1f712425dfc70ec8ca0f09f4a3016eb5

Sharing

Copy URL Twitter E-mail

General

Target

1f712425dfc70ec8ca0f09f4a3016eb5
Size

560KB
MD5

1f712425dfc70ec8ca0f09f4a3016eb5
SHA1

8109a8f5be6d8f9c3b3da8c092f737c66dbd511d
SHA256

a5c5d5442708701ab255abc56f7269ed8df3b7e77cd62d1282a030a4542ef44c
SHA512

a4724077946132614fa4679e387a21f7962f8a48275d8823bc5243a2709a3a5f6876fe7947a774afbeeda778877dcc24de7670487bd581b8e6a3e872ab2ea81c
SSDEEP

12288:bpFv3ZUrXUGcJ87KjhuxRMkrPJGQkl+oD+zVM1ogND1MiC:bp9ZUncJ87bDDMQkkfVMog

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f712425dfc70ec8ca0f09f4a3016eb5

Files

1f712425dfc70ec8ca0f09f4a3016eb5
.exe windows:4 windows x86 arch:x86

17d85d68fd19c7adfb4af24708a5b8eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndMenu
EnumChildWindows
ReleaseDC
GetDialogBaseUnits
GetClientRect
GetInputDesktop
SetWindowTextA
IntersectRect
GetWindowTextA
ReuseDDElParam
CallNextHookEx
CharLowerBuffA
FillRect
DdeDisconnectList
LoadKeyboardLayoutW
SetActiveWindow
MonitorFromWindow
GetKeyNameTextA
EnumWindowStationsA
InvalidateRgn
GetPropA
IsDialogMessageA
IsChild
DlgDirListComboBoxW
SetWindowsHookW
TranslateMessage
IsIconic
DefWindowProcW
CreateDesktopW
ModifyMenuA
IsCharLowerW
WindowFromDC
SetWindowLongA
GetDlgItem
CreateMDIWindowW
MessageBoxW
PostQuitMessage
GetTabbedTextExtentW
AdjustWindowRectEx
SetDebugErrorLevel
DialogBoxIndirectParamA
SendMessageW
CreateWindowExA
LoadAcceleratorsW
HideCaret
DefMDIChildProcA
LoadCursorFromFileA
DestroyWindow
DrawAnimatedRects
DlgDirSelectExA
wvsprintfW
FreeDDElParam
FindWindowA
GetListBoxInfo
GetPriorityClipboardFormat
OemKeyScan
ShowWindow
EnumDesktopsW
AttachThreadInput
EnumDisplaySettingsExA
GetClipboardViewer
GetKeyNameTextW
LoadMenuW
SendInput
SetRectEmpty
TranslateAcceleratorA
SetWindowRgn
WaitMessage
GetWindowLongA
DdeQueryStringA
UpdateWindow
SetUserObjectInformationW
SetPropW
DialogBoxIndirectParamW
DlgDirListComboBoxA
IsCharAlphaNumericA
SendNotifyMessageA
GetQueueStatus
GetParent
SetMessageQueue
CreatePopupMenu
InternalGetWindowText
CharToOemA
CreateWindowStationW
wsprintfA
RegisterClassExA
wvsprintfA
SendMessageTimeoutA
GetUpdateRgn
DefDlgProcA
SetTimer
RegisterClassA
InSendMessage
ExitWindowsEx
SubtractRect
GetMessageTime

kernel32

InterlockedDecrement
IsValidCodePage
HeapFree
VirtualQuery
GetConsoleOutputCP
GetCurrentDirectoryA
GetModuleHandleA
GetOEMCP
FreeEnvironmentStringsW
ReadConsoleA
GetCurrentProcess
GetVolumeInformationA
Sleep
GetACP
GetSystemTimeAsFileTime
TlsAlloc
GetConsoleTitleA
SetEnvironmentVariableA
InitializeCriticalSection
TryEnterCriticalSection
EnterCriticalSection
GetCurrencyFormatA
TlsSetValue
RtlUnwind
FillConsoleOutputCharacterW
GetStdHandle
QueryPerformanceCounter
VirtualFree
GetStringTypeW
ReadConsoleInputW
SetEnvironmentVariableW
HeapSize
SystemTimeToTzSpecificLocalTime
WriteProfileSectionA
LCMapStringA
HeapDestroy
GetExitCodeProcess
GetTickCount
DosDateTimeToFileTime
SetFilePointer
GetLocaleInfoW
GetDateFormatA
TlsFree
GetCurrentThread
CloseHandle
GetPrivateProfileIntW
DebugActiveProcess
SetHandleCount
SetLocaleInfoA
ExitProcess
GetMailslotInfo
GetTimeFormatA
EnumSystemLocalesA
IsDebuggerPresent
GetLastError
GetCPInfo
GetProcessHeap
GetVersionExA
GetCurrentProcessId
IsBadWritePtr
GetProfileIntA
GetStringTypeA
DeleteCriticalSection
GetStartupInfoA
LoadLibraryA
HeapReAlloc
GetCurrentThreadId
LeaveCriticalSection
FreeLibrary
MultiByteToWideChar
SetLastError
FreeEnvironmentStringsA
FlushFileBuffers
GetFileType
AddAtomA
GetTimeZoneInformation
ReadFile
UnhandledExceptionFilter
InterlockedExchange
GetFileTime
GetCommandLineA
SetConsoleCtrlHandler
GetUserDefaultLCID
SetStdHandle
HeapCreate
LCMapStringW
WideCharToMultiByte
SetUnhandledExceptionFilter
GetEnvironmentStrings
GetSystemInfo
ResetEvent
OpenMutexA
GetProcAddress
InterlockedIncrement
GetPrivateProfileStructA
TlsGetValue
WriteConsoleA
IsValidLocale
VirtualAlloc
GetModuleFileNameA
CompareStringA
TerminateProcess
WriteConsoleW
GetConsoleCP
GetEnvironmentStringsW
CompareStringW
CreateFileA
GetLocaleInfoA
GlobalLock
WriteFile
HeapAlloc
GetConsoleMode
ExpandEnvironmentStringsW
CreateMutexA

comctl32

ImageList_Create
ImageList_Add
ImageList_SetBkColor
ImageList_LoadImageW
ImageList_Remove
InitCommonControlsEx
CreateStatusWindow
ImageList_LoadImageA
InitMUILanguage
DrawStatusTextW

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17d85d68fd19c7adfb4af24708a5b8eb

Headers

File Characteristics

Imports

user32

kernel32

comctl32

Sections

.text Size: 172KB - Virtual size: 171KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 112KB - Virtual size: 134KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 172KB - Virtual size: 171KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 112KB - Virtual size: 134KB

.rsrc
Size: 20KB - Virtual size: 17KB