GlobalAlloc
_lwrite
SetFileTime
SetFileAttributesA
WriteFile
GetCurrentProcessId
GetWindowsDirectoryA
lstrcpyA
GetLocaleInfoA
GetFileAttributesA
_lopen
_llseek
_lread
_lclose
CreateFileA
GetLastError
GetFileTime
GetVersion
GetModuleFileNameA
CloseHandle
GetCommandLineA
HeapReAlloc
CompareStringA
SetEndOfFile
CompareStringW
GetProcAddress
GetTimeZoneInformation
LoadLibraryA
SetStdHandle
GetStringTypeW
FlushFileBuffers
RtlUnwind
GetFileType
GetStringTypeA
SetHandleCount
GetEnvironmentStringsW
FileTimeToDosDateTime
GetStdHandle
TerminateProcess
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
SetFilePointer
ReadFile
HeapFree
HeapAlloc
CreateDirectoryA
DeleteFileA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
FindFirstFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
LCMapStringW
VirtualFree
UnhandledExceptionFilter
GetCurrentProcess
HeapSize
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
GetACP
VirtualAlloc
GetCPInfo
GetOEMCP
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA

user32

CreateDialogParamA
LoadCursorA
RegisterClassA
LoadStringA
LoadIconA
DestroyWindow
ScreenToClient
MessageBoxA
SetWindowTextA
GetWindowRect
MoveWindow
ShowWindow
InvalidateRect
GetDlgItem
SetWindowPos
UpdateWindow
GetSystemMetrics
EndPaint
BeginPaint
SetRect

gdi32

CreateCompatibleDC
GetStockObject
CreateSolidBrush
DeleteDC
DeleteObject
BitBlt
ExtTextOutA
SetBkColor
CreateCompatibleBitmap
LineTo
MoveToEx
SelectObject
CreatePen

mpr

WNetGetConnectionA

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c29e3cbb1eec10e6d02f2b819842631d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

mpr

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 3KB