17610de6185f75ba3e15ce3d750c8a86

Sharing

Copy URL Twitter E-mail

General

Target

17610de6185f75ba3e15ce3d750c8a86
Size

140KB
MD5

17610de6185f75ba3e15ce3d750c8a86
SHA1

8283be4a127882c45984ddd5ab361a1c171c3ae3
SHA256

55db08e58738ec61f440c4d99334720d20cd5679a3c709b02c88e94c28951c10
SHA512

d8250c12324b580dfe0f8ad13d559a2d62b32cf5577fda9d41147767ff3a086305e382347deddc0a806e6f95317c3522d9e1231e1da93183d59e94471af46fef
SSDEEP

1536:yioQGnE4u0LkT2biRCR4TdFGntt1mQ8nU+YD3q7VoagHA:Pp7okTJRC5ttOnU3a7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17610de6185f75ba3e15ce3d750c8a86

Files

17610de6185f75ba3e15ce3d750c8a86
.exe windows:4 windows x86 arch:x86

1172d1fb03f167a962867ea1a907fbd7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyA
RegOpenKeyExW
RegLoadKeyA
RegQueryInfoKeyW
RegCreateKeyExA
RegLoadKeyW
RegFlushKey
RegDeleteValueW
RegQueryValueW
RegEnumKeyExW
RegReplaceKeyA
RegQueryValueExW
RegEnumKeyA
RegOpenKeyW
RegDeleteKeyW
RegCreateKeyExW
RegReplaceKeyW
RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyW
RegQueryValueW
RegQueryInfoKeyW
RegEnumValueA
RegEnumKeyA
RegEnumKeyExW
RegDeleteValueA
RegOpenKeyExW
RegEnumKeyW
RegDeleteValueW
RegCreateKeyExA
RegQueryInfoKeyA
RegCreateKeyW
RegQueryValueExW
RegGetKeySecurity
RegDeleteKeyW

user32

DrawIcon
GetDlgItem
CalcMenuBar
GetMenu
GetCursor
DrawTextW
CloseWindow
LoadCursorA
DialogBoxParamW
InsertMenuA
CopyIcon
DrawIconEx
IsMenu
AppendMenuW
LoadMenuA
CopyRect
DialogBoxParamA

comctl32

ImageList_DragEnter
ImageList_LoadImageA
ImageList_AddIcon
ImageList_EndDrag
ImageList_DragMove
ImageList_GetImageInfo
ImageList_Replace
ImageList_Remove
ImageList_LoadImage
ImageList_ReplaceIcon
ImageList_Draw
ImageList_Create
InitCommonControls
ImageList_BeginDrag
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Merge
ImageList_GetDragImage
ImageList_Copy
ImageList_DragLeave
ImageList_Destroy
ImageList_GetImageCount
ImageList_DrawIndirect
ImageList_AddMasked
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_Create
ImageList_GetImageInfo
ImageList_Replace
ImageList_DragLeave
ImageList_DrawEx
ImageList_GetIconSize
ImageList_DragMove
ImageList_Copy
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_GetIcon
ImageList_LoadImageW
ImageList_GetDragImage
ImageList_Remove
ImageList_DragShowNolock
ImageList_ReplaceIcon

kernel32

WriteFile
FindFirstFileA
GetComputerNameA
ExitThread
GetCommandLineA
ReadConsoleW
ReadFile
CopyFileW
DeleteAtom
GetConsoleMode
DeleteFileA
CreateThread
CreateDirectoryA
GetFileTime
CopyFileExA
OpenFileMappingA
GetFileSize
OpenFile
CopyFileA

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 4.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 921B

IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1172d1fb03f167a962867ea1a907fbd7

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 8KB - Virtual size: 5KB

.edata Size: 8KB - Virtual size: 4KB

.init Size: 4KB - Virtual size: 1KB

.data Size: 72KB - Virtual size: 4.5MB

.tls Size: 4KB - Virtual size: 80B

.rdata Size: 4KB - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 921B

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 8KB - Virtual size: 5KB

.edata
Size: 8KB - Virtual size: 4KB

.init
Size: 4KB - Virtual size: 1KB

.data
Size: 72KB - Virtual size: 4.5MB

.tls
Size: 4KB - Virtual size: 80B

.rdata
Size: 4KB - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 921B

.rsrc
Size: 20KB - Virtual size: 19KB