59af984a32da89b5c7953102f78728a1

Sharing

Copy URL Twitter E-mail

General

Target

59af984a32da89b5c7953102f78728a1
Size

244KB
MD5

59af984a32da89b5c7953102f78728a1
SHA1

3dbeba6e1ea8432e118339ea3436fbce19b6463f
SHA256

e840b12617a8eeca2fb0dde3862001babd79f1876230cabf9f812f5b0f757d13
SHA512

dd1db6d722a69c9f52358a19771b3eff6ee6b08aa2b377a6e0d2b00200357b7112e853a9cfae2a1d9ea0753f158fe8aefe19f3df75b00a302c4f3fe783b73075
SSDEEP

6144:dDfGos3M1XHTBRv+o0jtBzmM/qJ1kv0CYYSn/51Q7u6Fl:dD+X+Tfv+oCKMakvzYY8S7u6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59af984a32da89b5c7953102f78728a1

Files

59af984a32da89b5c7953102f78728a1
.exe windows:4 windows x86 arch:x86

4b33e53647d4ac1ef236d41cb2ae937e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
ceil
vsprintf
isspace
memcmp
_stricmp
_purecall
abs
realloc
toupper
_makepath
_stati64
memmove
wcscat
wcschr
memchr
_vsnprintf
wcslen
strrchr
isalnum
strstr
rand
_strnicmp
memset
free
malloc
strncmp
strncpy
_snprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
strcpy
strcat
sprintf
strlen
memcpy
atoi
strchr
strcmp

mpr

WNetCloseEnum
WNetEnumResourceA
WNetOpenEnumA
WNetGetUniversalNameA

kernel32

GetStartupInfoA
CreateProcessA
CompareStringA
GetFullPathNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetTempFileNameA
GetTempPathA
GetVersionExA
FindNextFileA
SetFileAttributesA
GetFileAttributesA
FindClose
FindFirstFileA
RemoveDirectoryA
CreateDirectoryA
DeleteFileA
GetFileTime
SetFileTime
SetEndOfFile
FlushFileBuffers
UnlockFileEx
LockFileEx
GetVersion
UnlockFile
LockFile
SetFilePointer
ReadFile
WriteFile
SetLastError
CreateFileA
SetErrorMode
WideCharToMultiByte
GetDriveTypeA
GetVolumeInformationA
GetLogicalDriveStringsA
GetFileInformationByHandle
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
OpenProcess
LockResource
LoadResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryA
Sleep
GetExitCodeProcess
SetEnvironmentVariableA
GetCurrentDirectoryA
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
GetLastError
FormatMessageA
LocalFree
GetModuleFileNameA

user32

SetDlgItemTextA
GetDlgItem
CheckDlgButton
IsDlgButtonChecked
GetDlgItemTextA
MessageBoxA
SendDlgItemMessageA
SetWindowTextA
IsWindow
CharToOemBuffA
OemToCharBuffA
LoadStringA
SetWindowPos
GetDesktopWindow
FillRect
GetDC
DestroyWindow
UpdateWindow
ShowWindow
GetClientRect
GetSystemMetrics
CreateWindowExA
RegisterClassA
GetSysColor
LoadIconA
DefWindowProcA
GetParent
DialogBoxParamA
EndDialog
SendMessageA
ReleaseDC
CharUpperA
DrawTextA

gdi32

DeleteObject
GetStockObject
SelectObject
SetROP2
SetTextColor
SetBkMode
CreateSolidBrush

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteExA

ole32

OleInitialize

Exports

Exports

CommandeComposante
GeneralParam

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b33e53647d4ac1ef236d41cb2ae937e

Headers

File Characteristics

Imports

comctl32

msvcrt

mpr

kernel32

user32

gdi32

advapi32

shell32

ole32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 89KB - Virtual size: 89KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 89KB - Virtual size: 89KB