59372ba3308bb939f69b6654fca657b7

Sharing

Copy URL Twitter E-mail

General

Target

59372ba3308bb939f69b6654fca657b7
Size

130KB
MD5

59372ba3308bb939f69b6654fca657b7
SHA1

c3aeebf455ceb7ef95d696f0f25e142cd6717ed9
SHA256

cab56cf69321081c485345cd432d30bf832d7d64ccbc31b3c8ef500b3b3be57d
SHA512

d271c4fbbe82eeef934e8effe3d7b10830a596e3a7a6b9a1f062b0a1c3dc9824de77b4fe7463b6b06dbae4825f0524b8eee4625913ecd13f78c5759c43b44c6a
SSDEEP

3072:p9CDoo6IBzyYooqWewK9LTCwvX2kyyrlK/d+wUYWW3JE:p9QoB4ajWew1wfFyyrlPwH3G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59372ba3308bb939f69b6654fca657b7

Files

59372ba3308bb939f69b6654fca657b7
.exe windows:5 windows x86 arch:x86

72ee6b97961b98029be670ce8b609d7c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileIntA
GetLogicalDrives
SetThreadPriorityBoost
GlobalGetAtomNameA
CreateNamedPipeW
Process32First
FileTimeToDosDateTime
GetLargestConsoleWindowSize
DisableThreadLibraryCalls
GetProfileSectionA
SetCurrentDirectoryA
GetNumberFormatW
GetPrivateProfileStructA
GetTempFileNameA
CreateWaitableTimerA
SetHandleCount
SetConsoleCtrlHandler
FileTimeToLocalFileTime
GetThreadLocale
HeapLock
EnumTimeFormatsW
GetConsoleTitleA
GetProcessHeaps
CreateDirectoryW
LocalReAlloc
TlsSetValue
SetNamedPipeHandleState
GetSystemDirectoryW
GetEnvironmentVariableW
GetEnvironmentVariableA
EnumResourceLanguagesW
Module32First
GlobalAddAtomA
FreeLibrary
GetEnvironmentStringsW
SetConsoleScreenBufferSize
OpenFileMappingA
CompareStringA
GetCurrencyFormatA
DeleteAtom
IsSystemResumeAutomatic
GetOverlappedResult
HeapCreate
WritePrivateProfileStringA
GlobalFree
GlobalFindAtomA
FindNextChangeNotification
SetConsoleCP
GetEnvironmentStringsA
CreateSemaphoreW
LocalLock
EnumSystemLocalesA
WriteFileGather
EnumDateFormatsExA
lstrcmpiW
WritePrivateProfileStringW
GlobalMemoryStatus
GetCPInfo
SetCalendarInfoA
WriteFile
WritePrivateProfileStructA
ReadConsoleInputW
GetStringTypeExW
SetProcessWorkingSetSize
EnumSystemCodePagesA
GlobalDeleteAtom
UnlockFile
FlushConsoleInputBuffer
GetStdHandle
WaitForSingleObjectEx
GetLongPathNameA
RtlFillMemory
GetFileAttributesA
WriteConsoleOutputAttribute
GetCPInfoExW
WriteConsoleInputA
PeekNamedPipe
GetModuleHandleA
SetLocaleInfoA
PeekConsoleInputA
SetUnhandledExceptionFilter
MoveFileExA
FindResourceExA
SetProcessShutdownParameters
ReadFileEx
ReleaseSemaphore
EnumDateFormatsW
FindAtomA
GetDriveTypeA
GetVolumeInformationA
GetProcessTimes
GetDiskFreeSpaceA
GetCPInfoExA
GetWindowsDirectoryW
GetDriveTypeW
GetSystemPowerStatus
SetThreadLocale
CreateMailslotW
MulDiv
SetEnvironmentVariableW
SetConsoleTextAttribute
UnmapViewOfFile
GetFileTime
WritePrivateProfileSectionW
LocalShrink
CreatePipe
GlobalCompact
GetLogicalDriveStringsW
Heap32Next
GetPrivateProfileIntW
InitAtomTable
GetModuleFileNameW
Thread32Next
DeleteFileA
LocalFlags
FormatMessageW
LocalSize
GlobalAlloc
VirtualFree
GetConsoleCP
LCMapStringA
RemoveDirectoryW
MultiByteToWideChar
GetDevicePowerState
LocalHandle
SignalObjectAndWait
IsBadStringPtrW
GetProcessShutdownParameters
Module32Next
EnumResourceTypesW
UpdateResourceW
GetTimeFormatA
GetComputerNameA
HeapCompact
CreateEventA
WritePrivateProfileStructW
lstrcatW
FlushInstructionCache
SetWaitableTimer
EnumCalendarInfoW
WriteConsoleOutputCharacterW
GetSystemDefaultLCID
WaitForSingleObject
HeapFree
VirtualAlloc
VirtualProtect
LoadLibraryA
GetProcAddress

