098dd1407b43b7a0cd5faafa88b1bbcc

Sharing

Copy URL Twitter E-mail

General

Target

098dd1407b43b7a0cd5faafa88b1bbcc
Size

624KB
MD5

098dd1407b43b7a0cd5faafa88b1bbcc
SHA1

701637d9cbb230a3249c250258b1d36d214ec363
SHA256

4a781a1d09a1f61e79082293644002d47eefa29673d0578d9d003d68e3866b28
SHA512

f6863e75b5fe2be52a3680cf0515e465a123981291034accf78d122af82c19f6c58c0680d3726328750a528d8038d82479812944f9536fde65bf8980ba5c59e3
SSDEEP

12288:TCMX77C4LouaCbJGiFGOaKfp5y0x7lku5iCCBeoQ4HPxMc:TCMX7W4aqJGfOaApsqpkiDChQ4HPh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
098dd1407b43b7a0cd5faafa88b1bbcc

Files

098dd1407b43b7a0cd5faafa88b1bbcc
.exe windows:4 windows x86 arch:x86

158283cc89a3859944379904d11b39af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptGenRandom
RegQueryMultipleValuesW

user32

RegisterClassA
MessageBoxA
InvalidateRgn
LoadBitmapW
RemovePropW
CreateWindowExA
DdeAddData
RegisterClassExA
ToAsciiEx
CharPrevW
IsCharAlphaA
SystemParametersInfoA
IsCharUpperW
GetDlgItem
SetMessageQueue
DdeCmpStringHandles
CharLowerBuffA
PaintDesktop
GetSystemMetrics
EnableMenuItem
GetClipboardViewer
CallMsgFilter
DefWindowProcA
IntersectRect
LoadImageA
GetWindowDC
GrayStringW
DestroyWindow
OpenDesktopW
GetWindowTextA
GetNextDlgTabItem
ShowWindow
GetMenuBarInfo
CreateDialogIndirectParamW
GetKeyState
IsWindow

comctl32

MakeDragList
ImageList_EndDrag
ImageList_SetDragCursorImage
DrawInsert
ImageList_BeginDrag
ImageList_Copy
_TrackMouseEvent
CreateStatusWindowW
InitCommonControlsEx
DestroyPropertySheetPage
CreatePropertySheetPageW

wininet

FtpGetFileEx
InternetSetCookieA
GopherGetLocatorTypeW
FreeUrlCacheSpaceA
InternetCloseHandle
GopherCreateLocatorW
InternetGetConnectedStateExA
InternetQueryDataAvailable

kernel32

SetConsoleCtrlHandler
WriteConsoleW
GetCurrentProcess
lstrlenA
GetStdHandle
InterlockedExchange
GetFileType
GetOEMCP
TerminateProcess
ReadFile
GetDiskFreeSpaceExW
RemoveDirectoryW
SetHandleCount
GetStartupInfoA
CreateMutexA
GetEnvironmentStringsW
FreeEnvironmentStringsW
VirtualFree
OpenMutexA
GetDriveTypeA
RtlUnwind
Sleep
EnumSystemLocalesW
GetDateFormatA
WideCharToMultiByte
LCMapStringW
DeleteCriticalSection
SetLastError
GetExitCodeProcess
GetUserDefaultLCID
GetCPInfo
WriteConsoleA
EnterCriticalSection
FreeEnvironmentStringsA
IsBadWritePtr
TlsSetValue
FlushFileBuffers
SetUnhandledExceptionFilter
LeaveCriticalSection
HeapCreate
GetThreadContext
VirtualAlloc
GetCommandLineA
GetCurrentThreadId
SetFilePointer
HeapAlloc
VirtualQuery
GetShortPathNameW
CloseHandle
TlsFree
WriteFile
GetStringTypeExA
InterlockedDecrement
GetProcessHeap
EnumDateFormatsW
HeapSize
GetStringTypeW
GetLocaleInfoA
GetVersion
FreeLibrary
WritePrivateProfileSectionW
GetTickCount
ExitProcess
LCMapStringA
TlsGetValue
WaitForDebugEvent
GetConsoleMode
EnumSystemLocalesA
HeapDestroy
GetConsoleOutputCP
GetSystemTimeAsFileTime
TlsAlloc
GetModuleHandleA
GetCurrentProcessId
GetEnvironmentStrings
CreateFileA
GetTimeZoneInformation
GetLastError
lstrcmp
CreateToolhelp32Snapshot
CompareStringW
GetConsoleCP
IsValidCodePage
HeapFree
SetEnvironmentVariableA
SetStdHandle
GetStringTypeA
GetModuleFileNameA
GetVersionExA
UnhandledExceptionFilter
GetACP
HeapReAlloc
GetProcAddress
WaitNamedPipeW
SetEvent
LoadLibraryA
InterlockedIncrement
GetTimeFormatA
GetLocaleInfoW
GetCurrentThread
IsDebuggerPresent
GlobalCompact
MultiByteToWideChar
IsValidLocale
CompareStringA
InitializeCriticalSection
QueryPerformanceCounter

Sections

.text
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

158283cc89a3859944379904d11b39af

Headers

File Characteristics

Imports

advapi32

user32

comctl32

wininet

kernel32

Sections

.text Size: 200KB - Virtual size: 197KB

.rdata Size: 256KB - Virtual size: 254KB

.data Size: 116KB - Virtual size: 123KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 200KB - Virtual size: 197KB

.rdata
Size: 256KB - Virtual size: 254KB

.data
Size: 116KB - Virtual size: 123KB

.rsrc
Size: 48KB - Virtual size: 47KB