0709360f6f130808df350cade145c7ee

Sharing

Copy URL

Twitter E-mail

General

Target

0709360f6f130808df350cade145c7ee
Size

537KB
MD5

0709360f6f130808df350cade145c7ee
SHA1

4b9f85177a6cc753a5f57999853332c0ce531f6d
SHA256

2a7303eac3e16135a6d364cff96efdcbbacebb52a686c577d02bc677fbe27d6d
SHA512

4ebe651acd32335a38063f86ab2d2d42abba992746732eaced799ce0aa5e45c08f82a82061e20d5f5ac68580a4681e7b49174c7ec8479228838b7aaa2e8186f9
SSDEEP

12288:1LUy5m/3qZn/B+dooacS3owqZDSApXhX:1LUyZnsdojYhJD9l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0709360f6f130808df350cade145c7ee

Files

0709360f6f130808df350cade145c7ee
.exe windows:4 windows x86 arch:x86

27053a31883862e073e37fcd264dc70e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
CreateMutexA
GetLocaleInfoW
EnterCriticalSection
DeleteCriticalSection
GetTimeFormatA
SetFilePointer
GetCommandLineA
TlsSetValue
GetStartupInfoA
ReadConsoleInputA
SetConsoleActiveScreenBuffer
GetStringTypeA
CloseHandle
GetDateFormatA
ExitProcess
WaitForMultipleObjectsEx
GetACP
CreateNamedPipeW
VirtualQuery
QueryPerformanceCounter
HeapCreate
GetProcAddress
CommConfigDialogA
GetLastError
GetSystemInfo
GetModuleHandleA
GetLocalTime
LeaveCriticalSection
TerminateProcess
UnhandledExceptionFilter
CreateFileA
GetCPInfo
GetFileType
GetTimeZoneInformation
TlsGetValue
GetOEMCP
GetStringTypeW
OpenMutexA
GetSystemTimeAsFileTime
WriteProfileSectionW
GetCurrentThreadId
RtlUnwind
VirtualFree
HeapDestroy
SetLastError
WideCharToMultiByte
InterlockedExchange
GetCompressedFileSizeA
TlsAlloc
ReadFile
LCMapStringA
FlushFileBuffers
HeapFree
VirtualAlloc
GetStdHandle
VirtualProtect
SetLocaleInfoA
WriteFile
IsBadReadPtr
IsValidLocale
InterlockedIncrement
GetCurrentThread
GetLocaleInfoA
LoadLibraryA
OutputDebugStringA
GetCurrentProcess
SetPriorityClass
MultiByteToWideChar
FreeEnvironmentStringsW
HeapReAlloc
LCMapStringW
SetEnvironmentVariableA
lstrcmpiW
CompareStringA
FreeEnvironmentStringsA
GlobalUnlock
EnumSystemLocalesA
DebugBreak
SetHandleCount
InterlockedDecrement
GetEnvironmentStrings
SetConsoleCtrlHandler
GetTickCount
GetEnvironmentStringsW
TlsFree
GetVersionExA
SetStdHandle
GetModuleFileNameA
GetCurrencyFormatW
FlushInstructionCache
IsValidCodePage
HeapAlloc
HeapValidate
IsBadWritePtr
GetUserDefaultLCID
InitializeCriticalSection
CompareStringW
SetFileAttributesW

user32

RegisterClassA
DlgDirListW
DdeConnect
DdeAbandonTransaction
RegisterClassExA
OemToCharBuffW
LoadAcceleratorsW
GetClassInfoExW

gdi32

SetDIBitsToDevice
LineDDA

wininet

RetrieveUrlCacheEntryFileA

comdlg32

PrintDlgA
PageSetupDlgA
LoadAlterBitmap

advapi32

CryptEncrypt
InitializeSecurityDescriptor
RegDeleteKeyA
ReportEventW
RegEnumKeyExW
RegSetValueExW
LookupAccountNameA
LookupAccountNameW
CryptEnumProviderTypesW
RegNotifyChangeKeyValue
LogonUserA
LookupSecurityDescriptorPartsA
RegQueryValueExA
RegOpenKeyW
RegRestoreKeyA
CryptSetProviderExA
InitiateSystemShutdownW
RegSetValueExA
CryptExportKey
CryptContextAddRef
RegConnectRegistryA
RegCreateKeyA
LookupPrivilegeValueW

comctl32

InitCommonControlsEx

Sections

.text
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27053a31883862e073e37fcd264dc70e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wininet

comdlg32

advapi32

comctl32

Sections

.text Size: 203KB - Virtual size: 202KB

.rdata Size: 12KB - Virtual size: 17KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 203KB - Virtual size: 202KB

.rdata
Size: 12KB - Virtual size: 17KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 8KB - Virtual size: 7KB