12e84018c410f22ee7d4f2007cb3d12a

Sharing

Copy URL Twitter E-mail

General

Target

12e84018c410f22ee7d4f2007cb3d12a
Size

252KB
MD5

12e84018c410f22ee7d4f2007cb3d12a
SHA1

ba17ff5a4959e6335a83caf6e9c1557a1d5f42ae
SHA256

64652f7184d5e4e92d56dad7652303d30225d39a6adcf508aab0495d52fc4b0d
SHA512

da9483ae79ab6285ec1b77846c6d7080ac93417646671d51689b561df02d2606c8b9c97798da9c373a2a6fdf4dc680e5f4e4df71e81617280e6081a0ce570d2f
SSDEEP

6144:yBWWTwfo9PBjRuOF8vBcloL5+ZtiNBNZBJeKqb:yBVdLMB5+ZavfI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12e84018c410f22ee7d4f2007cb3d12a

Files

12e84018c410f22ee7d4f2007cb3d12a
.exe windows:4 windows x86 arch:x86

280b2fcb4ea2cf5c39f39cdc71f2ee61

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
FreeLibrary
HeapFree
GetSystemTimeAsFileTime
SizeofResource
GetCurrentThreadId
EnumResourceLanguagesW
GlobalUnlock
GlobalLock
GetModuleHandleA
EnumResourceTypesW
EnumResourceNamesW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LoadLibraryExW
FindResourceW
DeleteCriticalSection
IsDebuggerPresent
LeaveCriticalSection
LocalAlloc
SetLastError
LoadResource
MulDiv
GetProcessHeap
LocalFree
GlobalAlloc
FreeResource
GetModuleHandleW
GetWindowsDirectoryW
EnterCriticalSection
lstrcmpA
WideCharToMultiByte
TlsAlloc
VirtualAlloc

comctl32

ImageList_GetIconSize
ImageList_DrawEx
_TrackMouseEvent
ImageList_GetImageCount
ImageList_Destroy

gdi32

CreateCompatibleBitmap
CreatePen
GetPixel
ExtTextOutW
SelectObject
PtVisible
CreateSolidBrush
GetTextExtentPoint32W
RectVisible
RoundRect
CreateCompatibleDC
DeleteObject
DeleteDC
SetTextColor
GetDIBits
CreateDIBSection
SetPixel
CreateRectRgnIndirect
GetDeviceCaps
Polygon
Escape
GetBitmapBits
CreateFontIndirectW
CreateBitmap
EnumFontFamiliesExW
SetBkColor
SetStretchBltMode
StretchBlt
BitBlt
TextOutW
GetViewportOrgEx
GetObjectW

ole32

OleInitialize
OleUninitialize

user32

DrawStateW
IsRectEmpty
PtInRect
OffsetRect
GrayStringW
SetFocus
IsWindowVisible
ReleaseCapture
DestroyIcon
EnableWindow
CopyRect
GetKeyState
GetDesktopWindow
GetMessageW
GetWindowRect
ShowScrollBar
SetWindowPos
IsChild
CopyIcon
GetIconInfo
IntersectRect
RegisterWindowMessageW
ShowWindow
GetWindow
IsWindow
GetLastActivePopup
GetForegroundWindow
DrawFocusRect
RedrawWindow
SendMessageW
GetFocus
SystemParametersInfoW
DispatchMessageW
DefWindowProcW
RegisterClipboardFormatW
InvalidateRect
LoadCursorW
InflateRect
GetDC
DrawTextW
SetCursor
SetTimer
PeekMessageW
ClientToScreen
SetRect
InvertRect
LoadBitmapW
EqualRect
TabbedTextOutW
GetClientRect
GetCursorPos
SetWindowsHookExW
GetSysColor
GetSystemMetrics
DrawIconEx
UnhookWindowsHookEx
SetRectEmpty
LoadMenuW
GetParent
LoadImageW
GetNextDlgTabItem
ScreenToClient
WindowFromPoint
KillTimer
CreateIconIndirect
SetCapture
GetWindowLongW
GetCapture
GetCursor
CreateIconFromResourceEx
CallNextHookEx
DrawTextExW
LookupIconIdFromDirectoryEx
ReleaseDC

oleaut32

SysAllocString
VariantClear
SysFreeString

activeds

AllocADsMem
AdsFreeAdsValues
AdsTypeToPropVariant

odbccu32

SQLBindCol
SQLExecute
SQLCloseCursor

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.afvJ
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.W
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.BWEoKr
Size: 1024B - Virtual size: 830B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.y
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ITdT
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oGmv
Size: 512B - Virtual size: 474B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kzr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 212KB - Virtual size: 494KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wVGH
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sI
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

280b2fcb4ea2cf5c39f39cdc71f2ee61

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

gdi32

ole32

user32

oleaut32

activeds

odbccu32

Sections

.text Size: 18KB - Virtual size: 18KB

.afvJ Size: 1KB - Virtual size: 1KB

.W Size: 2KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 4KB

.BWEoKr Size: 1024B - Virtual size: 830B

.y Size: 1024B - Virtual size: 1KB

.ITdT Size: 1024B - Virtual size: 1KB

.oGmv Size: 512B - Virtual size: 474B

.kzr Size: 2KB - Virtual size: 2KB

.data Size: 212KB - Virtual size: 494KB

.wVGH Size: 1KB - Virtual size: 1KB

.sI Size: 1024B - Virtual size: 1KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 18KB - Virtual size: 18KB

.afvJ
Size: 1KB - Virtual size: 1KB

.W
Size: 2KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 4KB

.BWEoKr
Size: 1024B - Virtual size: 830B

.y
Size: 1024B - Virtual size: 1KB

.ITdT
Size: 1024B - Virtual size: 1KB

.oGmv
Size: 512B - Virtual size: 474B

.kzr
Size: 2KB - Virtual size: 2KB

.data
Size: 212KB - Virtual size: 494KB

.wVGH
Size: 1KB - Virtual size: 1KB

.sI
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 10KB - Virtual size: 10KB