4a87e712e0aa39eca3a8d95441af7889490aa10604e18f8dc87b2e53afc1a8b3

Sharing

Copy URL Twitter E-mail

General

Target

4a87e712e0aa39eca3a8d95441af7889490aa10604e18f8dc87b2e53afc1a8b3
Size

636KB
MD5

09b51cda3ec69b61c732e5e44595a125
SHA1

61feb3eafafe4bce479508f9cec05b23b3f9347d
SHA256

4a87e712e0aa39eca3a8d95441af7889490aa10604e18f8dc87b2e53afc1a8b3
SHA512

da066eaba04adb28488beef1f99a36acc9a851b90fac99a025f7357e5f116d21c6b1426c66cdefdb954b86413497a8dd0e433229f9e377226371950c7211d27a
SSDEEP

6144:ExSZW5GMwDz93rA44ZkDFMAeD9VxWuYGI4+WiZgTFcQYJHj:UwDi4S0FMlD5uQK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a87e712e0aa39eca3a8d95441af7889490aa10604e18f8dc87b2e53afc1a8b3

Files

4a87e712e0aa39eca3a8d95441af7889490aa10604e18f8dc87b2e53afc1a8b3
.exe windows:4 windows x86

ded7e08f3ba496f341590ec60014fb36

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetACP
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
SetEnvironmentVariableW
SetEnvironmentVariableA
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetSystemTime
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
GetTimeZoneInformation
GetProfileStringA
TerminateProcess
GetFileType
SetStdHandle
ExitProcess
GetCommandLineA
GetStartupInfoA
RaiseException
HeapAlloc
HeapFree
RtlUnwind
SetErrorMode
GetOEMCP
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
SizeofResource
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalAlloc
GetCurrentThread
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
FindNextFileA
GetFileTime
GetFileSize
GetFileAttributesA
lstrcmpA
lstrcpynA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
SetLastError
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
MulDiv
GetVersionExA
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SuspendThread
ResumeThread
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
CreateThread
WaitForSingleObject
GetExitCodeThread
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetCurrentDirectoryA
FreeLibrary
QueryPerformanceFrequency
QueryPerformanceCounter
GetModuleFileNameA
CreateMutexA
GetLastError
CreateFileA
GetTempPathA
GetTempFileNameA
RemoveDirectoryA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
lstrcmpiA
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
lstrlenA
GetVersion
GetEnvironmentStringsW

user32

MapWindowPoints
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
ShowWindow
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetWindowDC
BeginPaint
EndPaint
DestroyMenu
ValidateRect
GetMessageA
CharUpperA
PostQuitMessage
SetCursor
IsZoomed
LoadStringA
GetClassNameA
ReleaseCapture
SetCapture
GetDCEx
LockWindowUpdate
SetParent
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetTopWindow
IsChild
GetCapture
WinHelpA
RegisterClassA
GetMenu
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
PeekMessageA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
GetNextDlgTabItem
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
PtInRect
IsRectEmpty
ChildWindowFromPointEx
LoadImageA
GetIconInfo
SetWindowRgn
KillTimer
WindowFromPoint
GetActiveWindow
InflateRect
DrawStateA
SetRectEmpty
GetCursorPos
ScreenToClient
SetTimer
GetClassInfoA
DefWindowProcA
IsWindow
IsWindowVisible
GetFocus
FindWindowA
GetWindowRect
PostMessageA
UnregisterHotKey
RegisterHotKey
IsIconic
DrawIcon
SetMenu
LoadIconA
wsprintfA
MessageBoxA
OffsetRect
CheckMenuItem
ClientToScreen
UpdateWindow
GetClientRect
EnableScrollBar
LoadCursorA
InvalidateRect
GetSubMenu
GrayStringA
TabbedTextOutA
LoadBitmapA
GetSysColorBrush
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
GetMenuStringA
CreateMenu
CreatePopupMenu
GetMenuItemID
GetMenuState
ModifyMenuA
GetMenuItemCount
AppendMenuA
GetSystemMetrics
SetFocus
AdjustWindowRectEx
EqualRect
RemovePropA
DeferWindowPos
GetDesktopWindow
GetDC
DrawTextA
ReleaseDC
DrawIconEx
DestroyIcon
SystemParametersInfoA
GetSysColor
CopyRect
FillRect
DrawEdge
SetRect
GetMenuItemInfoA
GetParent
SendMessageA
TranslateMessage
DispatchMessageA
IsWindowUnicode
GetWindowPlacement

gdi32

GetStockObject
CreateFontA
CreateRectRgn
FrameRgn
FillRgn
CombineRgn
CreatePolygonRgn
CreateRoundRectRgn
GetTextMetricsA
StretchBlt
GetTextColor
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
MoveToEx
LineTo
CreatePatternBrush
CreateRectRgnIndirect
SetRectRgn
StretchDIBits
GetCharWidthA
Escape
ExtTextOutA
TextOutA
PatBlt
RectVisible
PtVisible
GetObjectA
GetPixel
SetPixel
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
CreatePen
GetBkMode
ExcludeClipRect
CreateDIBitmap
GetTextExtentPointA
GetDeviceCaps

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA

comctl32

ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Draw
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetIcon

Sections

.text
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ded7e08f3ba496f341590ec60014fb36

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

Sections

.text Size: 288KB - Virtual size: 284KB

.rdata Size: 52KB - Virtual size: 50KB

.data Size: 12KB - Virtual size: 29KB

.rsrc Size: 280KB - Virtual size: 276KB

.text
Size: 288KB - Virtual size: 284KB

.rdata
Size: 52KB - Virtual size: 50KB

.data
Size: 12KB - Virtual size: 29KB

.rsrc
Size: 280KB - Virtual size: 276KB