206999655f75cc795177fcb03d66b624

Sharing

Copy URL Twitter E-mail

General

Target

206999655f75cc795177fcb03d66b624
Size

197KB
MD5

206999655f75cc795177fcb03d66b624
SHA1

5f51695f863e5c372914f668040f253730d198f6
SHA256

2e3aa84d1987af0daebb44519fcc6f8c54d743671fd704a31d766bfda4233b2d
SHA512

741610fc2c38c480cee2edc9269a74dcfd9722d1b60d3463b1bc2c2784deaf593e9a936674046eb81a656a6e7847498c7ca8a1c42f22f1798d5bba4c2109d4b5
SSDEEP

3072:LKOY+9yvf6S58AhL57/zWVhryqa0wfhuOHWAduxt0goWDxehPQ5PNd4NYHj:LKz+0ThYVwN0ACPgBWAQ5PNW6H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
206999655f75cc795177fcb03d66b624

Files

206999655f75cc795177fcb03d66b624
.exe windows:5 windows x86 arch:x86

cd54c38af73e59497f1d2075e1d5f537

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
UnionRect
SystemParametersInfoW
SetPropA
SetWindowPlacement
SetWindowLongA
IsWindowVisible
RemoveMenu
ScreenToClient
RegisterClassExW
DestroyMenu
SetWindowRgn
DefWindowProcA
EndDialog
SetClipboardData
GetWindowDC
GetClassNameW
GetScrollInfo
CreatePopupMenu
SetActiveWindow
DispatchMessageA
CheckDlgButton
CharNextA
PtInRect
AdjustWindowRectEx
GetForegroundWindow
IsChild
RegisterWindowMessageW
SetWindowLongW
LoadBitmapA
GetWindowPlacement
CharUpperA
LoadStringW
PeekMessageA
EnumWindows
GetMenuState
SetRectEmpty
GetCapture
GetWindowLongA

kernel32

CreateFileMappingW
SetFilePointer
GetCurrentDirectoryA
LoadResource
EnterCriticalSection
lstrcmpiA
IsProcessorFeaturePresent
GetSystemDefaultLangID
SetUnhandledExceptionFilter
TlsSetValue
GetFullPathNameW
SetConsoleCtrlHandler
LCMapStringW
FindResourceA
GetProcAddress
GetTimeZoneInformation
DeleteCriticalSection
LoadLibraryA
GlobalMemoryStatus
GetLocaleInfoA
GlobalReAlloc
SetEnvironmentVariableA
TlsFree
VirtualFree
LoadLibraryExA
GetStartupInfoA
GetTempFileNameW
FileTimeToSystemTime
VirtualAlloc
GetFileType
WritePrivateProfileStringA
GetTimeFormatA
GetDriveTypeA
GetCurrentThreadId
GetSystemTimeAsFileTime
HeapCreate
lstrlenA
UnhandledExceptionFilter
LeaveCriticalSection
GetTickCount
CreateFileMappingA
SetFileTime
GetShortPathNameA
GetFileSize

msvcrt

wcsncmp
_iob
atoi
??1type_info@@UAE@XZ
__set_app_type
__setusermatherr
__p__fmode
wcschr
_errno
??_U@YAPAXI@Z
exit
__getmainargs
?terminate@@YAXXZ
__p__commode

advapi32

OpenServiceW
ReportEventW
RegDeleteValueW
RegisterEventSourceW

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd54c38af73e59497f1d2075e1d5f537

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 39KB - Virtual size: 39KB

.data Size: 93KB - Virtual size: 287KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 39KB - Virtual size: 39KB

.data
Size: 93KB - Virtual size: 287KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 1024B