2192b62652b3a6d17baa1b6f83b79cec

Sharing

Copy URL

Twitter E-mail

General

Target

2192b62652b3a6d17baa1b6f83b79cec
Size

351KB
MD5

2192b62652b3a6d17baa1b6f83b79cec
SHA1

991b67f76936dccb500ad49a34bc33792f0b30d7
SHA256

bfdd0d9f02b1b838cdb39aed226337a0187fdd68f86528fab069911efbaa382c
SHA512

bc71dd7b672beca5427bff4cc97fed69dbfc1afd24e5866ff5d6d0671b6b023766f262af98278bdaeb046c4d1cd6e61f2c00aa45a36f09f2d3d41f849ecf1ad8
SSDEEP

6144:R1AGGqivLqJ5L/9EEw5lMercfl/bX23vj+iI/gUlrkEazw02Uv7:R1AG4Li9PIlTrql/S3O9lIEattv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2192b62652b3a6d17baa1b6f83b79cec

Files

2192b62652b3a6d17baa1b6f83b79cec
.exe windows:4 windows x86 arch:x86

202f9713c922d83959b0dc0193d8f962

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
DeleteDC
BitBlt
SetBkColor
GetStockObject
SelectObject
CreateSolidBrush
DeleteObject
SetBkMode

advapi32

RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueW
RegCloseKey

ole32

CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
VirtualAlloc
Sleep
VirtualFree
WriteFile
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetModuleHandleW
GetACP
CloseHandle
FindFirstFileA
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
CompareStringA
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
HeapCreate
LCMapStringW
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
DuplicateHandle
RemoveDirectoryA
FindFirstFileW
CreateFileMappingA
ResetEvent
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
CreateEventW
GlobalAlloc
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
SetHandleCount
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
TlsGetValue
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
LocalFree
GetOEMCP
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
lstrcmpiA
FreeEnvironmentStringsW
LoadLibraryExW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
FindNextFileA
LockResource
WaitForSingleObject

user32

SetWindowLongA
ReleaseCapture
SetCapture
IsIconic
GetWindowRect
DefWindowProcA
PostMessageA
SetFocus
EndPaint
DispatchMessageA
SetTimer
GetWindowLongA
EnableMenuItem
GetWindow
SendMessageA
TranslateMessage
SetWindowTextA
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
ClientToScreen
GetClientRect
ReleaseDC
GetDC
IsWindow
PostQuitMessage
DestroyMenu
SetForegroundWindow
CreateWindowExA
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
SetWindowPos
TrackPopupMenu
GetDesktopWindow
EndDialog
SetDlgItemTextA
MoveWindow
MessageBoxA
GetSysColor
SystemParametersInfoA
IsWindowVisible
wsprintfA
CallWindowProcA
SetCursor
IsWindowEnabled

oleaut32

VariantInit
SysFreeString
SysAllocStringLen
SysStringLen
VariantClear
SysAllocString

msvcrt

_strcmpi
_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
exit
_exit
_controlfp
__set_app_type

Sections

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

202f9713c922d83959b0dc0193d8f962

Headers

File Characteristics

Imports

gdi32

advapi32

ole32

kernel32

user32

oleaut32

msvcrt

Sections

.text Size: 341KB - Virtual size: 341KB

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 341KB - Virtual size: 341KB

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 2KB - Virtual size: 2KB