13e8377eee9a6e860b46ea3dd779bf4f

Sharing

Copy URL Twitter E-mail

General

Target

13e8377eee9a6e860b46ea3dd779bf4f
Size

576KB
MD5

13e8377eee9a6e860b46ea3dd779bf4f
SHA1

754936d9f87b09dbabab96e317fd19729b97bf6e
SHA256

20e59c1e729a5cc02ce932b17a8d4f6fc43c7a8b9388bc6430a01032229a2a3d
SHA512

a10cb8e239f684a5c475c4f722eb3fe05b6605731d1344079168817d35accf66dcc2f83c34d7387c9cfd319623ebe844babd7b6e60d55ff9778065c5c699b7ae
SSDEEP

12288:y7BRY55m34DmE0PlyjhS1hfTpNH12B0m6R:y7Be55mIyE0tYS7fDF9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13e8377eee9a6e860b46ea3dd779bf4f

Files

13e8377eee9a6e860b46ea3dd779bf4f
.exe windows:4 windows x86 arch:x86

e2ddfc850f2fc836fe9f352258aaddba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExW
CryptSetProviderExW
CryptSignHashW
RegRestoreKeyW
LookupPrivilegeDisplayNameW
DuplicateToken
InitializeSecurityDescriptor
StartServiceW
CryptSignHashA
RevertToSelf
CryptSetProviderA

comctl32

CreateMappedBitmap
ImageList_Replace
ImageList_GetFlags
ImageList_AddMasked
ImageList_Create
ImageList_ReplaceIcon
CreateUpDownControl
ImageList_GetImageInfo
ImageList_DragLeave
InitCommonControlsEx
ImageList_DrawEx

kernel32

GetCurrentProcessId
GetEnvironmentStrings
FindResourceW
SetFilePointer
EnumSystemLocalesA
GetTimeZoneInformation
CreateRemoteThread
GetModuleHandleA
GetStringTypeA
GetModuleFileNameA
Sleep
VirtualFree
HeapCreate
EnterCriticalSection
GetSystemTimeAsFileTime
UnhandledExceptionFilter
VirtualQuery
CompareStringW
FlushFileBuffers
QueryPerformanceCounter
GetLocaleInfoW
LCMapStringW
WriteFile
HeapAlloc
GetCPInfo
TlsGetValue
InterlockedExchange
InterlockedIncrement
EnumResourceNamesA
GetTickCount
LCMapStringA
IsValidCodePage
FreeLibrary
GetProcessHeap
WideCharToMultiByte
GetFileType
FreeEnvironmentStringsW
CompareStringA
WriteConsoleW
ExitProcess
LeaveCriticalSection
ResetEvent
LoadLibraryA
FindResourceA
GetLastError
GetStartupInfoA
LocalSize
GetACP
IsValidLocale
GetUserDefaultLangID
GetCurrentThreadId
GetConsoleOutputCP
GetCurrentThread
GlobalFree
IsDebuggerPresent
HeapReAlloc
ReadFile
RtlUnwind
GetStringTypeW
SetHandleCount
HeapDestroy
SetConsoleCtrlHandler
SetLastError
SetStdHandle
DeleteCriticalSection
InitializeCriticalSection
GetTimeFormatA
TlsAlloc
TlsSetValue
GetUserDefaultLCID
TlsFree
GetStdHandle
EnumResourceLanguagesA
MultiByteToWideChar
GetCurrentProcess
GetConsoleMode
HeapFree
InterlockedDecrement
GetCommandLineA
GetPrivateProfileIntA
GetProcAddress
GetVersionExA
ReadConsoleOutputW
GetOEMCP
CreateMutexA
OpenMutexA
GetLongPathNameW
WriteConsoleA
TerminateProcess
FreeEnvironmentStringsA
GlobalAddAtomW
GetDateFormatA
GetEnvironmentStringsW
SetEnvironmentVariableA
OpenEventA
GlobalFindAtomA
CloseHandle
SetUnhandledExceptionFilter
HeapSize
VirtualAlloc
GetConsoleCP
CreateFileA
GetLocaleInfoA

user32

SetWindowLongW
ShowWindow
GetForegroundWindow
DestroyWindow
DefWindowProcA
SetMenuItemInfoA
SetCaretPos
DrawStateW
SendMessageTimeoutW
DdeCreateStringHandleW
BroadcastSystemMessageW
DdeInitializeW
IsWindow
DdeDisconnectList
CharLowerBuffA
SetProcessWindowStation
GetClassLongW
CloseClipboard
BeginPaint
EnumWindowStationsA
LoadKeyboardLayoutW
EndDialog
LoadKeyboardLayoutA
GetAncestor
GetAltTabInfo
SetWindowPlacement
RegisterClassA
GetShellWindow
SetTimer
LoadBitmapA
CreateWindowExW
CreateDesktopW
ToAscii
OemKeyScan
MessageBoxW
DlgDirListComboBoxA
SetDlgItemInt
RegisterClassExA

Sections

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2ddfc850f2fc836fe9f352258aaddba

Headers

File Characteristics

Imports

advapi32

comctl32

kernel32

user32

Sections

.text Size: 196KB - Virtual size: 196KB

.rdata Size: 249KB - Virtual size: 249KB

.data Size: 115KB - Virtual size: 122KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 196KB - Virtual size: 196KB

.rdata
Size: 249KB - Virtual size: 249KB

.data
Size: 115KB - Virtual size: 122KB

.rsrc
Size: 14KB - Virtual size: 13KB