0a2d25237c79b457da9f9b923b9b46e0

Sharing

Copy URL Twitter E-mail

General

Target

0a2d25237c79b457da9f9b923b9b46e0
Size

96KB
MD5

0a2d25237c79b457da9f9b923b9b46e0
SHA1

a1be1a97356781777c25cf9622d782c237abfea9
SHA256

97a0bdede3b5d8d4a3a879322e3082a3fbc52bb78e4820a9a8549fee5b7eb451
SHA512

1b84dfd0e1c821e293c8d416d943f45e3fd1c10897c72b267fb53dc6dce9f805e1ee4a10d7cc256a2d09c993ff78e58f1145c503af28317716fbd672836deaeb
SSDEEP

1536:wNkysYfxLwP0zC5wEMyQxwysRieufn0jliz7/fRA6NwJORPYMLp0JVzlUZ:wvsYGcu5wEMyQxrXfnSiff+gQMLp0JVo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a2d25237c79b457da9f9b923b9b46e0

Files

0a2d25237c79b457da9f9b923b9b46e0
.exe windows:4 windows x86 arch:x86

464bd9b40bac9f72331c68c92a7be283

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

setupapi

SetupIterateCabinetA

wininet

HttpOpenRequestA
InternetQueryDataAvailable
InternetCloseHandle
InternetConnectA
InternetOpenUrlA
InternetOpenA
HttpSendRequestA
InternetReadFile

kernel32

CreateFileA
WriteFile
ReadFile
SetFilePointer
CloseHandle
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileSize
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
ResetEvent
WaitForSingleObject
SetEvent
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GlobalUnlock
GlobalLock
GlobalAlloc
CreateEventA
LockResource
LoadResource
SizeofResource
FindResourceA
LoadLibraryA
GetCurrentDirectoryA
GetWindowsDirectoryA
CreateProcessA
MoveFileExA
InitializeCriticalSection
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
VirtualQuery
InterlockedExchange
HeapSize
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
UnhandledExceptionFilter
ExpandEnvironmentStringsA
GetSystemDirectoryA
GetFileAttributesA
GetLocaleInfoA
VirtualProtect
GetSystemInfo
Sleep
GetCurrentProcess
TerminateProcess
SetUnhandledExceptionFilter
EnterCriticalSection
ExitProcess
RtlUnwind
RaiseException
ExitThread
GetCurrentThreadId
GetLastError
CreateThread
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapFree
GetACP
GetOEMCP
GetCPInfo
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
DeleteCriticalSection
LeaveCriticalSection

user32

PostQuitMessage
DispatchMessageA
PeekMessageA
TranslateMessage
UpdateWindow
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassExA
GetSystemMetrics
FindWindowA
GetWindowRect
CreateWindowExA
PostMessageA
MessageBoxA
InvalidateRect
SendMessageA
ShowWindow
MoveWindow
EnableWindow
SetWindowTextA
SetFocus
BeginPaint
EndPaint
wsprintfA

gdi32

CreateFontA
GetObjectA
BitBlt
DeleteObject
CreateCompatibleDC
SelectObject
GetCurrentObject
DeleteDC
GetStockObject

advapi32

RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

464bd9b40bac9f72331c68c92a7be283

Headers

File Characteristics

Imports

version

setupapi

wininet

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB