12864d1acaf04ee7d545fc7c588eb5b1

Sharing

Copy URL Twitter E-mail

General

Target

12864d1acaf04ee7d545fc7c588eb5b1
Size

167KB
MD5

12864d1acaf04ee7d545fc7c588eb5b1
SHA1

ca87cb57caaf2b9f5cb724ae47f89fa52486c3f5
SHA256

db85a5d3184f7380b64c7ef66f4598ea923271510a9513940d1751f543b5e686
SHA512

6d852e7b394e366a123a5937fecae7a527437ab01cb45391b74a3b5c7280d4f71cfa9a8429546dc2e0dbc1d2af0847af8c4ec8419ffb261e7c4d87e3574f2b0e
SSDEEP

3072:O/VxcglNqhFwg75VMR8dOx+bP0w32p0fwzJsWtYM1lWhR3BlJkOVfx:rgl8hFPsIFsDYMXWTRlJlfx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12864d1acaf04ee7d545fc7c588eb5b1

Files

12864d1acaf04ee7d545fc7c588eb5b1
.exe windows:4 windows x86 arch:x86

d3abf5d9271c08b19ba5bd12ea9a4917

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CoInitialize

kernel32

WritePrivateProfileSectionW
ReadFile
IsProcessorFeaturePresent
GetVersionExA
GetModuleHandleA
GetCurrentProcess
GetModuleFileNameW
TlsAlloc
GetStringTypeA
WriteConsoleInputVDMA
UnhandledExceptionFilter
LoadLibraryA
GetTickCount
LeaveCriticalSection
InterlockedExchange
LoadLibraryW
GetCurrentProcessId
RtlUnwind
MulDiv
GetCurrentThreadId
WriteConsoleW
SetLastError
GetOEMCP
HeapAlloc
HeapCreate
CopyFileW
GetProcessHandleCount
GetStartupInfoW
WideCharToMultiByte
SetHandleCount
TlsFree
GetProcAddress
InterlockedDecrement
LoadLibraryExW
lstrcmpA
LCMapStringW
GetCommandLineA
FlushFileBuffers
TlsGetValue
GetStdHandle
CloseHandle
HeapDestroy
DeleteCriticalSection
GetStringTypeW
FreeLibrary
lstrlenA
VirtualFree
DeleteFileW
CreateSemaphoreW
SetStdHandle
HeapReAlloc
FlushInstructionCache
WriteFile
GetProcessHeap
CreateProcessW
LoadResource
GetStartupInfoA
FindResourceW
lstrcmpiW
CreateFileW
GetVersion
HeapFree
EnumResourceNamesA
InitializeCriticalSection
GetCommandLineW
ExitProcess
GetSystemTimeAsFileTime
GetConsoleOutputCP
GetEnvironmentStrings
GetSystemDirectoryW
SetUnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsW
CreateFileMappingW
GetFileSize
GetFileAttributesW
GetConsoleMode
Sleep
VirtualAlloc
HeapSize
GetThreadLocale
LocalAlloc
GetCPInfo
TlsSetValue
WriteConsoleA
SizeofResource
GetEnvironmentStringsW
WaitForSingleObject
LCMapStringA
IsDebuggerPresent
GetModuleHandleW
GetLastError
GetDriveTypeW
GetLocaleInfoA
GetConsoleCP
QueryPerformanceCounter
RaiseException
CreateFileA
GetFileType
LockResource
GetACP
FreeEnvironmentStringsA
InterlockedCompareExchange
LocalFree
GetVersionExW
SetFilePointer
InterlockedIncrement
lstrlenW

oleacc

LresultFromObject
CreateStdAccessibleObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW

user32

SetWindowTextW
DispatchMessageW
SetWindowPos
GetClassInfoExW
GetWindowTextLengthW
GetClientRect
GetParent
GetWindowRect
CreateWindowExW
TranslateMessage
RegisterClassExW
EndPaint
MessageBoxW
GetDlgItem
SetCapture
GetWindow
MapWindowPoints
SystemParametersInfoW
PeekMessageW
SetDlgItemTextW
GetDC
GetWindowInfo
BeginPaint
DestroyWindow
LoadCursorW
GetDlgItemTextW
EndDialog

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3abf5d9271c08b19ba5bd12ea9a4917

Headers

File Characteristics

Imports

ole32

kernel32

oleacc

version

gdi32

shell32

user32

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 70KB - Virtual size: 69KB

.idive Size: 1024B - Virtual size: 376KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 70KB - Virtual size: 69KB

.idive
Size: 1024B - Virtual size: 376KB