1fec78407f4c5d1c8cd6bb029d8f71be

Sharing

Copy URL

Twitter E-mail

General

Target

1fec78407f4c5d1c8cd6bb029d8f71be
Size

412KB
MD5

1fec78407f4c5d1c8cd6bb029d8f71be
SHA1

13c91add3181f6ce1c1ac918375a995a774583b7
SHA256

90cb0dcfd56d6c08ebe19e56a554eb7747f441e84369cea3b2490fad57defc57
SHA512

3f5574ed59c2666b6a24f242e05d4c50133ffac6f5901c32cd71b1700c8a6ed21e0c1721b250e208170c0d9718e683b2c933d1b9dca3b9b9a6d253f2ff99e96d
SSDEEP

6144:Wtf/3SA/lLR1z57f/hSHzIf5DGdP+iklAE+hgpGB71POOquxZXBYGeHHi:0KiVR197f500YXklYhMGeY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1fec78407f4c5d1c8cd6bb029d8f71be

Files

1fec78407f4c5d1c8cd6bb029d8f71be
.exe windows:4 windows x86 arch:x86

cfa903d2e7da05c3fedcf05fdf2073ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GetUrlCacheEntryInfoExW
GopherFindFirstFileW

kernel32

LocalCompact
ReadFile
OpenFileMappingA
IsValidCodePage
UnhandledExceptionFilter
LCMapStringW
GetCurrentProcessId
SetHandleCount
GetPrivateProfileSectionW
CompareStringA
WideCharToMultiByte
WriteConsoleOutputW
GetTimeFormatA
LocalAlloc
GetEnvironmentStringsW
GetLastError
EnumSystemCodePagesA
ConvertDefaultLocale
FreeEnvironmentStringsA
FillConsoleOutputCharacterA
lstrcmpiW
GlobalCompact
SetVolumeLabelW
HeapDestroy
GlobalUnlock
GlobalFree
CreateWaitableTimerW
GetStartupInfoA
GetFileTime
WriteProfileSectionA
GetModuleHandleA
GetCPInfo
FlushInstructionCache
SetStdHandle
GetStringTypeA
GetModuleFileNameW
TlsGetValue
IsBadWritePtr
GlobalLock
GetOEMCP
DeleteFileA
GetLocaleInfoA
SetThreadContext
SetCriticalSectionSpinCount
QueryPerformanceCounter
IsBadReadPtr
HeapAlloc
WaitForMultipleObjects
GetUserDefaultLCID
GlobalHandle
SetThreadLocale
GetProcAddress
HeapFree
SetConsoleCtrlHandler
EnumCalendarInfoExW
OpenFile
TlsAlloc
SetEnvironmentVariableA
SetFilePointer
GetCurrentProcess
HeapCreate
VirtualQuery
ReadConsoleOutputCharacterA
CreateEventA
GetTickCount
GetSystemInfo
LoadLibraryExW
VirtualAlloc
GetEnvironmentStrings
FileTimeToLocalFileTime
LockFileEx
GetSystemTimeAsFileTime
VirtualFree
InitializeCriticalSection
LocalUnlock
GetStringTypeW
CompareStringW
GetCommandLineA
GetCurrentThreadId
CreateMutexA
FindResourceExA
LeaveCriticalSection
MapViewOfFile
TlsSetValue
OpenMutexA
SetLastError
LoadLibraryA
DeleteCriticalSection
GetStdHandle
SetTimeZoneInformation
SetFileAttributesA
RtlUnwind
OpenSemaphoreA
lstrcpyW
SetConsoleTextAttribute
TlsFree
FlushFileBuffers
CloseHandle
IsValidLocale
FreeLibraryAndExitThread
FindFirstFileA
EnumSystemLocalesA
GetCommandLineW
GetVersionExA
LocalSize
GetLocaleInfoW
WriteFile
HeapSize
GetDateFormatA
SetThreadIdealProcessor
GetTempPathW
IsDebuggerPresent
GetStartupInfoW
WriteConsoleOutputAttribute
GetTimeZoneInformation
MultiByteToWideChar
FileTimeToDosDateTime
EnterCriticalSection
GetACP
GetModuleFileNameA
GetCurrentThread
VirtualProtect
SystemTimeToFileTime
GetFileType
FreeEnvironmentStringsW
LCMapStringA
InterlockedExchange
GetLongPathNameW
ExitProcess
RtlMoveMemory
GetThreadTimes
MoveFileA
HeapReAlloc
TerminateProcess

comdlg32

PageSetupDlgA
ChooseColorA

comctl32

CreateUpDownControl
ImageList_Merge
ImageList_DrawIndirect
ImageList_LoadImage
CreateMappedBitmap
InitCommonControlsEx
ImageList_SetFilter
ImageList_Destroy
ImageList_Add
ImageList_SetIconSize
ImageList_Read
ImageList_Draw
ImageList_AddIcon
DestroyPropertySheetPage
CreateToolbar
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_EndDrag
DrawInsert
GetEffectiveClientRect
ImageList_GetImageRect
ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_SetImageCount

user32

BlockInput
AdjustWindowRectEx
ShowWindow
ShowOwnedPopups
GetKBCodePage
GetCaretBlinkTime
DefWindowProcA
ExcludeUpdateRgn
LoadIconW
RegisterClassExA
CharPrevW
DlgDirSelectComboBoxExA
GetCursorPos
MessageBoxW
DestroyWindow
DdeFreeStringHandle
GetComboBoxInfo
GetDesktopWindow
SetScrollRange
SetForegroundWindow
IsZoomed
CheckMenuItem
CreateWindowExA
RegisterClassA
GetSystemMetrics
PeekMessageA

gdi32

GetWindowExtEx
GetArcDirection
GetObjectA
ExtCreateRegion
SelectObject
DeleteDC
CreateFontIndirectW
SetPixel
CreatePenIndirect
ExtFloodFill
RectVisible
GetTextExtentPointA
AddFontResourceA
GetEnhMetaFileW
OffsetWindowOrgEx
OffsetViewportOrgEx
CreateDCA
EnumFontFamiliesExW
GetDeviceCaps

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfa903d2e7da05c3fedcf05fdf2073ad

Headers

File Characteristics

Imports

wininet

kernel32

comdlg32

comctl32

user32

gdi32

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 132KB - Virtual size: 129KB

.data Size: 100KB - Virtual size: 108KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 132KB - Virtual size: 129KB

.data
Size: 100KB - Virtual size: 108KB

.rsrc
Size: 36KB - Virtual size: 35KB