10513a61da21e46e36c0a1160d4b7b3b

Sharing

Copy URL Twitter E-mail

General

Target

10513a61da21e46e36c0a1160d4b7b3b
Size

584KB
MD5

10513a61da21e46e36c0a1160d4b7b3b
SHA1

b5fe4e8fee9ec0950869182ba1a31497242b80c7
SHA256

8fd3b724ce8767921f292c5835d77532f9ec7fd20b6d12f8016182f6a92f0d3c
SHA512

e01cdd562ba2a5474ab377365cd65d82405d6edd1982026ffcdc939524716f5bfb4efa6975e5f05771a744b6931d0a638f79ae5fc17a38dcdae016ce464f21e0
SSDEEP

12288:Fksh/D2ej5Q9QUzejfsRxl8CNi2RBM8/Wvoanka49TV6kCHmDL1il:FkKD2QeanjfsRxlvBMrfnDSIpOL1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10513a61da21e46e36c0a1160d4b7b3b

Files

10513a61da21e46e36c0a1160d4b7b3b
.exe windows:4 windows x86 arch:x86

818eeea8f640e411d67c0bc198065718

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawStatusText
ImageList_GetFlags
ImageList_GetBkColor
ImageList_EndDrag
ImageList_DrawEx
CreateMappedBitmap
ImageList_Draw
DrawStatusTextW
ImageList_Write
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_DragEnter
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_GetIcon
ImageList_Merge
CreatePropertySheetPage
InitCommonControlsEx
ImageList_DrawIndirect
ImageList_Duplicate
ImageList_Destroy
CreatePropertySheetPageA
ImageList_SetDragCursorImage
DrawStatusTextA
ImageList_SetBkColor

gdi32

PolylineTo
GetMiterLimit
CancelDC
SetTextAlign
PolyTextOutW
CopyEnhMetaFileA
SelectClipPath
SetMetaFileBitsEx

wininet

FtpPutFileW
InternetInitializeAutoProxyDll
InternetCanonicalizeUrlA
FtpFindFirstFileA
FindFirstUrlCacheEntryExW
InternetDialA

kernel32

GlobalHandle
WriteFile
LCMapStringA
VirtualFree
GetProfileSectionA
GetVersionExA
LoadLibraryW
GetCurrentDirectoryW
GetLocaleInfoW
GlobalFindAtomA
RaiseException
GetEnvironmentStringsW
GetModuleFileNameA
CreateNamedPipeA
HeapAlloc
GetTickCount
FoldStringA
LCMapStringW
GetStartupInfoA
SetConsoleCtrlHandler
WriteConsoleW
IsDebuggerPresent
OpenMutexA
GetLastError
InterlockedExchange
GetCurrentProcessId
TlsSetValue
GetStringTypeW
HeapFree
TlsAlloc
InitializeCriticalSection
RtlUnwind
GetEnvironmentStringsA
GetConsoleCP
FlushFileBuffers
EnterCriticalSection
ReadFile
GetTimeFormatA
CreateFileA
GetFileType
GetDateFormatA
HeapCreate
VirtualQuery
CloseHandle
DeleteCriticalSection
SetLastError
GetUserDefaultLCID
GetFileAttributesA
InterlockedIncrement
FormatMessageW
ExitProcess
GetCommandLineA
WideCharToMultiByte
GetACP
GetProcessHeap
GetCurrentThreadId
LeaveCriticalSection
SetUnhandledExceptionFilter
GetModuleHandleA
LoadLibraryA
GetCurrentThread
TlsGetValue
MultiByteToWideChar
LocalReAlloc
GetStdHandle
FreeEnvironmentStringsA
GetLocaleInfoA
TlsFree
GetSystemTimeAsFileTime
SetFilePointer
SetHandleCount
CompareStringA
FreeEnvironmentStringsW
WriteConsoleA
FindFirstFileW
GetConsoleOutputCP
GetCPInfo
VirtualAlloc
Sleep
GetStringTypeA
FreeLibrary
IsValidCodePage
SetConsoleScreenBufferSize
QueryPerformanceCounter
HeapReAlloc
SetStdHandle
EnumSystemLocalesA
lstrlen
IsValidLocale
GetEnvironmentStrings
GetTimeZoneInformation
GetOEMCP
InterlockedDecrement
GetCurrentProcess
UnhandledExceptionFilter
HeapSize
CompareStringW
GetProcAddress
SetEnvironmentVariableA
LocalAlloc
GetConsoleMode
TerminateProcess
HeapDestroy
CreateMutexA
AllocConsole

shell32

DragFinish
SHAppBarMessage
SHGetFileInfoW
DragQueryFile
ExtractAssociatedIconA

user32

ChangeMenuW
FrameRect
CreateCursor
CreateWindowStationA
DefWindowProcW
InsertMenuA
ShowScrollBar
PeekMessageW
GetMessageExtraInfo
MsgWaitForMultipleObjectsEx
GetKeyboardLayoutNameA
GetAncestor
MessageBoxA
SetWindowContextHelpId
MessageBoxIndirectA
UnregisterClassW
LoadAcceleratorsA
OpenWindowStationA
ToUnicode
SetWindowsHookW
GetDlgItem
DdeClientTransaction
SetScrollPos
RegisterWindowMessageA
GetScrollPos
ClipCursor
SetClipboardData
RemovePropA
DdeSetQualityOfService
GetWindowLongA
CopyAcceleratorTableA
PostMessageW
CloseDesktop
InsertMenuItemW
InsertMenuItemA
GetWindowModuleFileNameW
OemToCharW
DestroyWindow
GetClassInfoExA
SetDlgItemTextW
FlashWindowEx
RegisterClassExA
EnumPropsExA
DlgDirSelectComboBoxExA
OpenDesktopW
wsprintfA
RegisterClassA
GetQueueStatus
GetComboBoxInfo
CharNextA
SetWindowsHookExA
GetClassInfoA
FindWindowW
ShowWindow
CharPrevA
CreateWindowExA
ScrollDC
IsDialogMessage
SetTimer
ShowOwnedPopups
DrawFocusRect
SendMessageA
CharToOemBuffW
WindowFromPoint
MessageBoxW
CharNextExA
GetParent
AdjustWindowRectEx
GetIconInfo
GetKeyboardLayout
EnumDisplaySettingsW
GetGuiResources
SetProcessWindowStation
UnpackDDElParam
GetMessageW

advapi32

CryptContextAddRef
CryptSetProviderExA
CryptDeriveKey
CryptEncrypt
GetUserNameA
CryptGenRandom
InitiateSystemShutdownW
RegConnectRegistryA
ReportEventA
RegCreateKeyW
RegQueryMultipleValuesW
RegQueryInfoKeyA

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

818eeea8f640e411d67c0bc198065718

Headers

File Characteristics

Imports

comctl32

gdi32

wininet

kernel32

shell32

user32

advapi32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 116KB - Virtual size: 143KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 116KB - Virtual size: 143KB

.rsrc
Size: 32KB - Virtual size: 28KB