01a88e6080a50d9c7613d00b74a8a922

Sharing

Copy URL Twitter E-mail

General

Target

01a88e6080a50d9c7613d00b74a8a922
Size

636KB
MD5

01a88e6080a50d9c7613d00b74a8a922
SHA1

9cd1333d4e5bce9616ee8a8ae6a504b676d5f63d
SHA256

02bef22a1bc7680d2f635b8909a94d2dc6dfc9bdb1b71b9ee9cb10df23204ae9
SHA512

32bdf11b96ca1a210eaf88a0a6c0442f3929a9fe7e00f94698ba8eaf1971eb819b014e1f62b09edf85137e55bfc2eea7583d7948cf51c58cb4d325620ef9218e
SSDEEP

12288:YbTHv1M1cqCRtc8SPBoRB3Ngii1gzOwdLY0Ku+j1v1K4DEd1ED:Y3Hvi1cRzgoBmiK1h1K4Yd1ED

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01a88e6080a50d9c7613d00b74a8a922

Files

01a88e6080a50d9c7613d00b74a8a922
.exe windows:4 windows x86 arch:x86

2ce3d9a713c6af32c011140fce3b8c7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetUpdateRgn
RegisterClassExA
CharPrevA
DdeConnectList
UnregisterClassW
GetKeyNameTextW
GetMonitorInfoA
GetMenuContextHelpId
RegisterClassA
PeekMessageA
GetCursorPos
MessageBoxExA
EndPaint
LoadCursorA
SetMenuItemInfoW
CharPrevExA
GetKeyboardLayoutNameA
EnumClipboardFormats
DestroyAcceleratorTable

kernel32

EnterCriticalSection
SetConsoleCtrlHandler
Sleep
WaitCommEvent
ExitProcess
IsDebuggerPresent
SetComputerNameA
CompareStringW
GetOEMCP
GetLocaleInfoW
WriteConsoleA
GetProfileSectionA
SetEnvironmentVariableA
GetStartupInfoA
SetUnhandledExceptionFilter
TlsFree
GetSystemTimeAsFileTime
FlushFileBuffers
LocalReAlloc
GetEnvironmentStringsW
LeaveCriticalSection
WriteFile
GetTickCount
InterlockedExchange
DeleteCriticalSection
VirtualAlloc
GetFileType
GetCurrentThread
GetDateFormatA
RtlUnwind
CompareStringA
GetVersion
GetTimeZoneInformation
GetProcessHeap
ReadConsoleOutputAttribute
IsValidLocale
GetCurrentProcessId
GetEnvironmentStrings
GetLogicalDriveStringsA
FreeEnvironmentStringsW
SetStdHandle
HeapAlloc
OpenMutexA
SetLastError
GetCommandLineA
TerminateProcess
GetModuleHandleA
WriteConsoleW
SetConsoleScreenBufferSize
GetCurrentThreadId
GetProcAddress
EnumSystemLocalesA
CreateMutexA
HeapReAlloc
InterlockedDecrement
GetStdHandle
GetCPInfo
lstrcpyW
FreeEnvironmentStringsA
IsValidCodePage
SetHandleCount
VirtualFree
GetStringTypeW
HeapFree
GetModuleFileNameA
LoadLibraryA
LCMapStringW
InterlockedIncrement
HeapDestroy
LCMapStringA
GetConsoleMode
CloseHandle
GetConsoleOutputCP
VirtualQuery
TlsGetValue
GetUserDefaultLCID
GetCurrencyFormatA
UnhandledExceptionFilter
TlsAlloc
GetLastError
QueryPerformanceCounter
SetFilePointer
FreeLibrary
GetACP
GetExitCodeProcess
MultiByteToWideChar
GetTimeFormatA
HeapSize
GetVersionExA
GetCompressedFileSizeA
CreateToolhelp32Snapshot
CreateFileA
GetConsoleCP
WideCharToMultiByte
ReadFile
TlsSetValue
FlushInstructionCache
GetLocaleInfoA
InitializeCriticalSection
GetEnvironmentStringsA
HeapCreate
GetCurrentProcess
SetConsoleCP
GetStringTypeA

Sections

.text
Size: 452KB - Virtual size: 452KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ce3d9a713c6af32c011140fce3b8c7b

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 452KB - Virtual size: 452KB

.rdata Size: 52KB - Virtual size: 73KB

.data Size: 114KB - Virtual size: 113KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 452KB - Virtual size: 452KB

.rdata
Size: 52KB - Virtual size: 73KB

.data
Size: 114KB - Virtual size: 113KB

.rsrc
Size: 16KB - Virtual size: 15KB