f7016badc412b989a1cc3234b5f228e7

Sharing

Copy URL Twitter E-mail

General

Target

f7016badc412b989a1cc3234b5f228e7
Size

396KB
MD5

f7016badc412b989a1cc3234b5f228e7
SHA1

83ea9633e92118bb4f08a7bdb2b112ac56d25504
SHA256

e1f397c1c035152f6ffb7f5ab22bcb979822eefc649ba5c20b492c6015ac05a7
SHA512

630d7161c8740b781c627fc0e242c963d899a6fde34c0f29aa368bf3198708ce84ea0331b6823f99ac8887eb9ded8029c34d591dea9dfd371f220ed13ebc2848
SSDEEP

3072:ZRDH5pPq/ug0gIPWrx4fWallYmbKqBJSVhcvIlyWHlHs9Y8hqgbLDrunml:nHfPETxEW1mOwJSVh+gVYsjml

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7016badc412b989a1cc3234b5f228e7

Files

f7016badc412b989a1cc3234b5f228e7
.exe windows:4 windows x86 arch:x86

fe16d92a89d1c918a68f9b6f41aade49

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommMask
GetEnvironmentVariableA
GetConsoleAliasA
GetUserDefaultUILanguage
VerifyVersionInfoA
DebugBreak
lstrcmpi
UnlockFile
VirtualLock
VerifyVersionInfoA
GetLogicalDrives
GetComputerNameExA
GetFullPathNameA
DeleteTimerQueueTimer
SetConsoleCP
GetProcessTimes
OpenMutexA
EnumSystemGeoID
FindNextFileA
GetSystemWindowsDirectoryA
ReplaceFileA
GetConsoleScreenBufferInfo
DisconnectNamedPipe
GetTempPathA
GetFileInformationByHandle
GetThreadPriorityBoost
GetExitCodeThread
GetCurrentProcess
VirtualAlloc
lstrcpynA
GetThreadLocale
IsBadStringPtrA
GetStartupInfoA
FreeEnvironmentStringsA
SetProcessWorkingSetSize
GetProcessVersion
GetLocaleInfoA
SetComputerNameExA
FindNextVolumeMountPointA
GetSystemDefaultLangID
lstrlenA
GetCommMask
GetDllDirectoryA
GetLogicalDrives
GetThreadTimes
WriteConsoleOutputCharacterW
LocalFlags
WritePrivateProfileStructA
GetConsoleInputExeNameA
AddAtomA
GetLongPathNameA
HeapLock
GetModuleFileNameA
OpenProcess
GetCurrencyFormatA
GetFileAttributesExA
EnumSystemGeoID
CreateFileMappingW
IsBadWritePtr
GetComputerNameA
HeapUnlock
ReadFileEx
WriteConsoleA
FileTimeToSystemTime
SetHandleInformation
GetVersionExA
GetSystemDirectoryA
RemoveDirectoryA
GetTapeParameters
GetVersion
UnregisterWaitEx
GetConsoleWindow
ResetEvent
GetFileTime
GetDriveTypeA
GetDefaultCommConfigA
GlobalDeleteAtom
GetSystemTimeAdjustment
GetFileTime
WaitForMultipleObjectsEx
LZRead
UnregisterConsoleIME
CopyFileExW
CreateNamedPipeA
SizeofResource
GetProcessId
CompareStringA
GetTickCount
ReadConsoleA
LZStart
SetUnhandledExceptionFilter
CreateDirectoryA
EnumSystemLanguageGroupsA
LocalLock
GetCommandLineA
IsSystemResumeAutomatic
GetPrivateProfileStructA
MoveFileA
SetCalendarInfoA
SetEndOfFile
VirtualQueryEx
DefineDosDeviceA
GetVolumeInformationA
GetConsoleAliasesLengthA
OpenJobObjectA
SetComputerNameExW
GetThreadSelectorEntry
GetProcessPriorityBoost
SetSystemPowerState
GetDiskFreeSpaceA
GlobalHandle
UnregisterConsoleIME
IsValidCodePage
_hwrite
GetSystemTimeAsFileTime
SetFileAttributesA
MoveFileWithProgressA
CopyFileExW
OpenSemaphoreA
SetConsoleCursorMode
BeginUpdateResourceA
RaiseException
OpenJobObjectA
EnumSystemLocalesA
GetThreadPriority
SetFirmwareEnvironmentVariableA
GetFileAttributesExA
FlushViewOfFile
RemoveDirectoryA
SetConsoleActiveScreenBuffer
SetFileShortNameA
GetTapePosition
WritePrivateProfileStringA
GetTickCount
SetFileShortNameA
GetProcAddress
CreateWaitableTimerA
IsValidCodePage
SetVolumeMountPointA
SignalObjectAndWait
OpenJobObjectA
SetThreadPriorityBoost
QueryPerformanceFrequency
Toolhelp32ReadProcessMemory
HeapSize
LockFileEx
IsProcessorFeaturePresent
SetPriorityClass
SetConsoleScreenBufferSize
CreateSocketHandle
FindFirstFileExA
WriteProcessMemory
EnumResourceNamesA
GetUserDefaultLCID
OutputDebugStringA
ReleaseSemaphore
HeapSize
WaitCommEvent
GetPrivateProfileStringA
GetModuleHandleA
CommConfigDialogA
EnumSystemLocalesA
GetPrivateProfileStringA
GetCompressedFileSizeA
SetFilePointer
GetConsoleFontSize
GetEnvironmentVariableA
WaitForMultipleObjectsEx
OpenFileMappingA
CreateThread
ClearCommBreak
WriteFileGather

