058c68905c82878d316522071fd84fac5180778f698eb53f0d0d4b6e45dc9b14

Sharing

Copy URL Twitter E-mail

General

Target

058c68905c82878d316522071fd84fac5180778f698eb53f0d0d4b6e45dc9b14
Size

172KB
MD5

d32219107ee02c93b2958f203daba1bc
SHA1

1b0a11d9329b855d1513165146c298a6eb0d33fe
SHA256

058c68905c82878d316522071fd84fac5180778f698eb53f0d0d4b6e45dc9b14
SHA512

bd1c7bcfa19bb5e92ef36703f5bd3cd9eb0acf0bb2dc8dad4a26f87be6a15fd8d3657a35e30d1ac247605735617f940f244cf7063ce49777e402617d177f13d0
SSDEEP

3072:R9DDHR59l1E2TUptVWwNCjBA7ksq73N1NDmiq4iusTZdsvKn:R9XxzTTtKOKDq73N1NuOsf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
058c68905c82878d316522071fd84fac5180778f698eb53f0d0d4b6e45dc9b14

Files

058c68905c82878d316522071fd84fac5180778f698eb53f0d0d4b6e45dc9b14
.exe windows:4 windows x86

c694809b09196b50462f47791a234b30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalHandle
GlobalLock
GlobalAlloc
OpenFile
LoadLibraryA
GetSystemDirectoryA
MulDiv
GetDiskFreeSpaceA
FreeLibrary
GetFullPathNameA
CloseHandle
GetFileSize
CreateFileA
WriteProfileStringA
GetCurrentProcessId
InterlockedIncrement
InterlockedDecrement
CreateEventA
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
InterlockedExchange
CreateThread
LeaveCriticalSection
EnterCriticalSection
SetEvent
ResetEvent
CreateSemaphoreA
GetACP
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
GetCurrentThread
WaitForMultipleObjects
GetTickCount
GetLastError
GetVersionExA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
FlushFileBuffers
GetUserDefaultLCID
EnumSystemLocalesA
GlobalUnlock
IsValidCodePage
IsValidLocale
SetStdHandle
Sleep
SetConsoleCtrlHandler
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetFilePointer
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualAlloc
FatalAppExitA
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
HeapAlloc
HeapFree
ExitProcess
GetVersion
HeapReAlloc
GetCommandLineA
GetStartupInfoA
RtlUnwind
GlobalFree
WideCharToMultiByte
lstrlenA
MultiByteToWideChar
GetProfileStringA
GetProfileIntA
GetModuleHandleA
GetProcAddress
lstrcpynA
GetLocaleInfoA
lstrcatA

user32

ShowWindow
CreateWindowExA
ReleaseDC
GetDC
RegisterClassA
LoadIconA
LoadCursorA
MsgWaitForMultipleObjects
SetWindowTextA
TranslateMessage
PeekMessageA
TranslateAcceleratorA
DispatchMessageA
wsprintfA
GetSubMenu
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
WaitMessage
GetWindowTextA
GetQueueStatus
LoadAcceleratorsA
GetWindowLongA
GetSysColor
IsDlgButtonChecked
GetDlgItemTextA
IsCharAlphaA
IsCharAlphaNumericA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
GetDlgItem
SetFocus
MessageBeep
EnableWindow
UpdateWindow
EndDialog
MessageBoxA
DialogBoxParamA
PostMessageA
GetMenuItemCount
RemoveMenu
AppendMenuA
CreatePopupMenu
KillTimer
SetTimer
InvalidateRect
GetWindowRect
SetWindowPos
PostQuitMessage
GetAsyncKeyState
BeginPaint
EndPaint
GetClientRect
GetSystemMetrics
MoveWindow
DefWindowProcA
EnableMenuItem
CheckMenuItem
GetMenu
CheckDlgButton

gdi32

CreateFontA
SelectObject
GetTextMetricsA
CreateSolidBrush
DeleteObject
PatBlt
ExtTextOutA
SetTextColor
SetBkColor
GetStockObject

comdlg32

GetOpenFileNameA

ole32

GetRunningObjectTable
CreateItemMoniker
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitializeEx
MkParseDisplayName
CoInitialize
CreateBindCtx

winmm

timeSetEvent
timeGetTime

msacm32

acmMetrics
acmFormatChooseA

olepro32

ord250

oleaut32

SysFreeString
SysAllocString

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c694809b09196b50462f47791a234b30

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

winmm

msacm32

olepro32

oleaut32

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 20KB - Virtual size: 26KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 20KB - Virtual size: 26KB

.rsrc
Size: 8KB - Virtual size: 8KB