20d55161295446af2a947fef94f50517

Sharing

Copy URL Twitter E-mail

General

Target

20d55161295446af2a947fef94f50517
Size

443KB
MD5

20d55161295446af2a947fef94f50517
SHA1

5ceabfb1eae2375a64162914ffcaafdb526980ae
SHA256

beed9474a2b39656b1930bd461455c36b24a65169a73857b4a4c2e3904d45294
SHA512

6cd777e4c30ddff856321aee68aab94a592b271fa225c778f5431270d9ae3a4f49a850d83c7c54d66e5ed2fcdcea5f29e447aa091801f04c992da5b9bf65c69a
SSDEEP

12288:R3cmGJt6aQQg33Ts4KCN0HTXRavsNwUb5:mmOg33TQCN0HThDND

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20d55161295446af2a947fef94f50517

Files

20d55161295446af2a947fef94f50517
.exe windows:4 windows x86 arch:x86

1ce093131ccfd5720e121719cce7f371

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationW
RealShellExecuteExW
SHBrowseForFolderA
SheChangeDirA
SHFileOperation
SHGetFileInfoW
SHGetFileInfo
SHGetDiskFreeSpaceA
DragAcceptFiles
DragQueryFileAorW
SHGetPathFromIDList
RealShellExecuteA
SHGetSettings
FreeIconList
SHBrowseForFolderW
SHUpdateRecycleBinIcon
FindExecutableW
InternalExtractIconListW
DoEnvironmentSubstW

user32

GetClassInfoA
OemToCharW
SetCursor
SetDlgItemInt
SetUserObjectInformationW
DlgDirSelectComboBoxExW
SetMenuItemBitmaps
IsRectEmpty
DlgDirListComboBoxA
GetWindowInfo
SetClassWord
GetMenuDefaultItem
FindWindowExA
DdeQueryStringA
TabbedTextOutW
LoadBitmapA
TranslateAcceleratorA
GetSysColorBrush
CreateAcceleratorTableA

comdlg32

ChooseColorA
LoadAlterBitmap
FindTextA
FindTextW
ChooseFontW
GetOpenFileNameW
ChooseColorW
ReplaceTextW
PrintDlgW
GetOpenFileNameA
GetSaveFileNameA
PrintDlgA

wininet

LoadUrlCacheContent
InternetSetCookieA
ShowClientAuthCerts
FtpGetFileEx
DeleteUrlCacheGroup
IsHostInProxyBypassList
InternetSetOptionExW
HttpOpenRequestW
InternetCreateUrlW
RetrieveUrlCacheEntryFileA
FindFirstUrlCacheEntryW
InternetCombineUrlA
InternetReadFileExW
InternetTimeToSystemTime

kernel32

GetModuleHandleA
GetStringTypeW
GetOEMCP
SetConsoleCtrlHandler
FreeLibrary
RtlUnwind
InitializeCriticalSection
GetEnvironmentStrings
TlsFree
GetCurrentThreadId
GetProcAddress
IsValidLocale
GetACP
IsDebuggerPresent
GetProcessHeaps
GetVersionExA
FillConsoleOutputCharacterA
GetStartupInfoA
GetCurrentProcess
InterlockedExchange
HeapDestroy
LeaveCriticalSection
CompareStringA
GetFileType
EnterCriticalSection
SetLastError
WriteFile
FreeEnvironmentStringsW
GetStdHandle
VirtualFree
GetCommandLineA
ExitProcess
HeapAlloc
DeleteCriticalSection
GetEnvironmentStringsW
LCMapStringW
GetCurrentProcessId
GetLocaleInfoW
WriteFileEx
QueryPerformanceCounter
TlsSetValue
GetTimeFormatA
SetUnhandledExceptionFilter
GetLocaleInfoA
HeapSize
Sleep
GetCurrentThread
SetHandleCount
TerminateProcess
LCMapStringA
GetProcessHeap
InterlockedIncrement
WideCharToMultiByte
GetStringTypeA
HeapCreate
VirtualQuery
LoadLibraryA
GetCPInfo
GetTimeZoneInformation
GetUserDefaultLCID
MultiByteToWideChar
IsValidCodePage
HeapReAlloc
GetDateFormatA
CompareStringW
GlobalFlags
VirtualAlloc
FindNextChangeNotification
TlsAlloc
GetSystemTimeAsFileTime
HeapFree
TlsGetValue
SetConsoleWindowInfo
GetTickCount
GetModuleFileNameA
InterlockedDecrement
SetEnvironmentVariableA
FreeEnvironmentStringsA
GetLastError
UnhandledExceptionFilter
EnumSystemLocalesA

Sections

.text
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ce093131ccfd5720e121719cce7f371

Headers

File Characteristics

Imports

shell32

user32

comdlg32

wininet

kernel32

Sections

.text Size: 155KB - Virtual size: 154KB

.data Size: 276KB - Virtual size: 275KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 155KB - Virtual size: 154KB

.data
Size: 276KB - Virtual size: 275KB

.rsrc
Size: 11KB - Virtual size: 10KB