user32

ChangeMenuA
IsWinEventHookInstalled
RegisterHotKey
InsertMenuItemW
GetListBoxInfo
EnumDisplayDevicesA
GetClassNameA
PackDDElParam
SetWindowsHookExW
UnionRect
GetKeyNameTextA
GetMonitorInfoA
SetForegroundWindow
GetWindowTextA
RealGetWindowClassA
SendIMEMessageExA
EndDialog
GetCursor
GetClipboardData
EnableMenuItem
RegisterClassExA
CopyRect
RedrawWindow
CreateWindowExA
ShowScrollBar
OpenClipboard
RegisterWindowMessageA
RecordShutdownReason
EnumDisplaySettingsExA
SetCursorContents
GetCursorPos
GetMenuStringA
GetClassInfoExW
IsRectEmpty
GetInputDesktop
InflateRect
ClientThreadSetup
GetClipboardFormatNameA
EnumDesktopsA
SetClassLongA
SendIMEMessageExA
DragDetect
MessageBoxA
IsWindowInDestroy
EnableWindow
CharLowerBuffW
CallMsgFilterA
RegisterDeviceNotificationA
GetMenuState
DlgDirListComboBoxA
UpdateLayeredWindow
GetDCEx
CreateDialogParamA
SendDlgItemMessageA
ScreenToClient
MenuWindowProcA
PostQuitMessage
SendMessageTimeoutW
RegisterUserApiHook
UnpackDDElParam
BroadcastSystemMessageExA
MapVirtualKeyA
GetAltTabInfoA
ReleaseCapture
SetProgmanWindow
SetWindowWord
RemoveMenu
ReplyMessage
BeginPaint
EnableScrollBar
GetDlgCtrlID
LoadKeyboardLayoutEx
SetDlgItemTextA
GetKeyboardState
InSendMessage
CascadeChildWindows
UnpackDDElParam
CopyRect
GetWindowRgnBox
LoadStringA
GetAppCompatFlags2
TranslateAccelerator
RegisterClipboardFormatA

ws2_32

closesocket

Exports

Exports

Okymymiisi
WriteAhpqkwymc
Ocknbhn
ReadTdablyoq
Pckihcom
Koxtcwac

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe16d92a89d1c918a68f9b6f41aade49

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 48KB - Virtual size: 682KB

.idata Size: 280KB - Virtual size: 276KB

.rsrc Size: 64KB - Virtual size: 60KB

.itext
Size: - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 682KB

.idata
Size: 280KB - Virtual size: 276KB

.rsrc
Size: 64KB - Virtual size: 60KB