user32

ReuseDDElParam
DdeSetQualityOfService
GetKeyboardLayoutList
ExcludeUpdateRgn
DdeCreateDataHandle
CopyAcceleratorTableA
FindWindowW
TranslateAccelerator
GetMenuDefaultItem
DeferWindowPos
GetCaretBlinkTime
LoadStringA
RegisterDeviceNotificationA
CreateCursor
LoadAcceleratorsA
SetCursor
GetNextDlgTabItem
CreateMDIWindowA
MessageBoxExW
FlashWindow
GetWindow
OemToCharA
CreateWindowStationA
InsertMenuItemA
GetDCEx
GetWindowTextLengthA
DdeCreateStringHandleA
UnloadKeyboardLayout
DdeAccessData
ChangeMenuA
GetGuiResources
CallMsgFilter
DestroyCursor
EnumChildWindows
DrawCaption
GetMenuContextHelpId
GetGUIThreadInfo
DlgDirListA
OpenClipboard
SystemParametersInfoA
SendMessageCallbackA
TrackPopupMenu
GetSysColorBrush
TranslateMDISysAccel
DdePostAdvise
EnumDesktopsA
GetClientRect
SendNotifyMessageW
PaintDesktop
SetCapture
SetUserObjectInformationA
IsCharUpperA
SendIMEMessageExW
GetParent
DragObject
GetSysColor
DdeSetUserHandle
EnableMenuItem
SetMenuContextHelpId
GetClassInfoExW
EqualRect
ReleaseCapture
BeginPaint
DrawTextA
DestroyWindow
LoadKeyboardLayoutW
EnumDisplayDevicesW
SetPropA
SetSysColors
GetClassNameW
LoadBitmapW
GetClassInfoW
GetKeyboardState
DrawFrame
HiliteMenuItem
DialogBoxParamW
DdeImpersonateClient
DefWindowProcW
EndTask
GetDesktopWindow
LoadIconW
SendDlgItemMessageA
NotifyWinEvent
GetWindowRgn
SendIMEMessageExA
PostThreadMessageW
GetShellWindow
ValidateRect
WINNLSGetIMEHotkey
EndPaint
SendMessageCallbackW
CharToOemA
DrawAnimatedRects
WinHelpA
DefMDIChildProcW
ScrollWindow
DdeQueryNextServer
GetWindowContextHelpId
CallWindowProcA
CharUpperBuffA
GetClassWord
DdeEnableCallback
OpenWindowStationA
SystemParametersInfoW
InSendMessageEx
EnumDesktopWindows
SetMenuDefaultItem
DialogBoxIndirectParamA
SetKeyboardState
BroadcastSystemMessage
DlgDirSelectExW
GetClassNameA
SetMenuItemBitmaps
RedrawWindow
GetClipboardData
ShowWindowAsync
UnregisterClassW
GetDlgCtrlID
MenuItemFromPoint
DdeCreateStringHandleW
DefWindowProcA
RealGetWindowClass
SendMessageTimeoutA
GetKeyboardLayoutNameA
RegisterClassA
ScreenToClient
GetQueueStatus
GetClipboardOwner
GetWindowRect
IsCharUpperW
CreateDialogParamW
FrameRect
HideCaret
SetUserObjectSecurity
DialogBoxParamA
GetWindowLongA
GetDlgItemTextA
EnumDisplaySettingsExA
LoadImageA
CreateAcceleratorTableA
GetScrollRange
CheckMenuRadioItem
LoadMenuIndirectA
GetKeyboardType
SetWindowLongW
RegisterClassW
GetMonitorInfoW
CheckDlgButton
CountClipboardFormats
DdeConnect
CloseWindow
GetPropA
LoadIconA
DdeGetData
GrayStringA
GetMenuState
GetTitleBarInfo
OpenInputDesktop
CreateIconIndirect
ShowWindow
LockWindowUpdate
GetKeyNameTextW
SendMessageTimeoutW
IsCharLowerA
DefDlgProcW
GetCapture
CopyAcceleratorTableW
EmptyClipboard
TranslateAcceleratorA
SetActiveWindow
GetLastActivePopup
InternalGetWindowText
SetWindowPos
GetWindowTextLengthW
ChangeClipboardChain
GetInputDesktop
MapVirtualKeyA
RegisterDeviceNotificationW
GetSystemMenu
BlockInput
CallMsgFilterW
CharPrevA
GetMessageExtraInfo
DdeAddData
DdeInitializeA
MonitorFromRect
InvalidateRect
CloseWindowStation
EnumDisplaySettingsW
GetMessagePos
IsCharAlphaW
IsMenu
IsCharAlphaA

shlwapi

IntlStrEqWorkerW
PathIsSystemFolderA
PathCompactPathA
SHRegCreateUSKeyW
PathCompactPathW
SHGetValueW
UrlGetLocationW
PathIsUNCServerShareA
SHRegEnumUSKeyW
SHSkipJunction
StrChrIA
StrToIntExW

advapi32

AddAccessAllowedAce
LookupSecurityDescriptorPartsA
CryptSetProvParam
SetFileSecurityW

ole32

StgIsStorageFile
CoInitialize
WriteStringStream
CLSIDFromString

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72ee6b97961b98029be670ce8b609d7c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shlwapi

advapi32

ole32

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 512B - Virtual size: 12KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 512B - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 1KB