160df57cfb7ac5ca6b2feaa5d9963009

Sharing

Copy URL

Twitter E-mail

General

Target

160df57cfb7ac5ca6b2feaa5d9963009
Size

576KB
MD5

160df57cfb7ac5ca6b2feaa5d9963009
SHA1

f6365da781feee571b901b11cd9e5ab1df84f10a
SHA256

c09eb14613d975f2ecf124abeb90f4298f5d0ae6d8cdeaad56f8aaed331c04e5
SHA512

39d81c4de4eeaae89c36cf1913ec8e10c0596f32a3b7498a6fae0a036d4f7926b882d345569a410b7dd2243557d6477c0b8685ffde2394ad3a6432fdb11e308e
SSDEEP

12288:bGO3dCxiGIQy8j92v2XnG/UaG5HeIfH4UgwoHoTvr:bDdnGIQyS5n8UD5H9PNgwoHS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
160df57cfb7ac5ca6b2feaa5d9963009

Files

160df57cfb7ac5ca6b2feaa5d9963009
.exe windows:4 windows x86 arch:x86

312acdec395bad8dd96f025310325df4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleWindowInfo
HeapFree
GetStdHandle
Sleep
CreateMutexA
GetLastError
TlsSetValue
CompareStringA
GetProcessHeap
VirtualQuery
GetConsoleOutputCP
GetSystemDefaultLCID
EnterCriticalSection
GetConsoleMode
GetStartupInfoA
VirtualAlloc
InterlockedIncrement
IsDebuggerPresent
CloseHandle
GetCurrentProcess
FreeLibrary
GetStartupInfoW
WriteFile
GetCommandLineA
RtlUnwind
SetConsoleCtrlHandler
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
FreeEnvironmentStringsW
GetLocaleInfoA
SetUnhandledExceptionFilter
HeapReAlloc
GetTickCount
GetModuleFileNameW
EnumSystemLocalesA
TlsFree
WriteConsoleW
VirtualFree
FileTimeToLocalFileTime
SetStdHandle
GetCurrentProcessId
GetEnvironmentStrings
SetConsoleCursorPosition
UnhandledExceptionFilter
SetEnvironmentVariableA
HeapSize
LCMapStringA
GetModuleHandleA
ReadFile
TerminateProcess
GetCurrentThread
GetConsoleCP
OpenEventW
GetModuleFileNameA
GetStringTypeA
LoadLibraryA
GetUserDefaultLCID
QueryPerformanceCounter
HeapDestroy
TlsAlloc
FreeEnvironmentStringsA
HeapAlloc
GetCurrentThreadId
GetCommandLineW
OpenMutexA
GetCPInfo
GetTimeZoneInformation
SetHandleCount
IsValidLocale
GetOEMCP
GetEnvironmentStringsW
InterlockedExchange
GetACP
SetLastError
TlsGetValue
FlushFileBuffers
CompareStringW
LCMapStringW
DeleteCriticalSection
GetFileType
GetDateFormatA
GetSystemTimeAsFileTime
EnumTimeFormatsA
CreateFileMappingA
GetTimeFormatA
GetVersionExA
CreateFileA
InitializeCriticalSection
GetStringTypeW
ExitProcess
HeapCreate
CreateMailslotW
LeaveCriticalSection
SetFilePointer
GetLocaleInfoW
SetConsoleCP
IsValidCodePage
WriteConsoleA
GetProcAddress

wininet

InternetCreateUrlW
InternetGoOnline
InternetDialA
InternetCanonicalizeUrlW
HttpEndRequestW
FtpCreateDirectoryA
HttpQueryInfoW
FindNextUrlCacheContainerA
HttpOpenRequestW

user32

CheckDlgButton
SetDebugErrorLevel
DestroyWindow
RegisterClassA
RemoveMenu
SetShellWindow
MessageBoxIndirectA
EnumDesktopsW
TranslateAccelerator
DefWindowProcW
RegisterClassExA
CreateWindowExW
GetWindowTextLengthA
GetIconInfo
LoadAcceleratorsA
ShowWindow
LoadMenuW
SetWindowTextW
GrayStringW
IsDialogMessage
GetKeyboardLayoutList
SetClipboardData
CreateIconFromResource
MessageBoxA

gdi32

GetObjectW
GetWindowExtEx
CreateRoundRectRgn
CreateDCA
GetEnhMetaFileA
Chord
CreateDCW
TextOutW
SetBkMode
PolyDraw
GetOutlineTextMetricsA
DeleteDC
GetMetaFileBitsEx
CreateFontIndirectW
DeleteMetaFile
GetTextFaceA
PlayMetaFile
GetAspectRatioFilterEx
StretchDIBits
GetLayout
GetCurrentPositionEx
SetTextCharacterExtra
SetLayout
GetDeviceCaps
SwapBuffers
CreateSolidBrush

comctl32

CreatePropertySheetPage
InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_AddMasked
CreateUpDownControl
ImageList_DrawIndirect
DrawStatusText
InitMUILanguage
ImageList_GetImageCount
CreateStatusWindow
ImageList_SetBkColor
ImageList_SetFilter
ImageList_Merge
ImageList_GetFlags
DestroyPropertySheetPage
ImageList_AddIcon
CreateToolbar
DrawInsert

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

312acdec395bad8dd96f025310325df4

Headers

File Characteristics

Imports

kernel32

wininet

user32

gdi32

comctl32

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 261KB - Virtual size: 261KB

.data Size: 114KB - Virtual size: 142KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 261KB - Virtual size: 261KB

.data
Size: 114KB - Virtual size: 142KB

.rsrc
Size: 16KB - Virtual size: 15KB