0818b3f4f25a1f2454b155e319aa9651

Sharing

Copy URL Twitter E-mail

General

Target

0818b3f4f25a1f2454b155e319aa9651
Size

672KB
MD5

0818b3f4f25a1f2454b155e319aa9651
SHA1

8b7dd6503a577252737c732d9f2d9268cb9e7369
SHA256

d4ff7685923fc01f222c7ae7cf0dd843b8eb8c5fdc5c150c6beca3342f5bc56b
SHA512

fcd33261301064f9cfbc020c54626d17f100324791f66a8d676be6a79670a4724bfb50fbe4532d819e62cea2170cd7ab7a03fd946c25697b466a811959cd42d8
SSDEEP

12288:Hr7l9JPNgDDTvq9SmnXKCcKpHCmqAzbiatX3c2G5Zu5+7UaxUm0Q:L7l9JPNGLq9jXKCHHj/uu5+7UaxUjQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0818b3f4f25a1f2454b155e319aa9651

Files

0818b3f4f25a1f2454b155e319aa9651
.exe windows:4 windows x86 arch:x86

54fe561b60e2107dc3dfbc6affd52958

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
GetVolumeInformationA
TlsFree
GetCurrentProcessId
GetWindowsDirectoryW
InterlockedIncrement
TlsGetValue
InterlockedExchange
GetProcAddress
HeapCreate
SetFileAttributesA
InterlockedDecrement
OpenMutexA
GetCPInfo
GetModuleHandleA
QueryPerformanceCounter
GetUserDefaultLCID
DeleteCriticalSection
GetFileType
SetConsoleCtrlHandler
GetStartupInfoA
CreateToolhelp32Snapshot
GetCurrentThread
EnumSystemLocalesA
LCMapStringW
WriteConsoleW
GetVersionExA
GetCommandLineA
GetSystemTime
TerminateProcess
CompareStringA
CreateDirectoryExA
GetLocaleInfoW
CreateFileA
GetLocaleInfoA
MultiByteToWideChar
SetFilePointer
WideCharToMultiByte
GetConsoleMode
FreeEnvironmentStringsA
GetCurrentThreadId
CreateMutexA
GlobalUnfix
CloseHandle
SetHandleCount
CompareStringW
IsValidCodePage
GetStringTypeW
FlushFileBuffers
TlsAlloc
VirtualAlloc
lstrcmpW
GetConsoleOutputCP
ExitProcess
LoadLibraryA
SetLastError
GetOEMCP
WriteConsoleA
GetModuleFileNameA
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
InitializeCriticalSection
IsDebuggerPresent
AddAtomA
GetCurrentProcess
GetStdHandle
GetLastError
GetComputerNameW
HeapDestroy
SetUnhandledExceptionFilter
HeapFree
LCMapStringA
GetACP
UnhandledExceptionFilter
GetEnvironmentStringsW
IsValidLocale
HeapReAlloc
GetEnvironmentStrings
ReadFile
GetLocalTime
LeaveCriticalSection
WriteFile
SetStdHandle
GetStringTypeA
SetThreadContext
GetTickCount
GetProfileIntW
VirtualQuery
GetProcessHeap
HeapSize
GetConsoleCP
TlsSetValue
LocalShrink
FreeLibrary
GetTimeZoneInformation
HeapAlloc
Sleep
FreeEnvironmentStringsW
EnterCriticalSection
VirtualFree
RtlUnwind

comctl32

ImageList_Read
DrawInsert
ImageList_GetIcon
ImageList_SetImageCount
ImageList_Merge
InitCommonControlsEx
CreateToolbar
ImageList_AddIcon
ImageList_EndDrag
CreateMappedBitmap
ImageList_BeginDrag
DrawStatusTextW
DestroyPropertySheetPage
ImageList_GetFlags
CreatePropertySheetPage
ImageList_SetBkColor
CreateStatusWindow
MakeDragList
ImageList_Create
ImageList_Replace

user32

RegisterClassExA
CharPrevA
FreeDDElParam
PeekMessageA
ScrollWindowEx
SetMenuDefaultItem
OemToCharA
RegisterClassA
GetClassNameW
GetPriorityClipboardFormat
DdeConnectList
UpdateWindow
DefWindowProcA
EnumPropsExA
MonitorFromPoint
CallMsgFilterA
LookupIconIdFromDirectoryEx
EnumWindowStationsA
DrawCaption
DefFrameProcW
CreateDialogIndirectParamA
EndMenu
GetCursorPos

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54fe561b60e2107dc3dfbc6affd52958

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 120KB - Virtual size: 123KB

.rsrc Size: 72KB - Virtual size: 71KB

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 120KB - Virtual size: 123KB

.rsrc
Size: 72KB - Virtual size: 71KB