2050613d7e70582acbaf81a02f34ad9a

Sharing

Copy URL Twitter E-mail

General

Target

2050613d7e70582acbaf81a02f34ad9a
Size

484KB
MD5

2050613d7e70582acbaf81a02f34ad9a
SHA1

da0da2bd700a9de47508ea5836cea2506d5f6e3c
SHA256

696d96dccd4c0860f3f44c4abfde426d54f3dad898782c5904eb5902b106e504
SHA512

b9e181ef489bb6b4325c8c0eb6e11ba6737065aaa5da9f37d0a26db918b1b6d7dc09346e7b6f6e55a020689ff60c683e013bd9a2035c7049bc539df7a90b37ce
SSDEEP

12288:Y7PNOeL2Up7V4kyvY9+pTvDEGkjNBxbz9dGvebpfiRbNgrfq:Y7PNOeL3p7VvywkpTwGkxn9svebdAN0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2050613d7e70582acbaf81a02f34ad9a

Files

2050613d7e70582acbaf81a02f34ad9a
.exe windows:4 windows x86 arch:x86

14cb7391d51c3a091ebc9bfa9ec7184c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

advapi32

CryptSetHashParam
CryptContextAddRef
RegQueryValueExW
InitiateSystemShutdownW
LookupPrivilegeDisplayNameA
CryptGetDefaultProviderW
RegDeleteValueA
RegOpenKeyW
RegQueryMultipleValuesW
LookupPrivilegeValueA
LookupAccountSidW
RegQueryValueExA
InitiateSystemShutdownA
CryptSetProviderA
CryptEnumProviderTypesW
CryptSignHashW
CryptDuplicateHash
RegSetValueA
CryptGetDefaultProviderA

user32

RegisterClassExA
ChangeMenuA
GetCursorPos
CheckDlgButton
SetMessageExtraInfo
GetSysColorBrush
RegisterClassA

comdlg32

GetFileTitleA
GetFileTitleW
PrintDlgW

shell32

ExtractAssociatedIconA
SHGetDataFromIDListW
SHGetMalloc
InternalExtractIconListA
CommandLineToArgvW

gdi32

EqualRgn
ResizePalette
CreateCompatibleBitmap
PolyTextOutW
GdiPlayJournal
GetPixel
GetObjectType
StartPage
EnumMetaFile
CreateICW
GetKerningPairsW
EnumFontsW

kernel32

GetFileType
GetFileAttributesA
LoadModule
GetStringTypeW
FindFirstFileW
CreateProcessW
InitializeCriticalSection
HeapAlloc
TlsGetValue
EnterCriticalSection
LCMapStringA
HeapReAlloc
VirtualQuery
TerminateProcess
InterlockedDecrement
CompareStringA
SetHandleCount
FlushFileBuffers
HeapDestroy
GetLocalTime
SetFilePointer
GetCurrentThreadId
CreateMutexA
WideCharToMultiByte
GetCurrentProcessId
ConnectNamedPipe
SetStdHandle
FreeEnvironmentStringsA
GetExitCodeThread
GetEnvironmentStringsW
ExitProcess
FindClose
GetModuleHandleA
GetTickCount
ContinueDebugEvent
VirtualFree
GetCurrentDirectoryA
VirtualAlloc
WaitForMultipleObjectsEx
DeleteCriticalSection
SetLastError
GetSystemTime
CloseHandle
RtlUnwind
LeaveCriticalSection
QueryPerformanceCounter
GetCurrentThread
SetEnvironmentVariableA
HeapFree
OpenMutexA
FreeEnvironmentStringsW
TlsAlloc
UnhandledExceptionFilter
TlsFree
GetStringTypeA
CreateToolhelp32Snapshot
TlsSetValue
FreeLibraryAndExitThread
GetModuleFileNameW
GetStdHandle
LCMapStringW
RtlZeroMemory
GetEnvironmentStrings
GetProcAddress
GetFullPathNameW
IsBadWritePtr
MultiByteToWideChar
ReadFile
GetVersion
GetStartupInfoW
GetModuleFileNameA
GetCurrentProcess
GetSystemDirectoryW
SetEndOfFile
GetCommandLineW
GetProcessHeap
GetSystemTimeAsFileTime
GetCPInfo
OpenSemaphoreA
GetNumberFormatW
HeapCreate
WriteFile
LoadLibraryA
CompareStringW
GetStartupInfoA
GetTimeZoneInformation
OpenEventW
InterlockedIncrement
GetLastError
InterlockedExchange
GetCommandLineA

Sections

.text
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14cb7391d51c3a091ebc9bfa9ec7184c

Headers

File Characteristics

Imports

comctl32

advapi32

user32

comdlg32

shell32

gdi32

kernel32

Sections

.text Size: 335KB - Virtual size: 335KB

.rdata Size: 17KB - Virtual size: 24KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 335KB - Virtual size: 335KB

.rdata
Size: 17KB - Virtual size: 24KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 27KB - Virtual size: 26KB