2485df87a5a93b02f75af6de5ad87ea0

Sharing

Copy URL Twitter E-mail

General

Target

2485df87a5a93b02f75af6de5ad87ea0
Size

148KB
MD5

2485df87a5a93b02f75af6de5ad87ea0
SHA1

bb3b6aafd4e91e45949e7e8104c83f526e20d6fc
SHA256

4eb118a14609920edd5ef46c2313da05d1dd655680dc9a5fd51d9bcbdbb358aa
SHA512

ba97017139892f25bf3d26be5b44d3eb23000d93b21a80105fb8e98b879261430bd2093f936feb415f048286e59f100f543b1a8d80492bb94af0aa5e628764f7
SSDEEP

3072:EcTrRqE+/W9ufu1CFRBmJGNRujgFLXYY:ZqEDulRmJ9gFL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2485df87a5a93b02f75af6de5ad87ea0

Files

2485df87a5a93b02f75af6de5ad87ea0
.exe windows:5 windows x86 arch:x86

11918bd20f2563d25ffc19f1538b47bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_wcsset
?str@strstreambuf@@QAEPADXZ
longjmp
wcschr
_strupr
_logb
??0istream_withassign@@QAE@ABV0@@Z
??0ostrstream@@QAE@ABV0@@Z
_strnicmp
_ismbcalnum
_scalb
_tcsninc
_mbctype
??_Gfstream@@UAEPAXI@Z
?clog@@3Vostream_withassign@@A
??_8istrstream@@7B@
?sputbackc@streambuf@@QAEHD@Z
??_8ofstream@@7B@
?cerr@@3Vostream_withassign@@A
_adj_fdivr_m32
_dup2
_open_osfhandle
??0istrstream@@QAE@PAD@Z

olecli32

OleEnumObjects
ErrSetTargetDevice
DibEnumFormat
DefCreateFromTemplate
CheckNetDrive
PbEnumFormats
SrvrWndProc
DibQueryBounds
OleUpdate
PbCreateFromClip
LeQueryType
OleSaveToStream
ErrUpdate
LeRelease
PbCreate
ObjQuerySize
DefCreate
OleReconnect
OleSetTargetDevice
ErrObjectConvert
LeGetUpdateOptions
OleIsDcMeta

oledlg

OleUIBusyW
OleUIConvertW
OleUIUpdateLinksA
OleUIChangeSourceW
OleUIPasteSpecialA
OleUIEditLinksA
OleUIAddVerbMenuW
OleUIAddVerbMenuA
OleUIPromptUserA
OleUICanConvertOrActivateAs
OleUIPasteSpecialW
OleUIChangeIconW
OleUIObjectPropertiesW
OleUIInsertObjectA
OleUIEditLinksW
OleUIUpdateLinksW
OleUIConvertA
OleUIPromptUserW
OleUIObjectPropertiesA
OleUIInsertObjectW
OleUIChangeIconA
OleUIBusyA
OleUIChangeSourceA

comctl32

FlatSB_EnableScrollBar
ImageList_Remove
ImageList_DragLeave
GetMUILanguage
ImageList_Add
CreatePropertySheetPageA
ImageList_LoadImageA
InitializeFlatSB
ImageList_SetOverlayImage
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_DragShowNolock
DrawStatusTextW
ImageList_SetDragCursorImage
ImageList_Merge
CreatePropertySheetPageW
CreateStatusWindowW
ImageList_Copy
ImageList_SetFlags
ImageList_AddIcon
DestroyPropertySheetPage

kernel32

QueryPerformanceCounter
AllocConsole
FindActCtxSectionStringA
GetCurrentProcessId
GetSystemTimeAsFileTime
FoldStringW
GetCurrentThreadId
CreateFiber
GetTickCount
IsDBCSLeadByteEx
CreateMutexA
SetThreadPriority
RtlMoveMemory
RegisterWowBaseHandlers
LocalUnlock
GetStringTypeExW
HeapCreate
VirtualAlloc
GetStartupInfoA
ReadConsoleInputW
LoadLibraryA

crtdll

_ltoa
_tzname
atan2
_execv
perror
_splitpath
_makepath
_mbsnccnt
_getcwd
fwscanf
_cwait
isxdigit
wcschr
frexp
fmod
_mbslen
_mbsnextc
is_wctype
_tolower
_fileinfo_dll
_creat

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 300B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11918bd20f2563d25ffc19f1538b47bb

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt20

olecli32

oledlg

comctl32

kernel32

crtdll

Sections

.text Size: 33KB - Virtual size: 33KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 65KB - Virtual size: 65KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 300B - Virtual size: 300B

.text
Size: 33KB - Virtual size: 33KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 65KB - Virtual size: 65KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 300B - Virtual size: 300B