054f3e8c31283b51d71b93c7b649c606

Sharing

Copy URL Twitter E-mail

General

Target

054f3e8c31283b51d71b93c7b649c606
Size

160KB
MD5

054f3e8c31283b51d71b93c7b649c606
SHA1

ad73c6c0d83a63e102761dfb59dd0c93d872d8a3
SHA256

e988ef7f24981e8e6bf9f0e1e68d437d8ea93827c4f420f7ac6507ee716eee81
SHA512

e8327c76f167be1fb55a979f91ca8b1198892e4d39bdc70e31e5818d160acabe3f9ae6c23ded94f783b6d45f08a44eaf8fa79e064892bb51c7d0a5b9a207001b
SSDEEP

3072:9k+KZoE9OQH7NN5qI6hjncmFU07taTW9RG9QX:+HeE9fNKqmF/f9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
054f3e8c31283b51d71b93c7b649c606

Files

054f3e8c31283b51d71b93c7b649c606
.exe windows:4 windows x86 arch:x86

600d12fec8d9d31b7cb03137467d4b87

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
RtlUnwind
RaiseException
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetFileTime
HeapAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStdHandle
HeapCreate
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileIntA
lstrcmpA
GlobalAlloc
LoadLibraryA
FreeLibrary
GetProcAddress
lstrlenA
lstrcatA
lstrcpyA
WritePrivateProfileStringA
GetProcessVersion
TlsSetValue
GetVersion
LocalReAlloc
GlobalReAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
GlobalFlags
LocalFree
LocalAlloc
MultiByteToWideChar
MulDiv
SetLastError
InterlockedIncrement
WideCharToMultiByte
InterlockedDecrement
GetStringTypeW
lstrcmpiA
ReadFile
GetModuleFileNameA
UnhandledExceptionFilter
CloseHandle
GlobalFree
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
DuplicateHandle
GetLastError
GlobalDeleteAtom
GetCurrentThread
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
GlobalLock
GlobalUnlock
CreateFileA
GetFileSize
FreeEnvironmentStringsA
GetEnvironmentStrings

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

user32

LoadIconA
CreateDialogIndirectParamA
GetSystemMetrics
GetActiveWindow
EndDialog
UpdateWindow
GetNextDlgTabItem
PostQuitMessage
SetCursor
SetMessageQueue
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
CharUpperA
GetClassNameA
PtInRect
ClientToScreen
LoadCursorA
ReleaseDC
GetDC
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
SystemParametersInfoA
MapWindowPoints
GetSysColor
DispatchMessageA
PeekMessageA
GetFocus
SendDlgItemMessageA
IsWindow
SetFocus
AdjustWindowRectEx
GetClientRect
IsWindowVisible
ScreenToClient
GetTopWindow
IsWindowEnabled
GetParent
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextA
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SetPropA
GetLastActivePopup
GetPropA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SendMessageA
LoadStringA
GetForegroundWindow
GetDlgItem
wsprintfA
MessageBoxA
EnableWindow
SetForegroundWindow
PostMessageA
SetActiveWindow
GetDlgCtrlID
GetMenu
WindowFromPoint
UnregisterClassA

gdi32

GetObjectA
SetTextColor
CreateBitmap
DeleteObject
CreateSolidBrush
CreatePen
GetDeviceCaps
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SetBkColor
RectVisible
TextOutA
PtVisible
Escape
ExtTextOutA

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comctl32

ord17

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

600d12fec8d9d31b7cb03137467d4b87

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

comdlg32

winspool.drv

comctl32

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 13KB - Virtual size: 26KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 13KB - Virtual size: 26KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 15KB - Virtual size: 14KB