Instale_SAFOResumen_v2[.]0_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

Instale_SAFOResumen_v2.0_JC.exe
Size

1.7MB
MD5

c14e952a9f505a7f780740d1e3f80b3c
SHA1

378585b6e9d9bba2c6ced479019162b096d4930f
SHA256

959b5d70863cb4eea556651730399902dbe84a951b050dfcd598c542b70e589f
SHA512

1f20f95ad72c2ebf866417c9c980dd2a45adf3ec6e3f47b8520b27e605073c44013fd63082bb6f5fc9c195620193e3016af2ee1fe52e6582af49fc5e609ba42b
SSDEEP

49152:pTSwr4H0J/6EBC4AEG8WOZKow8SJBj0uR4lpvYMiKoQ:pTSwr4yAWKow8GBj+lY9RQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Instale_SAFOResumen_v2.0_JC.exe

Files

Instale_SAFOResumen_v2.0_JC.exe
.exe windows x86

c895363a5aad4788b805f54872312ade

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
LoadLibraryExW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
InterlockedDecrement
InterlockedIncrement
LoadLibraryW
GetCurrentThreadId
CloseHandle
GetShortPathNameW
CreateEventW
lstrcmpiW
GetCommandLineW
SetCurrentDirectoryW
CreateThread
WaitForSingleObject
SetEvent
GetDriveTypeW
RaiseException
SetFileAttributesW
CopyFileW
GetExitCodeThread
GetCurrentProcess
FlushInstructionCache
SetLastError
GetModuleHandleW
GetProcAddress
FreeLibrary
GetLastError
WriteFile
CreateFileW
FindResourceExW
FindResourceW
LoadResource
LockResource
GetCurrentProcessId
SizeofResource
WriteConsoleW
SetStdHandle
GetConsoleMode
GetConsoleCP
RtlUnwind
LCMapStringW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetTickCount
lstrlenW
MultiByteToWideChar
GetFileAttributesW
WideCharToMultiByte
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
LocalAlloc
LocalFree
InterlockedExchange
LoadLibraryA
GetTempPathW
GetTempFileNameW
DeleteFileW
FindFirstFileW
FindNextFileW
RemoveDirectoryW
FindClose
CreateDirectoryW
GetLogicalDriveStringsW
GetFileSize
ReadFile
GetDiskFreeSpaceExW
GetEnvironmentVariableW
SetFilePointer
SetEndOfFile
EnumResourceLanguagesW
GetLocaleInfoW
GetSystemDefaultLangID
GetUserDefaultLangID
GetSystemTime
SystemTimeToFileTime
FileTimeToSystemTime
CreateProcessW
GetExitCodeProcess
GetWindowsDirectoryW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
OutputDebugStringW
InitializeCriticalSection
GetLocalTime
FlushFileBuffers
GetSystemDirectoryW
MulDiv
TerminateThread
CreateNamedPipeW
ConnectNamedPipe
FormatMessageW
GetFileTime
GetStdHandle
GetStringTypeW
GetLocaleInfoA
MoveFileW
ResetEvent
GlobalFree
GetVersion
Sleep
GlobalLock
GlobalUnlock
GlobalAlloc
CompareFileTime
CopyFileExW
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedCompareExchange
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
InterlockedPopEntrySList
EncodePointer
DecodePointer
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
HeapCreate
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree

user32

SetWindowPos
MapWindowPoints
GetClientRect
GetParent
GetWindowRect
GetMonitorInfoW
MonitorFromWindow
GetWindowLongW
GetWindow
ShowWindow
EnableWindow
EndDialog
CreateDialogParamW
MsgWaitForMultipleObjects
PeekMessageW
TranslateMessage
DispatchMessageW
SendMessageW
GetForegroundWindow
LoadStringW
SetForegroundWindow
EnumWindows
GetWindowThreadProcessId
IsWindowVisible
CreateWindowExW
ScreenToClient
PostQuitMessage
CallWindowProcW
GetPropW
RedrawWindow
InvalidateRect
SetWindowTextW
IsWindow
SetFocus
PostMessageW
GetSystemMetrics
GetDesktopWindow
GetSystemMenu
EnableMenuItem
LoadImageW
ModifyMenuW
MessageBeep
ExitWindowsEx
GetScrollRange
GetScrollPos
GetDlgCtrlID
SetPropW
RemovePropW
GetDC
TrackPopupMenu
LoadMenuW
GetSubMenu
SetTimer
KillTimer
ReleaseDC
OpenClipboard
CloseClipboard
EmptyClipboard
SetClipboardData
UnregisterClassA
GetWindowTextW
GetDlgItem
DialogBoxParamW
MessageBoxW
GetActiveWindow
SetWindowLongW
DefWindowProcW
CharNextW
DestroyWindow
GetWindowTextLengthW
DestroyMenu

gdi32

CreateFontIndirectW
DeleteObject
DeleteDC
SetBkMode
GetStockObject
GetDeviceCaps
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
BitBlt
GetObjectW

shell32

SHGetFolderPathW
ShellExecuteW
ShellExecuteExW
SHBrowseForFolderW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation

ole32

CoCreateGuid
CreateStreamOnHGlobal
CoTaskMemFree
StgCreateDocfileOnILockBytes
CoTaskMemRealloc
CoTaskMemAlloc
CoUninitialize
CoInitialize
CreateILockBytesOnHGlobal
CoCreateInstance

oleaut32

OleLoadPicture
VarUI4FromStr

shlwapi

PathFileExistsW

comctl32

PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

mpr

WNetAddConnection2W

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c895363a5aad4788b805f54872312ade

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

oleaut32

shlwapi

comctl32

version

mpr

Sections

.text Size: 260KB - Virtual size: 259KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 7KB - Virtual size: 16KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 260KB - Virtual size: 259KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 7KB - Virtual size: 16KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 18KB - Virtual size: 18KB