5416111a29a411a373f23ffea14472b0

Sharing

Copy URL Twitter E-mail

General

Target

5416111a29a411a373f23ffea14472b0
Size

28KB
MD5

5416111a29a411a373f23ffea14472b0
SHA1

22434d0510f1e15de70ebc9a12809bf6ee21fafd
SHA256

540a5904373925febe6415b287a69127611f46fa2e85e5f1d2470212e33ea4a6
SHA512

587e97b9cbc75da8c3ee2ee99096c49a402dc224e8ce74a44e22cd636f1b3997bf508f63209f96a389b8081877c1599e8c21e45835bdbbc652a66d6aacd404a3
SSDEEP

384:yfgqFrIeemvuiIrbmkpoeugM/El//WwYONZQA5/UbuRdq2mmlg4Sxzo9j:KgqFrIeemT2bUcl3WHONZppRdwyg4eY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5416111a29a411a373f23ffea14472b0

Files

5416111a29a411a373f23ffea14472b0
.exe windows:4 windows x86 arch:x86

f630cdd24e1eb4e4c3b1f20b5142510b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
ClearCommBreak
CloseHandle
CloseProfileUserMapping
CommConfigDialogA
ConvertThreadToFiber
CreateConsoleScreenBuffer
CreateEventW
CreateMailslotA
CreateMailslotW
CreateMutexW
CreateNamedPipeA
CreateNamedPipeW
CreateRemoteThread
CreateToolhelp32Snapshot
EnterCriticalSection
EraseTape
ExitProcess
ExpandEnvironmentStringsA
ExpungeConsoleCommandHistoryW
FindClose
FindCloseChangeNotification
FindFirstFileW
FindNextFileW
FlushConsoleInputBuffer
FlushViewOfFile
FreeConsole
FreeResource
GetAtomNameA
GetCommMask
GetCommandLineW
GetConsoleAliasesW
GetConsoleCommandHistoryA
GetConsoleCommandHistoryW
GetConsoleCommandHistoryLengthA
GetConsoleDisplayMode
GetConsoleHardwareState
GetConsoleOutputCP
GetCurrentConsoleFont
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceExA
GetEnvironmentStringsW
GetExitCodeThread
GetLastError
GetLocalTime
GetLogicalDrives
GetMailslotInfo
GetModuleHandleW
GetNamedPipeHandleStateA
GetNamedPipeHandleStateW
GetPrivateProfileStructA
GetProcessTimes
GetProfileIntA
GetProfileStringW
GetShortPathNameW
GetStartupInfoW
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTapeParameters
GetTempPathW
GetThreadPriority
GetThreadPriorityBoost
GetVersion
GetWindowsDirectoryA
GlobalAddAtomA
GlobalFree
GlobalUnfix
Heap32Next
HeapReAlloc
InterlockedIncrement
IsBadStringPtrW
IsBadWritePtr
LoadLibraryA
LocalAlloc
LocalCompact
LocalFileTimeToFileTime
LocalReAlloc
LockResource
MapViewOfFile
MapViewOfFileEx
MoveFileA
MoveFileW
OpenProfileUserMapping
OutputDebugStringA
PrepareTape
Process32Next
QueryDosDeviceW
QueryPerformanceFrequency
SetComputerNameW
SetConsoleCursor
SetConsoleIcon
SetConsoleInputExeNameW
SetConsoleKeyShortcuts
SetConsoleMaximumWindowSize
SetConsoleWindowInfo
SetDefaultCommConfigA
SetEnvironmentVariableA
SetFileAttributesA
SetHandleInformation
SetLastError
SetProcessPriorityBoost
SetSystemPowerState
SetTapePosition
SetTimeZoneInformation
SetWaitableTimer
SystemTimeToFileTime
UnhandledExceptionFilter
UnlockFileEx
VerLanguageNameA
VirtualProtect
WaitForMultipleObjects
WideCharToMultiByte
WriteConsoleW
WriteConsoleInputA
WriteProfileSectionA
_hread
_lopen
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynA
lstrlenW

user32

AdjustWindowRect
AttachThreadInput
CascadeChildWindows
CharToOemW
CharUpperA
CharUpperW
CharUpperBuffA
CharUpperBuffW
DdeConnectList
DdeCreateStringHandleW
DdeGetLastError
DdeKeepStringHandle
DdeQueryConvInfo
DeleteMenu
DestroyAcceleratorTable
EnableWindow
GetAltTabInfoA
GetClassInfoW
GetClassLongA
GetClassLongW
GetClipCursor
GetComboBoxInfo
GetCursor
GetCursorInfo
GetDC
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetLastInputInfo
GetMenu
GetMenuState
GetMessageA
GetParent
GetPropA
GetShellWindow
GetSubMenu
GetTabbedTextExtentW
GetWindowDC
GetWindowTextA
GetWindowTextLengthA
IMPGetIMEW
IsCharAlphaA
IsCharAlphaW
IsChild
IsRectEmpty
LoadMenuIndirectA
LookupIconIdFromDirectoryEx
MenuItemFromPoint
MessageBoxA
MessageBoxExW
ModifyMenuA
OemToCharW
OffsetRect
OpenWindowStationA
PackDDElParam
PeekMessageW
PostThreadMessageW
RegisterDeviceNotificationW
ScreenToClient
SendIMEMessageExA
SetClipboardData
SetCursorPos
SetDebugErrorLevel
SetDlgItemTextA
SetMessageQueue
SetScrollInfo
SetUserObjectInformationW
SetWindowLongA
SubtractRect
TabbedTextOutA
ToAscii
ToUnicodeEx
UnregisterDeviceNotification
WaitMessage
WinHelpA
WindowFromDC

gdi32

CreatePatternBrush
DescribePixelFormat
Ellipse
EnumFontFamiliesW
ExtCreateRegion
ExtFloodFill
GdiComment
GdiGetBatchLimit
GetBitmapDimensionEx
GetBkColor
GetBkMode
GetBoundsRect
GetCharacterPlacementW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetCurrentPositionEx
GetGlyphOutlineA
GetGraphicsMode
GetPixel
GetStockObject
GetViewportExtEx
OffsetViewportOrgEx
ResetDCW
RestoreDC
SelectBrushLocal
SelectObject
SetBkColor
SetColorAdjustment
SetDIBits
SetFontEnumeration
SetGraphicsMode
SetMapMode
SetPixelFormat
SetRectRgn
SetWindowExtEx
SetWorldTransform
StartPage
StrokeAndFillPath
TextOutW

comdlg32

GetSaveFileNameA
PageSetupDlgA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fzVr
Size: 2KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f630cdd24e1eb4e4c3b1f20b5142510b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 24KB

.fzVr Size: 2KB - Virtual size: 15KB

.reloc Size: 1024B - Virtual size: 7KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 24KB

.fzVr
Size: 2KB - Virtual size: 15KB

.reloc
Size: 1024B - Virtual size: 7KB