124c8f0a4574eb70a9ca0d31049df60f

Sharing

Copy URL Twitter E-mail

General

Target

124c8f0a4574eb70a9ca0d31049df60f
Size

464KB
MD5

124c8f0a4574eb70a9ca0d31049df60f
SHA1

8b867631d6fa844e2e6473509cfc4719b6763354
SHA256

41f5b682d57fc24f2b8c9936dea1f4fe1f0c123f82e988e3d4ecc1002aeecfaf
SHA512

8117f3f2d669e773cf39e92c1b2b5a8076346fbf8a47692d318566779dce4b18f8cba1ea6b5a875298daa9fd00412cc371d77bf90570ce46c5dd2d05467cfdc8
SSDEEP

6144:YwDdS+WtLu0394+scVaASe/BEf3fwxRhqpiaHTfTRPWqNmLHfvNFmN9AOiHgk5j:LDYTM03948KwxRHazfQttK9fS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
124c8f0a4574eb70a9ca0d31049df60f

Files

124c8f0a4574eb70a9ca0d31049df60f
.exe windows:4 windows x86 arch:x86

75e17f5c4eb547d09acbac6e3b775c4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetEndOfFile
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
GetConsoleMode
CompareStringA
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
VirtualFree
lstrlenW
VirtualQuery
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
FindFirstFileW
CreateFileMappingA
ResetEvent
FindFirstFileA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetEvent
OpenProcess
GetStartupInfoW
SetErrorMode
GetWindowsDirectoryA
GetModuleHandleW
GetFileSize
GetStartupInfoA
DeleteFileA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
IsBadWritePtr
GetTickCount
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
EnterCriticalSection
lstrcpynA
WriteConsoleW
SetCurrentDirectoryA
InterlockedIncrement
GetCurrentThreadId
CreateEventW
GlobalAlloc
WriteConsoleA
GetEnvironmentVariableA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
LoadLibraryExA
SetFileAttributesA
CreateThread
GetModuleHandleA
MultiByteToWideChar
UnhandledExceptionFilter
SetHandleCount
GetPrivateProfileStringA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
GetSystemTime
SetLastError
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
FormatMessageW
LocalFree
GetOEMCP
GetFullPathNameA
GetStringTypeW
HeapReAlloc
SizeofResource
GetCommandLineA
GetSystemTimeAsFileTime
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
GetTempPathA
SetStdHandle
GetLocaleInfoW
FreeEnvironmentStringsW
LoadLibraryExW
ExpandEnvironmentStringsA
lstrcatA
LocalAlloc
GetLocaleInfoA
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
HeapDestroy
FindNextFileA
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetACP
GetVersion
InterlockedExchange
CreateProcessA
IsValidCodePage
HeapCreate
WriteFile
CreateProcessW
Sleep
IsBadReadPtr
FindResourceA
HeapFree
VirtualAlloc

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
RegQueryValueExA

user32

BeginPaint
SetCapture
GetMessageA
SetFocus
EndPaint
ReleaseDC
FillRect
CreateWindowExA
GetWindowLongA
RegisterClassA
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
SetWindowPos
PeekMessageA
EnableWindow
SetWindowLongA
GetSystemMetrics
DefWindowProcA
UpdateWindow
GetParent
DestroyWindow
GetClientRect
SendMessageA
GetCursorPos
GetDC
DispatchMessageA
IsWindow
LoadBitmapA
PostQuitMessage
SetForegroundWindow
SystemParametersInfoA
IsWindowVisible
InvalidateRect
CallWindowProcA
SetCursor
GetWindowRect
IsIconic
PostMessageA
ReleaseCapture
SetWindowTextA
CheckMenuItem
SetTimer
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
EndDialog
MessageBoxA
GetFocus
ShowWindow
GetSysColor

gdi32

SetBkColor
DeleteObject
CreateSolidBrush
SetTextColor

ole32

OleUninitialize
CoTaskMemFree
CoTaskMemAlloc
OleInitialize

msvcrt

_strcmpi
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
_controlfp
__set_app_type

Sections

.text
Size: 280KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75e17f5c4eb547d09acbac6e3b775c4c

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

ole32

msvcrt

Sections

.text Size: 280KB - Virtual size: 277KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 112KB - Virtual size: 111KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 280KB - Virtual size: 277KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 112KB - Virtual size: 111KB

.rsrc
Size: 4KB - Virtual size: 3KB