0ea2c6219bbea2b3334b22e24b428432

Sharing

Copy URL Twitter E-mail

General

Target

0ea2c6219bbea2b3334b22e24b428432
Size

56KB
MD5

0ea2c6219bbea2b3334b22e24b428432
SHA1

56e49f6e476b99d604516b3462d006ed0f02643b
SHA256

4c32447d40ea4b2f2ce33d5fba9c2b11088f209d820cbb65d0d8b5689ac4cd4a
SHA512

3a044318ff6e5302a85ffd9f174269fb51c67e0b0b6e05693e03099c85599bcd1930c1db79087056970b573ed66d21036cdfeb134e303d459e3b3161478615b4
SSDEEP

768:zKuy6dphUz0EJgYbTUxiviSb3GQXxXZUHgJccicjsxCWs9QLTv2rx6DavaXZO3ta:zJz1UQ8gwTUGzhZTJcxI8DouavE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ea2c6219bbea2b3334b22e24b428432

Files

0ea2c6219bbea2b3334b22e24b428432
.exe windows:5 windows x86 arch:x86

9ed2c99fad23e4c73de10ace357efd2d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetProcessWindowStation
PeekMessageA
GetMessageW
EndDialog
SendMessageW
CharLowerBuffA
ToUnicode
FindWindowExW
SetThreadDesktop
MsgWaitForMultipleObjects
GetIconInfo
DispatchMessageW
CloseWindowStation
GetDlgItemTextW
GetCursorPos
GetForegroundWindow
ExitWindowsEx
LoadCursorW
GetWindowTextW
GetDlgItem
OpenDesktopA
GetWindowLongW
GetKeyboardState
CloseDesktop
GetKeyState
OpenWindowStationA
GetDlgItemTextA
PeekMessageW
GetClassNameW
GetWindowThreadProcessId
DrawIcon
GetMessageA
GetClipboardData

kernel32

UnmapViewOfFile
CopyFileW
MapViewOfFile
GetFileSizeEx
SetFileAttributesW
GetVersionExW
GetFileSize
FlushFileBuffers
WriteFile
WriteProcessMemory
InitializeCriticalSection
GlobalLock
GetDriveTypeW
ReleaseMutex
OpenProcess
GetUserDefaultUILanguage
WaitForSingleObject
GetExitCodeProcess
GetTickCount
CreateProcessW
OpenMutexW
GetLogicalDrives
GetTempPathW
ResetEvent
LeaveCriticalSection
lstrcmpiA
DisconnectNamedPipe
SetThreadPriority
CloseHandle
CreateFileMappingW
SetFileTime
FindResourceW
CreateFileW
MultiByteToWideChar
SetLastError
ExpandEnvironmentStringsW
HeapReAlloc
GetFileTime
FindClose
GetThreadPriority
lstrlenA
GetModuleFileNameW
GetProcessTimes
SetEvent
lstrcatA
GetModuleHandleA
GetModuleFileNameA
GetProcessHeap
lstrcpyW
HeapFree
GetSystemTimeAsFileTime
DeleteFileW
IsBadReadPtr
GetTimeZoneInformation
SetEndOfFile
FindNextFileW
lstrcatW
ReadFile

Sections

.bcx
Size: 19KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zsl
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upqt
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mpqp
Size: 27KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ed2c99fad23e4c73de10ace357efd2d

Headers

File Characteristics

Imports

user32

kernel32

Sections

.bcx Size: 19KB - Virtual size: 39KB

.zsl Size: 5KB - Virtual size: 10KB

.upqt Size: 1024B - Virtual size: 1KB

.mpqp Size: 27KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 4KB

.bcx
Size: 19KB - Virtual size: 39KB

.zsl
Size: 5KB - Virtual size: 10KB

.upqt
Size: 1024B - Virtual size: 1KB

.mpqp
Size: 27KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 4KB