1852d47d0959119f816a13e9ef1e9b00

Sharing

Copy URL Twitter E-mail

General

Target

1852d47d0959119f816a13e9ef1e9b00
Size

3.8MB
MD5

1852d47d0959119f816a13e9ef1e9b00
SHA1

5af5ce3779197ebac630bad18695b0b3c52addf0
SHA256

b4030f54e19adcc74974d815133c5fc50b232797ae4311a6d739dda4606b0a04
SHA512

39f95060cd2fc0de8c85260042c52d3622ef1765fa9b87c8deb5e15fd8a0a88ff38c095978f615ff6b10b05c5e670c71347b0e64c47c0d411109c170de00f1b0
SSDEEP

98304:/R3dY8mD6BHoxrdJ0V+nDcWZS+u9b7D3VXHR:/R3uF6xoxrdJ0wDcWZ5U7D3V3R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1852d47d0959119f816a13e9ef1e9b00

Files

1852d47d0959119f816a13e9ef1e9b00
.exe windows:4 windows x86 arch:x86

2935ff1fb97870842a7ba6cad28579ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
GetConsoleKeyboardLayoutNameA
GetTickCount
IsBadCodePtr
ChangeTimerQueueTimer
GetExitCodeThread
GetFileType
OpenEventA
DebugBreak
GetVersionExA
WriteConsoleOutputCharacterA
SetFilePointerEx
SetCalendarInfoA
UnlockFile
Thread32Next
GetConsoleTitleA
LZInit
SetTapeParameters
GetLocalTime
SetComputerNameExW
HeapCreate
GetVolumePathNamesForVolumeNameA
lstrlen
ReplaceFile
GetFileSize
GetConsoleCommandHistoryLengthA
LoadModule
LocalSize
VirtualQueryEx
ReadConsoleOutputAttribute
OpenSemaphoreA
HeapLock
GetDiskFreeSpaceA
GetDateFormatA
SetUserGeoID
VirtualAlloc
GetProcessIoCounters
GetEnvironmentVariableA
LocalLock
DisconnectNamedPipe
GlobalUnlock
GetComputerNameExA
SetDllDirectoryA
GetTempPathA
HeapSize
FlushFileBuffers
GetCommState
Thread32First
GetLogicalDriveStringsA
GetWindowsDirectoryA
FlushFileBuffers
GetProcessIoCounters
FindVolumeClose
SetFileAttributesA
GlobalUnWire
GetTempPathA
EnumTimeFormatsA
SetProcessPriorityBoost
GetProfileStringA
SetTimeZoneInformation
UpdateResourceA
ReadConsoleOutputA
SetEnvironmentVariableA
lstrcpy
GetNamedPipeHandleStateA
GetDefaultCommConfigA
CopyFileExA
GetLogicalDrives
ProcessIdToSessionId
ReleaseMutex
GetProcessWorkingSetSize
SetFileValidData
GetProcessHeaps
GetFullPathNameA
HeapFree
DeleteTimerQueueTimer
SetFileShortNameA
ConnectNamedPipe
GetConsoleAliasesA
GetCommandLineA
GetCurrentProcess
GetStartupInfoA
UpdateResourceA
LocalHandle
ReleaseSemaphore
SetConsoleCP
GetFileAttributesExA
GetVersion
GetConsoleCharType
DeleteTimerQueue
GetThreadLocale
GetEnvironmentStringsA
SetVolumeMountPointA
Module32Next
HeapQueryInformation
CancelWaitableTimer
AddAtomA
SetVolumeLabelA
HeapWalk
OpenFileMappingA
BeginUpdateResourceA
GetExpandedNameA
GetPrivateProfileStructA
WaitForMultipleObjectsEx
CloseConsoleHandle
GetFileAttributesA
ReadConsoleOutputCharacterA
SetInformationJobObject
DeleteFileA
RemoveDirectoryA
IsSystemResumeAutomatic
VirtualAllocEx
GetSystemWindowsDirectoryA
FillConsoleOutputCharacterA
WriteConsoleInputA
GetSystemTimes
SetFilePointer
PeekConsoleInputA
WideCharToMultiByte
FileTimeToDosDateTime
GetCurrentThreadId
IsProcessorFeaturePresent
GetCurrentActCtx
ClearCommBreak
GetProcessPriorityBoost
FindFirstVolumeA
FindFirstFileExW
LCMapStringA
OpenMutexA
OpenWaitableTimerA
GetThreadSelectorEntry
VirtualFree
GetConsoleSelectionInfo
GetFileInformationByHandle
GetVolumePathNameA
OpenWaitableTimerA
GetCommMask
GetFileSizeEx
OpenFileMappingA
UnmapViewOfFile
OpenMutexA
ReadConsoleOutputAttribute
GetFileTime
IsDebuggerPresent
SetLastError
_lcreat
SetCommTimeouts
LocalShrink
GetStringTypeA
SetConsoleCursorMode
GetSystemDirectoryA
UnregisterConsoleIME
PurgeComm
ReadConsoleInputA
FlushConsoleInputBuffer
WriteConsoleA
ReadConsoleA
LZInit
GetProcessPriorityBoost
WriteConsoleOutputA
GetProcessHeap
ReadConsoleOutputA
RegisterWaitForSingleObjectEx
LocalAlloc
CreateFileMappingA
GetFileAttributesExA
SizeofResource
GetProcessId
ResumeThread
GetFileAttributesExA
SearchPathA
WriteConsoleOutputCharacterA
GetDiskFreeSpaceExA
WideCharToMultiByte
GetLogicalDriveStringsA
LZSeek
GetVolumeInformationA
TransmitCommChar
CreateSocketHandle
VirtualQueryEx
SetWaitableTimer
SetHandleCount
ExitVDM
LocalHandle
GetTempPathA
GetProcessId
LocalFlags
SetConsoleLocalEUDC
TerminateJobObject
GetVolumeNameForVolumeMountPointA
GlobalSize
GetLogicalDrives
GetDiskFreeSpaceExA
OpenWaitableTimerA
ExpungeConsoleCommandHistoryA
FindFirstVolumeMountPointW
GetNumberOfConsoleMouseButtons
SetFileApisToOEM
GetModuleHandleA
ReadConsoleA
SetCommMask
OpenWaitableTimerA
GetConsoleOutputCP
FindResourceExW
GetConsoleKeyboardLayoutNameA

user32

ClipCursor
PtInRect
GetGUIThreadInfo
CharUpperBuffA
FlashWindowEx
EnumDisplayMonitors
RegisterShellHookWindow
TabbedTextOutA
GetKBCodePage
IsCharUpperA
GetMouseMovePointsEx
CloseWindowStation
SetWindowStationUser
DrawMenuBar
GetScrollInfo
RegisterWindowMessageA
SendMessageCallbackA
GetKeyNameTextA
SetDlgItemInt
SetWindowTextA
GetWindowRgn
CreateAcceleratorTableA
AppendMenuA
CreateAcceleratorTableA
LoadLocalFonts
InsertMenuItemW
ModifyMenuA
LoadCursorFromFileA
CheckDlgButton
TrackMouseEvent
TabbedTextOutA
EndDeferWindowPos
GetDlgItemTextA
LoadStringA
DrawCaptionTempA
GetMenuItemRect
ScrollWindow
LockWindowStation
SetForegroundWindow
GetAncestor
RealGetWindowClassA
BeginPaint
SetMenuItemInfoA
CreatePopupMenu
SendMessageCallbackA
GetAltTabInfo
RegisterWindowMessageA
DrawCaptionTempA
CreateIconFromResourceEx
DestroyCursor
GetPriorityClipboardFormat
GetWindowRect
CloseClipboard
SetMenuContextHelpId
GetProcessDefaultLayout
GetCapture
BlockInput
SendDlgItemMessageA
HiliteMenuItem
GetDlgItemTextA
IsDialogMessage
GetWindowRgn
DrawMenuBar
GetKeyboardLayoutNameA
IntersectRect
MessageBoxTimeoutW
SendNotifyMessageA
GetComboBoxInfo
DestroyWindow
OpenDesktopA
GetAsyncKeyState
TabbedTextOutA
SetScrollRange
SendIMEMessageExA
CalcMenuBar
EnumWindowStationsA
GetWindowTextLengthA
IsDialogMessageA
GetSubMenu
IsWindowUnicode
LoadBitmapA
SendMessageCallbackA
RecordShutdownReason
CharNextA
EnterReaderModeHelper
DisplayExitWindowsWarnings
GetWindowTextLengthA
ArrangeIconicWindows
LoadMenuIndirectA
IsWindowUnicode
GetKBCodePage
ImpersonateDdeClientWindow
CreatePopupMenu
GetMenuItemCount
GetWindowTextLengthW
GetMonitorInfoA
ReplyMessage
DlgDirListA
GetPropA
DlgDirSelectExA
GetClassLongA
HiliteMenuItem
GetMonitorInfoA
GetWindowTextLengthA
MessageBoxIndirectA
GetKeyboardLayoutNameA
GetMenuItemInfoA
ReleaseDC
GetClipboardFormatNameA
InflateRect
IsMenu
GetUserObjectSecurity
SetRect
EnumPropsA
PostThreadMessageA
MessageBeep
GetWindowTextLengthA
IsCharAlphaA
TileChildWindows
DestroyMenu
SetWindowTextA
GetDlgItemInt
GetMonitorInfoA
UnregisterMessagePumpHook
SetSysColorsTemp
CreateWindowExA
CascadeChildWindows
LockWorkStation
SetMenuContextHelpId
SetRect
RecordShutdownReason
ShowWindowAsync
GetMessagePos
OemToCharA
GetProcessDefaultLayout
DeleteMenu
ReplyMessage
GetInputState
RegisterDeviceNotificationA
UnregisterMessagePumpHook
GetTitleBarInfo
ClipCursor
MapVirtualKeyA
RegisterRawInputDevices
GetComboBoxInfo
CountClipboardFormats
LoadIconA
CharToOemA
GetClassLongA
GetCaretPos
GetClassInfoExA
SendIMEMessageExA
PrivateExtractIconsA
EnumDisplaySettingsExA
SubtractRect
IsIconic
GetCapture
LockSetForegroundWindow
ReleaseCapture
TileWindows
ScrollWindowEx
TranslateMDISysAccel
TileChildWindows
CreateDialogParamA
MonitorFromPoint
ToUnicode
GetClassWord
UnhookWindowsHookEx
SetProcessDefaultLayout
IsWinEventHookInstalled
IsCharUpperA
ReplyMessage
GetComboBoxInfo
GetWindowLongA
EnumChildWindows
GetTitleBarInfo
PeekMessageA
ClipCursor
DlgDirListComboBoxW
GetMenuItemInfoA
CreateAcceleratorTableA
ShowWindow
SetCursor
CreateDialogIndirectParamA
GetMessagePos
GetClassNameA
UnpackDDElParam
GetWindowTextLengthW
WaitForInputIdle
EnableScrollBar
FreeDDElParam
SendNotifyMessageA
SetLayeredWindowAttributes
SetForegroundWindow
DragObject
GetClassNameA
ScrollDC
GetClassLongA
QuerySendMessage
UnionRect
CopyRect
MessageBoxExA

tapi32

lineDrop

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 8.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2935ff1fb97870842a7ba6cad28579ef

Headers

File Characteristics

Imports

kernel32

user32

tapi32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.data Size: 1.8MB - Virtual size: 8.0MB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 41KB - Virtual size: 40KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.data
Size: 1.8MB - Virtual size: 8.0MB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 41KB - Virtual size: 40KB

.reloc
Size: 2KB - Virtual size: 1KB