11b3e0170f0dc8c3d11bfafe36e512f8

Sharing

Copy URL Twitter E-mail

General

Target

11b3e0170f0dc8c3d11bfafe36e512f8
Size

564KB
MD5

11b3e0170f0dc8c3d11bfafe36e512f8
SHA1

3ff16907bb8064382b4b9b29d98253f21eb503f7
SHA256

3c8e0f64149e5d792d794dc776bddbd0fa9371c0a4a7c90eb3ecb7f7197d9f7a
SHA512

feeee245a48180f05b42887aee91cfbaa1448e5fd144e6a12bc2816831fc47e872c2809019b172b20621e64f3a9bdf7bfa165eeb80ce0177f5d8437850bfeaeb
SSDEEP

12288:VaY/RrWjltNaVMG40j4unwh1F2xBGDP49b6l:VaiRUltNaVT4ewV2xBGrl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11b3e0170f0dc8c3d11bfafe36e512f8

Files

11b3e0170f0dc8c3d11bfafe36e512f8
.exe windows:4 windows x86 arch:x86

ae7acc731d79647d22d7bf6f86a28558

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpEndRequestW
InternetTimeFromSystemTimeW
UrlZonesDetach
HttpOpenRequestW
InternetDial

user32

DdeFreeStringHandle
BlockInput
IsRectEmpty
WinHelpA
DestroyWindow
ShowWindow
TranslateAcceleratorA
SetScrollRange
GetKeyNameTextA
GetDoubleClickTime
ToUnicode
CreateWindowExW
DdeCreateStringHandleA
CharLowerA
TranslateAccelerator
CheckRadioButton
EnumPropsW
ExitWindowsEx
RegisterClassExA
ShowWindowAsync
LockWindowUpdate
ScrollDC
OemKeyScan
MessageBoxW
RegisterDeviceNotificationA
CharUpperA
CreatePopupMenu
RegisterClassA
NotifyWinEvent
DdeUninitialize
DlgDirListW
DefWindowProcW

comctl32

InitMUILanguage
CreateStatusWindowW
InitCommonControlsEx
ImageList_GetIcon

kernel32

IsDebuggerPresent
CompareStringA
GetSystemDirectoryW
lstrlenW
OpenMutexW
SetStdHandle
SetCurrentDirectoryW
EnterCriticalSection
QueryPerformanceCounter
VirtualProtect
EnumSystemLocalesA
RtlUnwind
FreeEnvironmentStringsA
SetHandleCount
GetCurrentProcess
ExitProcess
LocalFlags
GetACP
InterlockedExchange
GetVersionExA
IsValidCodePage
GetStringTypeA
CreateThread
CreateMutexW
VirtualAlloc
GetEnvironmentStringsA
TlsFree
GetPriorityClass
HeapSize
ReadFile
CreateDirectoryExA
CreateDirectoryExW
SetWaitableTimer
GetModuleHandleW
HeapReAlloc
GetProcessHeap
LocalUnlock
FileTimeToDosDateTime
WriteConsoleOutputCharacterW
GetCurrentThreadId
VirtualQuery
InitializeCriticalSection
SetThreadAffinityMask
WriteFile
IsBadWritePtr
FlushConsoleInputBuffer
EnumCalendarInfoA
GetCurrentThread
GetFileType
OpenFileMappingA
ReadConsoleOutputAttribute
FindFirstFileW
CloseHandle
GlobalAddAtomA
GetSystemDefaultLCID
CompareStringW
GetSystemTimeAsFileTime
TlsSetValue
DeleteCriticalSection
GetLocaleInfoW
WideCharToMultiByte
LoadModule
VirtualFree
GetConsoleMode
GetEnvironmentStringsW
GetPrivateProfileSectionA
GetCommandLineA
LCMapStringA
GetProcessHeaps
FreeLibrary
GetLastError
GetSystemInfo
GetCPInfo
SetEnvironmentVariableA
GetStartupInfoA
TlsGetValue
GlobalFindAtomW
lstrcpyW
FileTimeToSystemTime
TlsAlloc
GetNamedPipeHandleStateA
HeapAlloc
GetOEMCP
GetEnvironmentStrings
UnhandledExceptionFilter
MultiByteToWideChar
ReleaseMutex
TerminateProcess
HeapDestroy
GetDateFormatA
WriteConsoleInputW
CreateFileA
WaitForMultipleObjects
HeapCreate
GetModuleFileNameA
GetLocaleInfoA
ResumeThread
GlobalAddAtomW
SetFilePointer
GetStdHandle
OpenMutexA
VirtualProtectEx
IsValidLocale
GetModuleHandleA
LoadLibraryA
GetTimeFormatA
FreeEnvironmentStringsW
GetTimeZoneInformation
GetCurrencyFormatA
FlushFileBuffers
CreateWaitableTimerW
SetLocalTime
GetUserDefaultLCID
SetVolumeLabelW
LeaveCriticalSection
GetProcAddress
LCMapStringW
GetTickCount
CreateMutexA
GetStringTypeW
HeapFree
GetCurrentProcessId
SetLastError
CreateDirectoryA

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae7acc731d79647d22d7bf6f86a28558

Headers

File Characteristics

Imports

wininet

user32

comctl32

kernel32

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 256KB - Virtual size: 252KB

.data Size: 112KB - Virtual size: 121KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 256KB - Virtual size: 252KB

.data
Size: 112KB - Virtual size: 121KB

.rsrc
Size: 32KB - Virtual size: 31KB