090c86efb45b60f703e64c1f444c0f93

Sharing

Copy URL Twitter E-mail

General

Target

090c86efb45b60f703e64c1f444c0f93
Size

591KB
MD5

090c86efb45b60f703e64c1f444c0f93
SHA1

cd03963807fe08a0207e4ba6183bb050dc7f2526
SHA256

531996119721284a6366572a4e047d279266ac4046d84ed19ed3e7dfa26b52ce
SHA512

a20a8b9870821b4d06983de56926bfa1e6b3d51a06111fc959658d6ad4f82dab1a936651607edb8b5b4f249d5f99190588ded7b06d9c8aae5c132e0299b4ff90
SSDEEP

12288:G2cu2iLk0Q58ejdvDVEE+Y1WkUurJSxMIytbnER1Io:GlMk0idDVA9kUurJSxMIyzS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
090c86efb45b60f703e64c1f444c0f93

Files

090c86efb45b60f703e64c1f444c0f93
.exe windows:4 windows x86 arch:x86

7683ac0c9f8fbec36984c5ebc6f1c637

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
ChangeClipboardChain
GetClientRect
InsertMenuItemA
CreateWindowStationW
SetWinEventHook
CreateWindowExW
IsRectEmpty
MessageBoxA
RegisterClassA
CreateIconFromResourceEx
DdeCreateDataHandle
DestroyWindow
DestroyIcon
SetWindowLongW
RemovePropA
PostMessageA
GetMessageTime
FillRect
CharToOemBuffA
DefWindowProcW
RegisterClassExA
IsZoomed
DdeAbandonTransaction
OpenInputDesktop

wininet

UpdateUrlCacheContentPath
GopherGetAttributeW
CreateUrlCacheContainerA
FtpGetFileW
FtpSetCurrentDirectoryW
InternetAlgIdToStringA
InternetGetCookieW

comctl32

ImageList_Remove
ImageList_Draw
ImageList_ReplaceIcon
ImageList_SetOverlayImage
InitCommonControlsEx
ImageList_DragShowNolock

shell32

ExtractIconExA
SHBrowseForFolder

kernel32

GetTickCount
GlobalGetAtomNameA
SetFilePointer
GetCurrentThread
QueryPerformanceCounter
lstrcatW
GetStringTypeW
FlushFileBuffers
IsValidCodePage
CompareStringW
VirtualAlloc
OpenMutexA
GetModuleFileNameA
SetStdHandle
WideCharToMultiByte
GetConsoleOutputCP
InterlockedDecrement
WriteConsoleW
EnterCriticalSection
CreateMutexA
GetStringTypeA
SetUnhandledExceptionFilter
EnumSystemLocalesA
GetTimeFormatA
GetStartupInfoA
LeaveCriticalSection
ReadFile
GetProcessHeap
SetEnvironmentVariableA
Sleep
GetDateFormatW
GetModuleHandleA
DeleteCriticalSection
RtlUnwind
CreateFileA
GetLocaleInfoA
EnumResourceTypesW
GetTimeZoneInformation
FreeEnvironmentStringsW
GetLastError
VirtualQuery
GetEnvironmentStrings
VirtualFree
GetCommandLineA
GetProcAddress
HeapCreate
GetConsoleMode
TlsFree
CloseHandle
InterlockedIncrement
IsDebuggerPresent
HeapFree
SetLastError
TlsGetValue
CompareStringA
HeapAlloc
InitializeCriticalSection
TlsAlloc
HeapSize
GetVersionExA
GetOEMCP
HeapDestroy
WriteConsoleA
ExitProcess
FreeEnvironmentStringsA
GetCurrentThreadId
EnumResourceTypesA
TerminateProcess
IsValidLocale
GetSystemTimeAsFileTime
GetUserDefaultLCID
GetLocaleInfoW
GetStdHandle
WriteConsoleOutputW
UnhandledExceptionFilter
HeapReAlloc
InterlockedExchange
TransmitCommChar
FreeLibrary
lstrcmpi
GetFileType
GetCurrentProcess
GetTimeFormatW
GetEnvironmentStringsW
GetConsoleCP
GetACP
TlsSetValue
LCMapStringA
LoadLibraryA
CreateFileMappingW
LCMapStringW
GetDateFormatA
GetCPInfo
SetConsoleCtrlHandler
WriteFile
MultiByteToWideChar
SetCurrentDirectoryA
GetCurrentProcessId
SetHandleCount

Sections

.text
Size: 368KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7683ac0c9f8fbec36984c5ebc6f1c637

Headers

File Characteristics

Imports

user32

wininet

comctl32

shell32

kernel32

Sections

.text Size: 368KB - Virtual size: 368KB

.rdata Size: 64KB - Virtual size: 86KB

.data Size: 106KB - Virtual size: 106KB

.rsrc Size: 51KB - Virtual size: 51KB

.text
Size: 368KB - Virtual size: 368KB

.rdata
Size: 64KB - Virtual size: 86KB

.data
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 51KB - Virtual size: 51KB