988e6aaafef7cee4dadf263f8998f9a272e7842abb971dfaa139858d977213b1

Sharing

Copy URL Twitter E-mail

General

Target

988e6aaafef7cee4dadf263f8998f9a272e7842abb971dfaa139858d977213b1
Size

1.3MB
MD5

b9ed0e27fd8652d897b108430ce5f90a
SHA1

c0a2c62c89c55e04420a71c43eed03fbd47423d6
SHA256

988e6aaafef7cee4dadf263f8998f9a272e7842abb971dfaa139858d977213b1
SHA512

5b6b76376a88a2961a969ba07fb49457fbe3cb0c4cc371027868c9df12d2c896a2d0d563e990e46744b6cdadb4fbe1a3fdf449280fd38fedfc254d14f2978d48
SSDEEP

24576:ycvGUXocz2EaOwuMH+wXs79CbAJ2n1duoQ7mAJINQXlG3mBPMq6:ptzTVwlHi81duDSAJqWBPMq6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
988e6aaafef7cee4dadf263f8998f9a272e7842abb971dfaa139858d977213b1

Files

988e6aaafef7cee4dadf263f8998f9a272e7842abb971dfaa139858d977213b1
.exe windows x86

bca9d407c1135efbdfa23b18bb82c966

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperW
DestroyWindow
PostMessageA
EndDialog
SetTimer
SendMessageA
LoadIconA
KillTimer
DialogBoxParamA
ShowWindow
SetWindowLongA
GetWindowLongA
GetDlgItem
DialogBoxParamW
SetWindowTextW
SetWindowTextA
MessageBoxW
CharUpperA

shell32

ShellExecuteExA

oleaut32

SysStringLen
SysAllocStringLen
VariantClear

kernel32

FindNextFileA
WriteConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapSize
GetProcessHeap
GetStringTypeW
GetFileType
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
HeapReAlloc
LCMapStringW
HeapFree
HeapAlloc
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
AreFileApisANSI
MultiByteToWideChar
GetLastError
WideCharToMultiByte
GetModuleFileNameA
GetModuleFileNameW
FreeLibrary
LoadLibraryExW
FormatMessageW
LocalFree
FormatMessageA
ReadFile
SetLastError
WriteFile
SetFileTime
SetFilePointer
SetEndOfFile
CreateFileW
CreateFileA
CloseHandle
GetFileSize
CreateDirectoryW
RemoveDirectoryW
GetTempPathW
GetCurrentThreadId
GetSystemDirectoryW
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesW
GetTempPathA
DeleteFileA
DeleteFileW
SetFileAttributesA
GetCurrentDirectoryW
SetCurrentDirectoryW
GetProcAddress
RemoveDirectoryA
GetCurrentProcessId
GetModuleHandleW
CreateDirectoryA
GetTickCount
FindFirstFileW
FindFirstFileA
FindNextFileW
DecodePointer
FindClose
GetFileAttributesW
GetModuleHandleA
GetFileInformationByHandle
GetFileAttributesA
lstrlenW
lstrcatW
GetVersionExA
ReleaseSemaphore
InitializeCriticalSection
WaitForSingleObject
SetEvent
ResetEvent
CreateSemaphoreA
CreateEventA
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
Sleep
DeleteCriticalSection
GetCurrentProcess
GetProcessAffinityMask
GetSystemInfo
GlobalMemoryStatus
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
GetCommandLineW
CreateThread
CreateProcessW
GetTempFileNameW
CreateProcessA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RaiseException
RtlUnwind

Sections

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bca9d407c1135efbdfa23b18bb82c966

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

oleaut32

kernel32

Sections

.text Size: 166KB - Virtual size: 165KB

.rdata Size: 42KB - Virtual size: 42KB

.data Size: 5KB - Virtual size: 15KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 166KB - Virtual size: 165KB

.rdata
Size: 42KB - Virtual size: 42KB

.data
Size: 5KB - Virtual size: 15KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 9KB - Virtual size: 9KB