17afce2216cbd0939cc5f9ead54a985e

Sharing

Copy URL Twitter E-mail

General

Target

17afce2216cbd0939cc5f9ead54a985e
Size

417KB
MD5

17afce2216cbd0939cc5f9ead54a985e
SHA1

87a2903d6070862c605b658885a10fcd648316e5
SHA256

2200389fedd80e2a01d482166942e769f876db662fd6d62809b922aca30dc667
SHA512

369e820db6107613fc048b2569c9ab43aafe7d64c68416facb437d39a3baba60546b25d6c5bb0b0bf729b8a751dcddc4c4709f3b5cfa44719c68f4a2c1c4c14d
SSDEEP

12288:WNk0sIhUB94JZBFPt7ZCt9mMUHC3qTw+Pn:WNk0sIemZ7tws4Mwun

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17afce2216cbd0939cc5f9ead54a985e

Files

17afce2216cbd0939cc5f9ead54a985e
.exe windows:4 windows x86 arch:x86

39d58d753dc60d68afc1b6bd2b65dd9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

CreateUrlCacheEntryA

comctl32

InitCommonControlsEx

user32

SetScrollPos
RegisterClassExA
RegisterClassA
SetClassWord
GetMenuItemCount
SetWindowTextW
WinHelpA
EndMenu

shell32

DragFinish
SHGetFileInfoA
SHBrowseForFolderW

gdi32

GetCharWidth32W
PolyTextOutA
GetMapMode
SetStretchBltMode
DPtoLP
RemoveFontResourceA
GetPolyFillMode
PolyPolyline
SetDIBitsToDevice
GetCharABCWidthsFloatA
DescribePixelFormat
SelectClipPath
BeginPath
FixBrushOrgEx
gdiPlaySpoolStream
CloseEnhMetaFile
PolylineTo
RectVisible
SetViewportExtEx
SetColorSpace

advapi32

CryptSetHashParam
RegQueryValueA
RegConnectRegistryA
CryptDuplicateKey
CryptDestroyKey
CryptHashData
CryptGetUserKey
CryptDestroyHash
CryptEnumProvidersW
DuplicateToken
RegFlushKey

kernel32

GetCurrentProcessId
GetStringTypeA
GetStartupInfoW
WriteProfileSectionW
HeapDestroy
CloseHandle
SetFilePointer
HeapCreate
GetLocaleInfoA
SetConsoleCtrlHandler
InitializeCriticalSection
UnhandledExceptionFilter
EnterCriticalSection
EnumSystemLocalesA
CreateMutexA
GetStdHandle
HeapSize
IsValidLocale
InterlockedIncrement
GetShortPathNameW
WriteConsoleA
WideCharToMultiByte
MultiByteToWideChar
GetDateFormatA
VirtualQuery
VirtualFree
lstrcmp
LeaveCriticalSection
FlushFileBuffers
TlsGetValue
GetUserDefaultLCID
DeleteCriticalSection
TlsSetValue
GetVersionExA
GetACP
GetEnvironmentStrings
QueryPerformanceCounter
GetCommandLineA
GetStartupInfoA
GetThreadPriorityBoost
GetSystemDefaultLangID
GetConsoleOutputCP
CompareStringW
GetConsoleMode
VirtualAlloc
LCMapStringA
GetLocaleInfoW
OpenMutexA
WriteConsoleW
GetStringTypeW
GetTickCount
FileTimeToDosDateTime
GetConsoleCP
GetCurrentProcess
GetCurrentThread
GetSystemTimeAsFileTime
GetCurrentThreadId
InterlockedExchange
GetModuleHandleA
IsDebuggerPresent
ReadFile
WriteConsoleOutputA
GetFileType
GetOEMCP
GetEnvironmentStringsW
ExitThread
TlsFree
GetTimeZoneInformation
GetLastError
ExitProcess
Sleep
FreeEnvironmentStringsW
GetCPInfo
SetUnhandledExceptionFilter
LoadLibraryExA
GetPrivateProfileIntW
GetProcAddress
IsValidCodePage
GetProcessHeap
RtlUnwind
WriteFile
SetStdHandle
TlsAlloc
LCMapStringW
HeapAlloc
SetThreadIdealProcessor
LoadLibraryA
FreeEnvironmentStringsA
CompareStringA
GetTimeFormatA
HeapReAlloc
SetHandleCount
SetLastError
CreateFileA
GetModuleFileNameA
HeapFree
TerminateProcess
FreeLibrary
SetEnvironmentVariableA
InterlockedDecrement

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39d58d753dc60d68afc1b6bd2b65dd9a

Headers

File Characteristics

Imports

wininet

comctl32

user32

shell32

gdi32

advapi32

kernel32

Sections

.text Size: 271KB - Virtual size: 270KB

.rdata Size: 35KB - Virtual size: 47KB

.data Size: 96KB - Virtual size: 95KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 271KB - Virtual size: 270KB

.rdata
Size: 35KB - Virtual size: 47KB

.data
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 14KB - Virtual size: 14KB