290b60df2475780d11141dfba7f806749d85e731c2872460aba3d5b9a619c907

Sharing

Copy URL

Twitter E-mail

General

Target

290b60df2475780d11141dfba7f806749d85e731c2872460aba3d5b9a619c907
Size

1.7MB
MD5

eedbe9e6b4e99719cf3494a5768ceea4
SHA1

f0566d84a2cbaead33f1221782388924a46ffbfa
SHA256

290b60df2475780d11141dfba7f806749d85e731c2872460aba3d5b9a619c907
SHA512

e948b124c3f018f4c1aa133d22b8a0d2de6ded1078dea6ce86ded37c6e97af9bab9dc9786f0d5ce71de9f51f1c53e47740ab10d0a16877e71fbc52bd7a75888b
SSDEEP

49152:aFPIlPPPPPPPPPPPPPPkhgTi7Zu05OPtkKg+2GzTmze:fTi7Zu05Olk82ITye

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
290b60df2475780d11141dfba7f806749d85e731c2872460aba3d5b9a619c907

Files

290b60df2475780d11141dfba7f806749d85e731c2872460aba3d5b9a619c907
.exe windows:5 windows x86

43645718e4865ce39766661669770b6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameA
LeaveCriticalSection
LoadResource
LockResource
SizeofResource
lstrcatA
lstrcpyA
CloseHandle
ResumeThread
SuspendThread
TerminateThread
GetCommandLineA
CreateFileA
CreateFileMappingA
GetFileSize
GetModuleFileNameA
MapViewOfFile
UnmapViewOfFile
GetProcAddress
FreeLibrary
InterlockedCompareExchange
InterlockedExchange
FindResourceA
EnterCriticalSection
VirtualFree
CreateThread
VirtualAlloc
lstrcmpA
InitializeCriticalSection
GetModuleHandleA
ExitProcess
WaitForMultipleObjects
DeleteCriticalSection
LoadLibraryExA

user32

SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetFocus
SetTimer
SetWindowTextA
ShowWindow
TrackPopupMenu
TranslateMessage
wsprintfA
DestroyIcon
GetSystemMetrics
GetWindowLongA
ScreenToClient
SetWindowLongA
SetWindowPos
KillTimer
IsWindowVisible
IsDialogMessageA
GetWindowRect
GetSubMenu
GetMessageA
GetDlgItemTextA
GetDlgItem
GetDesktopWindow
GetCursorPos
EndDialog
PostQuitMessage
PostMessageA
MessageBoxA
LoadMenuA
MoveWindow
LoadImageA
EnableWindow
DispatchMessageA
DialogBoxParamA
CreateDialogParamA
LoadIconA

comctl32

ImageList_AddIcon
InitCommonControls
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Remove
ImageList_Create

gdi32

CreateSolidBrush
SetTextColor
SetBkMode

shell32

ShellExecuteExA
ShellExecuteA
ExtractIconA

urlmon

URLDownloadToFileA

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43645718e4865ce39766661669770b6a

Headers

File Characteristics

Imports

kernel32

user32

comctl32

gdi32

shell32

urlmon

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 1.6MB - Virtual size: 1.6MB

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1.6MB - Virtual size: 1.6MB