40917f2dc142d3847c726208b0407d1fea9b4337bf9c808e2cd2c71311d0a6e4

Sharing

Copy URL Twitter E-mail

General

Target

40917f2dc142d3847c726208b0407d1fea9b4337bf9c808e2cd2c71311d0a6e4
Size

152KB
MD5

4c3f7017d1da07f22f2489ea120e2a1c
SHA1

799bcdc4b7179ef5688f03eca8acbf45b72d993b
SHA256

40917f2dc142d3847c726208b0407d1fea9b4337bf9c808e2cd2c71311d0a6e4
SHA512

744297d52ee628f1505eed3e695f292b85dfeb3a8a7e0b545c4d3a5b21405bb22778589f168e8a8a3c8097a34405d8b35cdf65905e2b1e57d767ca2d0c84e0a1
SSDEEP

3072:V1FBho4ODRP3QPLFDNgB4d2AgB2FK6Bm+/iv9Y:7FBho4ODR/QPL5dd2WjKv9Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40917f2dc142d3847c726208b0407d1fea9b4337bf9c808e2cd2c71311d0a6e4

Files

40917f2dc142d3847c726208b0407d1fea9b4337bf9c808e2cd2c71311d0a6e4
.exe windows:6 windows x64

990505c22d6b25bd12d7440054279add

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

Sleep
FreeLibrary
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
GetLastError
GetModuleHandleW
GetStartupInfoW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WideCharToMultiByte
RaiseException
IsDebuggerPresent
GetCurrentThreadId
GetConsoleWindow
lstrcpynA
CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
CreateEventA
CreateThread
GetTickCount
GetModuleFileNameA
GetModuleHandleA
AllocConsole
FreeConsole
SetConsoleCtrlHandler
GlobalUnlock
GlobalLock
lstrcpynW
lstrcatW
lstrlenW
MultiByteToWideChar
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
LockResource
GlobalAlloc
GlobalReAlloc
GlobalFree
CreateFileA
GetFileSize
ReadFile
LoadResource
SizeofResource
FindResourceA
GetProcAddress
LoadLibraryA

winmm

mciSendStringA

vcruntime140d

__std_exception_destroy
__std_exception_copy
__current_exception_context
__current_exception
__std_type_info_destroy_list
__C_specific_handler_noexcept
__C_specific_handler
wcsstr
wcsrchr
memset
_CxxThrowException
__std_terminate
memcpy
__CxxFrameHandler3
__vcrt_LoadLibraryExW
__vcrt_GetModuleHandleW
__vcrt_GetModuleFileNameW

ucrtbased

_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__setusermatherr
_set_app_type
_seh_filter_exe
_CrtDbgReportW
_CrtDbgReport
sin
floor
cos
malloc
free
_wcsupr_s
_mbsrchr
fclose
freopen_s
__acrt_iob_func
exit
_time64
_getch
_kbhit
rand
srand
__stdio_common_vsprintf_s
_initterm
_initterm_e
_exit
_set_fmode
__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_configthreadlocale
_set_new_mode
__p__commode
_callnewh
_seh_filter_dll
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
strcpy_s
strcat_s
terminate
_free_dbg
_wmakepath_s
_wsplitpath_s
wcscpy_s
system

user32

GetWindowTextA
GetWindowTextLengthA
SystemParametersInfoA
GetClientRect
SetForegroundWindow
UpdateWindow
DrawTextA
EnableWindow
GetKeyState
GetFocus
SetFocus
GetClassInfoExA
GetMessageA
DestroyIcon
LoadCursorA
ScreenToClient
AdjustWindowRectEx
GetWindowRect
ValidateRect
ReleaseDC
GetDC
TranslateMessage
DispatchMessageA
PeekMessageA
SendMessageA
PostMessageA
DefWindowProcA
PostQuitMessage
UnregisterClassA
RegisterClassExA
CreateWindowExA
DestroyWindow
ShowWindow
SetWindowPos
IsWindowVisible
MessageBoxA

gdi32

GetROP2
CreateCompatibleDC
PolyBezier
Polyline
Polygon
TextOutA
MoveToEx
GetObjectA
ExtCreatePen
SetROP2
SetPolyFillMode
SetPixelV
SelectPalette
RoundRect
RealizePalette
Rectangle
Pie
LineTo
GetTextExtentPoint32A
GetPolyFillMode
GetPixel
GetDIBits
GetCurrentObject
GetClipRgn
GetBkMode
BitBlt
FillRgn
ExtFloodFill
Ellipse
CreateRectRgn
CreateBrushIndirect
CreateBitmap
Arc
GdiSetBatchLimit
CreateDIBSection
SetWorldTransform
SetTextColor
SetGraphicsMode
SetBkMode
SetBkColor
SelectObject
SelectClipRgn
GetStockObject
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontIndirectA

shell32

ExtractIconA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.msvcjmc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 337B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

990505c22d6b25bd12d7440054279add

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winmm

vcruntime140d

ucrtbased

user32

gdi32

shell32

ole32

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 6KB

.pdata Size: 11KB - Virtual size: 11KB

.idata Size: 10KB - Virtual size: 9KB

.msvcjmc Size: 512B - Virtual size: 288B

.00cfg Size: 512B - Virtual size: 337B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.textbss
Size: - Virtual size: 64KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 6KB

.pdata
Size: 11KB - Virtual size: 11KB

.idata
Size: 10KB - Virtual size: 9KB

.msvcjmc
Size: 512B - Virtual size: 288B

.00cfg
Size: 512B - Virtual size: 337B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB