16b118ec915b2899c6f73c74028f392c

Sharing

Copy URL Twitter E-mail

General

Target

16b118ec915b2899c6f73c74028f392c
Size

153KB
MD5

16b118ec915b2899c6f73c74028f392c
SHA1

ba5e6a6cd08cc0720ded4528abae0b1807fe38b4
SHA256

f8ed059dc99e385d643193cff805e92301e6a543329907154f434e935d6f6e89
SHA512

5befd7a6a358ae1aed88b81464310e04b659047e2a9d67e07a5a9f5ea86d89931c4beab2ca0628bbaddd30db17d68feebc326be388ab37866bee8a4c17605a36
SSDEEP

3072:frggqZneBpimddHHuhLCY/YPB0gBJiKAQh7mBv9Q2Yf9:eZeBBHHQCYAPia01QhCBzYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16b118ec915b2899c6f73c74028f392c

Files

16b118ec915b2899c6f73c74028f392c
.exe windows:4 windows x86 arch:x86

99201d51740d73080ea6bdd23d8d52d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddConsoleAliasW
CloseHandle
CompareFileTime
ConnectNamedPipe
CreateDirectoryExW
CreateWaitableTimerW
DisableThreadLibraryCalls
EnumCalendarInfoW
EraseTape
ExitProcess
ExpandEnvironmentStringsA
ExpungeConsoleCommandHistoryW
FillConsoleOutputAttribute
FindAtomA
FindCloseChangeNotification
FindFirstChangeNotificationA
FindFirstChangeNotificationW
FlushViewOfFile
FoldStringW
GenerateConsoleCtrlEvent
GetAtomNameW
GetBinaryTypeA
GetCommMask
GetCommProperties
GetCommandLineA
GetCommandLineW
GetComputerNameW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesW
GetFileTime
GetLastError
GetLocalTime
GetLocaleInfoW
GetLongPathNameA
GetModuleHandleW
GetPrivateProfileSectionA
GetPrivateProfileStringW
GetProcessWorkingSetSize
GetStartupInfoW
GetSystemDirectoryW
GetSystemInfo
GetSystemTime
GetVersion
GlobalAddAtomA
GlobalGetAtomNameW
GlobalHandle
HeapFree
HeapValidate
LoadLibraryA
LoadLibraryExA
LocalLock
LocalUnlock
LockFile
Module32First
QueueUserAPC
ReadConsoleOutputCharacterA
RegisterConsoleVDM
RtlFillMemory
SetConsoleActiveScreenBuffer
SetConsoleCP
SetConsolePalette
SetCurrentDirectoryW
SetFileAttributesA
SetLastError
SetTapeParameters
SetThreadPriority
SizeofResource
VDMConsoleOperation
VerLanguageNameW
VerifyConsoleIoHandle
VirtualLock
VirtualProtect
WaitForMultipleObjectsEx
WriteConsoleInputW
WriteConsoleInputVDMW
WritePrivateProfileStringW
_lclose
_lcreat
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynW
lstrlenW

user32

BroadcastSystemMessageA
CharToOemW
CharUpperA
CharUpperW
CheckRadioButton
CreateAcceleratorTableA
CreateAcceleratorTableW
CreateDesktopW
CreateWindowStationA
DdeKeepStringHandle
DdeQueryConvInfo
DdeQueryStringA
DefDlgProcA
DefDlgProcW
DefWindowProcW
DestroyCursor
DialogBoxParamA
DrawCaption
EnumClipboardFormats
EnumThreadWindows
FindWindowW
FreeDDElParam
GetActiveWindow
GetClassNameW
GetClientRect
GetClipCursor
GetCursor
GetCursorInfo
GetDC
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetGUIThreadInfo
GetIconInfo
GetInputState
GetMenu
GetMessageExtraInfo
GetMessagePos
GetMonitorInfoW
GetParent
GetQueueStatus
GetShellWindow
GetWindowDC
IMPQueryIMEA
InSendMessageEx
InsertMenuItemW
InvalidateRect
IsCharLowerA
IsCharUpperA
IsClipboardFormatAvailable
IsRectEmpty
IsWindowVisible
LoadCursorFromFileA
LoadImageW
MessageBoxW
OpenDesktopW
PaintDesktop
PtInRect
RegisterClipboardFormatA
ScrollDC
ScrollWindow
SendDlgItemMessageW
SendNotifyMessageW
SetLayeredWindowAttributes
ShowOwnedPopups
ShowScrollBar
ShowWindowAsync
SystemParametersInfoA
ToUnicodeEx
UnloadKeyboardLayout
UnpackDDElParam
keybd_event

gdi32

AbortPath
CreateICA
EnumEnhMetaFile
EnumFontFamiliesA
EnumICMProfilesA
GdiComment
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetCharABCWidthsFloatW
GetCharWidthFloatA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDeviceCaps
GetEnhMetaFileW
GetEnhMetaFilePaletteEntries
GetPixel
GetTextCharset
GetTextFaceA
GetTextMetricsW
GetWindowExtEx
InvertRgn
LineTo
PolyDraw
PolyPatBlt
PolyPolyline
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
SelectObject
SetColorAdjustment
SetPixelFormat
StartDocW
StartPage
StrokeAndFillPath
TextOutA
UpdateICMRegKeyA
WidenPath

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RCEq
Size: 3KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99201d51740d73080ea6bdd23d8d52d4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 57KB - Virtual size: 93KB

.RCEq Size: 3KB - Virtual size: 37KB

.rsrc Size: 85KB - Virtual size: 89KB

.reloc Size: 1024B - Virtual size: 3KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 57KB - Virtual size: 93KB

.RCEq
Size: 3KB - Virtual size: 37KB

.rsrc
Size: 85KB - Virtual size: 89KB

.reloc
Size: 1024B - Virtual size: 3KB