1ad953eb142b9df9f06ce229c231c39b

Sharing

Copy URL Twitter E-mail

General

Target

1ad953eb142b9df9f06ce229c231c39b
Size

156KB
MD5

1ad953eb142b9df9f06ce229c231c39b
SHA1

39744e4d5bfbee8b8f83128fa683bedf2c884d57
SHA256

e6e3fedeb7a8b33e9cac8b5f610c9f5467b1a9ed738d6fc6db660c732a4810c2
SHA512

2a488b2001798d42d2c1b0207091cb36494e66f74447828e006b17a47f9dd2f651d8f002ef3bcb0517628fee7e5cae6ac1cee74c65c933b74e10ae83fd0bbddc
SSDEEP

3072:Ii9KvYGblGsrdk9Gdxk59DGsxTVSK8eoDzZzLzJGgJ+o2b62:Ii9KvYq3rdk9X9Dbx8K8dzZzLzJfC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ad953eb142b9df9f06ce229c231c39b

Files

1ad953eb142b9df9f06ce229c231c39b
.exe windows:4 windows x86 arch:x86

ef0b85630a670b026c1bafd4214cf98b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
TlsGetValue
SetStdHandle
TlsAlloc
TlsSetValue
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
VirtualFree
HeapCreate
GetVersion
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
HeapAlloc
HeapReAlloc
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindNextFileA
RemoveDirectoryA
FormatMessageA
GetTempPathA
Sleep
FindFirstFileA
FindClose
OutputDebugStringA
DebugBreak
GetSystemDirectoryA
ExitProcess
FreeLibrary
CreateThread
GetShortPathNameA
MoveFileA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
SetFileAttributesA
LocalFree
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
SetThreadLocale
ReleaseMutex
CreateMutexA
GetLastError
DeleteFileA
MoveFileExA
WriteFile
ReadFile
CloseHandle
CreateFileA
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
LoadLibraryA
lstrcpynA
GetModuleHandleA
GetProcAddress
GetVersionExA
InterlockedDecrement
InterlockedIncrement
GetSystemDefaultLangID
SetLastError
lstrlenA

user32

GetDlgItemTextA
IsDlgButtonChecked
PostQuitMessage
SetPropA
SetCursor
GetPropA
RemovePropA
GetMenu
AdjustWindowRectEx
SetWindowPos
MapWindowPoints
GetDlgCtrlID
GetParent
GetCapture
IsWindowEnabled
DrawEdge
GetWindow
CheckDlgButton
SetDlgItemTextA
LoadStringA
GetSystemMetrics
GetWindowRect
wvsprintfA
CharNextA
SendMessageTimeoutA
FindWindowA
ClientToScreen
DrawFocusRect
CreateDialogParamA
InvalidateRect
DestroyWindow
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
MessageBoxA
IsDialogMessageA
GetDlgItem
SendMessageA
FillRect
FrameRect
CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA
GetClassInfoExA
LoadCursorA
wsprintfA
RegisterClassExA
ReleaseDC
EndPaint
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
ReleaseCapture
SetCapture
PtInRect
GetDC
InflateRect
BeginPaint
ShowWindow
PostMessageA
MoveWindow
SetWindowRgn
ScreenToClient
SetRectEmpty
GetClientRect
DrawFrameControl
GetWindowTextA
DrawTextA
IsRectEmpty
CopyRect
KillTimer
LoadImageA
GetWindowDC
DrawIconEx
SetWindowTextA
GetCursorPos
SetTimer
UpdateWindow
DefWindowProcA
IsWindow
OffsetRect
SystemParametersInfoA
EnableWindow

gdi32

SetViewportExtEx
OffsetWindowOrgEx
SetMapMode
Polygon
SetPixelV
GetClipBox
DeleteObject
CreateFontIndirectA
GetObjectA
GetStockObject
DeleteDC
StretchBlt
SetStretchBltMode
ExtTextOutA
SetBkColor
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
SetTextColor
SetBkMode
FrameRgn
OffsetRgn
CreateSolidBrush
ExcludeClipRect
SetWindowOrgEx
BitBlt
EqualRgn
CombineRgn
CreateRectRgn
CreateRoundRectRgn
CreatePolygonRgn
SetWindowExtEx
GetViewportOrgEx
SetViewportOrgEx

advapi32

DeleteService
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegEnumValueA
RegQueryInfoKeyA
FreeSid
OpenServiceA
RegCloseKey
OpenSCManagerA
CloseServiceHandle

shell32

ShellExecuteA

ole32

OleUninitialize
CoInitialize
CoUninitialize
OleInitialize

oleaut32

OleTranslateColor

shlwapi

SHDeleteKeyA

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create
ImageList_Draw
ImageList_SetBkColor
ImageList_GetIconSize
InitCommonControlsEx
_TrackMouseEvent
ImageList_LoadImageA

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef0b85630a670b026c1bafd4214cf98b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 36KB - Virtual size: 40KB

.rsrc Size: 28KB - Virtual size: 26KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 36KB - Virtual size: 40KB

.rsrc
Size: 28KB - Virtual size: 26KB