059970ed00ab4f8a8ff77a8dc65a5dc4

Sharing

Copy URL

Twitter E-mail

General

Target

059970ed00ab4f8a8ff77a8dc65a5dc4
Size

59KB
MD5

059970ed00ab4f8a8ff77a8dc65a5dc4
SHA1

a9d83bcf58a591473a496c579f9982c4c30940fe
SHA256

44e2574fa8dcf41257efb15f10f86781ebeadb351ee4501e89fed738eb216d93
SHA512

ba4cf553f043e715da7577b5d9d4789e616c60b081b0bb1189be1bc30f28d288bbaad8b825303668a3fdc3445e867ce0ae82bc4b04085ccc07ad3c978575e9aa
SSDEEP

1536:GJsJ/btbiXHRCGkJ845bgrQABktmXdLoVU8IjAhKM4:r/bGxClEvOtmKVUNEp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
059970ed00ab4f8a8ff77a8dc65a5dc4

Files

059970ed00ab4f8a8ff77a8dc65a5dc4
.exe windows:5 windows x86 arch:x86

7b81b2c4eb63d7f3cffa2cc7f8f24028

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dhcpsapi

DhcpServerQueryAttributes
DhcpEnumSubnetElementsV4
DhcpSetClientInfoV4
DhcpCreateOption
DhcpGetMScopeInfo
DhcpDeleteClientInfo
DhcpDeleteClass
DhcpGetAllOptions
DhcpGetOptionValueV5
DhcpEnumSubnetClientsV4
DhcpDeleteMScope
DhcpSetOptionValue
DhcpEnumSubnetElements
DhcpCreateOptionV5
DhcpSetSuperScopeV4
DhcpCreateClass
DhcpGetClassInfo
DhcpDsInit
DhcpServerSetConfig
DhcpGetSubnetInfo
DhcpGetThreadOptions
DhcpServerSetDnsRegCredentials
DhcpDeleteMClientInfo
DhcpEnumClasses
DhcpEnumSubnetElementsV5
DhcpDsClearHostServerEntries

kernel32

MapViewOfFileEx
WriteConsoleOutputA
GlobalUnlock
ScrollConsoleScreenBufferA
EnumResourceLanguagesW
DeleteCriticalSection
IsBadStringPtrW
SetCommMask
VirtualProtectEx
OutputDebugStringA
SetFilePointerEx
GetVolumePathNameW
WriteProcessMemory
SetClientTimeZoneInformation
GetCPInfo
HeapCompact
GetPrivateProfileStructW
OpenFileMappingA
SetCriticalSectionSpinCount
ExpandEnvironmentStringsW
EnumCalendarInfoExW
LocalAlloc
GetConsoleAliasExesLengthW
VirtualAlloc
RegisterWowBaseHandlers
WritePrivateProfileStructA
EnumDateFormatsExW
Module32FirstW
GetLargestConsoleWindowSize
GetNamedPipeHandleStateW
GetStringTypeW
GetCurrentActCtx
WritePrivateProfileSectionA
ResetEvent
RtlZeroMemory
CreateDirectoryA
GetModuleHandleW
ExitProcess
OutputDebugStringW
FormatMessageA
ContinueDebugEvent
BaseDumpAppcompatCache
LocalUnlock
RemoveDirectoryA
WriteProfileSectionW
GlobalFindAtomA
SwitchToThread
GetFileAttributesExW
FindActCtxSectionStringW
DuplicateConsoleHandle
TransmitCommChar
DosPathToSessionPathW
CommConfigDialogA
LoadLibraryA
SetConsolePalette
QueryDosDeviceW
GetUserGeoID
lstrcpynA
WritePrivateProfileSectionW
WriteConsoleW
WaitForSingleObject
SetCommTimeouts
GetTimeZoneInformation

gdi32

DdEntry4
CreateHatchBrush
GdiConvertBitmap
NamedEscape
SelectClipPath
InvertRgn
SetBkColor
DdEntry30
BRUSHOBJ_hGetColorTransform
GdiResetDCEMF
EngDeleteSemaphore
GetWinMetaFileBits
AnyLinkedFonts
UnrealizeObject
EndPath
AddFontResourceW
FONTOBJ_vGetInfo
DdEntry6
DeleteDC
EngWideCharToMultiByte
GdiIsMetaPrintDC
bInitSystemAndFontsDirectoriesW
GdiEntry4
GdiConvertPalette
CombineRgn
EnumICMProfilesW
XFORMOBJ_iGetXform
SetArcDirection
GdiConvertEnhMetaFile
EnumFontFamiliesA
GdiDllInitialize

mscms

GenerateCopyFilePaths
AssociateColorProfileWithDeviceW
UnregisterCMMA
GetColorProfileElement
CreateDeviceLinkProfile
GetColorProfileHeader
SpoolerCopyFileEvent
InternalGetPS2ColorRenderingDictionary
GetColorProfileElementTag
CreateProfileFromLogColorSpaceA
GetPS2ColorRenderingDictionary
GetPS2ColorSpaceArray
SelectCMM
InstallColorProfileA
InternalGetPS2PreviewCRD
UninstallColorProfileW
TranslateColors
ConvertColorNameToIndex
RegisterCMMW
GetPS2ColorRenderingIntent
OpenColorProfileA
GetStandardColorSpaceProfileW
InternalGetDeviceConfig
UninstallColorProfileA
SetColorProfileHeader
DeleteColorTransform

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b81b2c4eb63d7f3cffa2cc7f8f24028

Headers

DLL Characteristics

File Characteristics

Imports

dhcpsapi

kernel32

gdi32

mscms

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 13KB - Virtual size: 12KB