000d47cfb84138b7d023f0d6bf8fa470

Sharing

Copy URL

Twitter E-mail

General

Target

000d47cfb84138b7d023f0d6bf8fa470
Size

410KB
MD5

000d47cfb84138b7d023f0d6bf8fa470
SHA1

d1da817237be6b71d26a5bd732ad23099d80a75b
SHA256

6c1787949c6cf615d4c974428dfaf1ee3f78fb0d85fe58785bf5d12129a2384c
SHA512

45c602a46bfcc206e59d7a8957283dcbcadd262deced48e838a13bfb0a8a3adf4501a4a649dec5abf6c040011a70e61e676a6bfd604999cd4f36e9cbb7caffc0
SSDEEP

12288:5zzktOYa+HpEtlD87GPZH/Mlv2mSz7O9:18z5H2te7GPt/MWz7O9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
000d47cfb84138b7d023f0d6bf8fa470

Files

000d47cfb84138b7d023f0d6bf8fa470
.exe windows:4 windows x86 arch:x86

74f058bbe921135565c2af767af412ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

ExitProcess
HeapSize
GetTimeFormatA
HeapAlloc
GetLocaleInfoA
GetModuleHandleA
GetCurrentThread
ReadFile
LCMapStringA
GetFileType
LeaveCriticalSection
HeapFree
TlsFree
WriteFile
InterlockedIncrement
GetOEMCP
GetCommandLineA
SetConsoleTextAttribute
HeapCreate
GetStartupInfoA
VirtualFree
GetConsoleOutputCP
FlushFileBuffers
IsValidCodePage
GetUserDefaultLCID
SetEnvironmentVariableA
FreeLibrary
HeapDestroy
VirtualQuery
LCMapStringW
GetEnvironmentStringsW
InterlockedDecrement
WideCharToMultiByte
Sleep
MultiByteToWideChar
GetCurrentProcessId
CreateMutexA
GetDateFormatW
CreateFileA
GetStdHandle
GetConsoleTitleA
RtlUnwind
VirtualAlloc
SetUnhandledExceptionFilter
EnterCriticalSection
GetCurrentThreadId
IsValidLocale
FreeEnvironmentStringsW
CompareStringW
TlsSetValue
OpenMutexA
DeleteCriticalSection
InterlockedExchange
SetHandleCount
VirtualFreeEx
GetCurrentProcess
CompareStringA
GetModuleFileNameA
CloseHandle
LoadLibraryA
TlsGetValue
SetStdHandle
QueryPerformanceCounter
IsDebuggerPresent
GetACP
SetLastError
GetStringTypeA
GetTickCount
GetConsoleCP
GetDateFormatA
WriteConsoleA
GetSystemTimeAsFileTime
SetFilePointer
GetFileAttributesW
GetStringTypeW
UnhandledExceptionFilter
GetProcAddress
SetConsoleCtrlHandler
FreeEnvironmentStringsA
GetConsoleMode
GetEnvironmentStrings
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
TerminateProcess
GetLocaleInfoW
WriteConsoleW
GetCPInfo
HeapReAlloc
TlsAlloc
EnumSystemLocalesA
GetModuleHandleW
GetLastError

user32

GetTabbedTextExtentW
GetKeyboardType
SetDoubleClickTime
ShowOwnedPopups
RegisterClassA
GetListBoxInfo
OffsetRect
OpenIcon
GetPropW
GetMenuCheckMarkDimensions
LoadImageA
SetWindowTextA
GetMessagePos
CallMsgFilter
DefFrameProcA
GetClassLongW
ReuseDDElParam
SetMenuInfo
RegisterClassExA
FindWindowExA
ModifyMenuA
ExitWindowsEx
MonitorFromWindow
SetCapture
GetShellWindow
EnumPropsExW
OpenWindowStationW

Sections

.text
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74f058bbe921135565c2af767af412ee

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 182KB - Virtual size: 181KB

.rdata Size: 9KB - Virtual size: 31KB

.data Size: 209KB - Virtual size: 208KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 182KB - Virtual size: 181KB

.rdata
Size: 9KB - Virtual size: 31KB

.data
Size: 209KB - Virtual size: 208KB

.rsrc
Size: 9KB - Virtual size: 8KB