231ef64a55e9266eccd16522435cf8ab

Sharing

Copy URL Twitter E-mail

General

Target

231ef64a55e9266eccd16522435cf8ab
Size

225KB
MD5

231ef64a55e9266eccd16522435cf8ab
SHA1

58710558315dc6942a54593413691adbbcb63d2c
SHA256

8ac501da0ac19786449405a71f0a5cc34a2506f4a219dcd29b09ae37ebc9c6a0
SHA512

0d0b95d93192a9d2c4bfc8ad3263529241870625ab1899604f584a28513b9123134cc5077594bec9b29e1070592e61d556c9c4a7ff61be95959aae6937e41ec7
SSDEEP

3072:51sg+zgZiIoaQf0DIw6bOZT8K9B+h85pzbpF980JwOJ8pTtV7U4qgc/J+Q72n7ub:516zgZMY6br8hpzbp/80aOSpATg4e8yi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
231ef64a55e9266eccd16522435cf8ab

Files

231ef64a55e9266eccd16522435cf8ab
.dll windows:4 windows x86 arch:x86

46f8ec3475eddba2bddbb8e78e46bf5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetConsoleMode
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetConsoleOutputCP
GlobalFree
GetCommandLineA
ExitThread
DeleteFileW
ExitProcess
GetUserDefaultLangID
GetCPInfo
GetStdHandle
GetUserDefaultLCID
FindAtomA
GetComputerNameA
CopyFileW
GetLastError
OpenFile
CopyFileW
GetFileTime
CreateProcessA
GetCurrentThread
GetCurrentProcess
CreateThread
GetCurrentProcessId
GetComputerNameA
GetLastError
CreateDirectoryA
DeleteAtom
ExitProcess
GetConsoleOutputCP
GetStdHandle
GlobalFree
FindAtomA
DeleteFileW
GetConsoleMode
OpenFile
GetOEMCP
GetCPInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
CreateThread
GetLastError
GetComputerNameA
FindAtomA
GetStdHandle
GetCommandLineA
ExitThread
ExitProcess
Sleep
DeleteFileW
CreateThread
GetCurrentProcessId
GetCurrentThread
OpenFile
GetFileSize
DeleteFileA
CreateProcessA
FindFirstFileA
ExitThread
GetLastError
GetConsoleOutputCP
GetCommandLineA
GlobalFree
ExitProcess
GetConsoleMode
GetStdHandle
GetCPInfo
GetCurrentProcess
GlobalFree
GetComputerNameA
CreateDirectoryA
GetOEMCP
GetConsoleMode
GetConsoleOutputCP
GetFileTime
ExitProcess
GetLastError
GetStdHandle
GetUserDefaultLangID
GetCPInfo
DeleteFileA
CreateDirectoryA
FindFirstFileA
ExitThread
GetStdHandle
OpenFile
GetOEMCP
CreateProcessA
FindAtomA
GetCurrentThreadId
GetConsoleMode
GetUserDefaultLangID
CopyFileW
GetFileSize
GetFileTime
GlobalFree
Sleep
DeleteAtom

user32

CopyIcon
BlockInput
CalcMenuBar
AlignRects
GetCursor
DrawTextA
DrawTextW
DialogBoxParamW
IsWindow
GetFocus
EndDialog
CreateIcon
GetDlgItem
CopyRect
CopyRect
GetWindowTextA
GetDC
LoadCursorA
BlockInput
AppendMenuA
IsMenu
DrawTextW
IsWindow
CalcMenuBar
CopyImage
DialogBoxParamW
AlignRects
DrawIconEx
InsertMenuA
DialogBoxParamA
CreateIcon
AppendMenuW
DrawTextA
DialogBoxParamA
EndDialog
GetDC
GetWindowTextA
GetCursor
IsWindow
AppendMenuA
DrawIcon
AlignRects
GetFocus
DialogBoxParamW
CopyIcon
DrawTextW
InsertMenuA
GetDC
CreateIcon
AppendMenuW
DrawTextW
AlignRects
GetCursor
GetWindowTextA
CopyImage
CloseWindow
CalcMenuBar
DialogBoxParamW
AppendMenuA
IsWindow
DrawIconEx
DrawTextA
CopyRect

advapi32

RegDeleteValueW
RegLoadKeyW
RegQueryValueA
RegEnumKeyA
RegQueryValueW
RegReplaceKeyW
RegCreateKeyExA
RegEnumValueA
RegOpenKeyW
RegGetKeySecurity
RegDeleteKeyA
RegOpenKeyExW
RegQueryValueExW
RegReplaceKeyA
RegQueryInfoKeyA
RegEnumKeyExW
RegQueryValueExA
RegEnumKeyW

Sections

.itext
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 177KB - Virtual size: 493KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46f8ec3475eddba2bddbb8e78e46bf5d

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.itext Size: 26KB - Virtual size: 25KB

.rdata Size: 9KB - Virtual size: 9KB

.init Size: 177KB - Virtual size: 493KB

.idata Size: 6KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 4KB

.itext
Size: 26KB - Virtual size: 25KB

.rdata
Size: 9KB - Virtual size: 9KB

.init
Size: 177KB - Virtual size: 493KB

.idata
Size: 6KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4KB