194525aeb49713a87887ff6d8d815429

Sharing

Copy URL Twitter E-mail

General

Target

194525aeb49713a87887ff6d8d815429
Size

397KB
MD5

194525aeb49713a87887ff6d8d815429
SHA1

1f54e30010f471969eb4e7b23dea5a61d646bcdd
SHA256

2f414893eaac5f951e1013b637983334ce443911a468352741109c947beced3d
SHA512

81e25ba76ebef28cc0158b79cbc590169f88ac76e6cd1564d5eda952b184ae8acac2771673617b0a424376c91631410ab202d08192fefc9f3434da625f1f82b9
SSDEEP

12288:zFSgGPbKhiIfh/wWsn7ZWng9bsTbyi9FCVbSsKU:zFSgGDJO/En7RZYpC9kU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
194525aeb49713a87887ff6d8d815429

Files

194525aeb49713a87887ff6d8d815429
.exe windows:6 windows x86 arch:x86

211889fbd769218c7de88e900b98c2f2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileW
DecodePointer
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
LoadLibraryW
MulDiv
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReadFile
RtlUnwind
SetFilePointer
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW

user32

CheckDlgButton
CheckMenuItem
CheckRadioButton
ClientToScreen
CreateWindowExW
DefWindowProcW
DialogBoxParamW
DispatchMessageW
EnableMenuItem
EnableWindow
EndDialog
GetClientRect
GetDC
GetDlgItem
GetMenu
GetMenuItemInfoW
GetMessageW
GetMonitorInfoW
GetSubMenu
GetSysColorBrush
GetSystemMetrics
GetWindowLongW
GetWindowRect
GetWindowTextA
GetWindowTextLengthW
GetWindowTextW
GrayStringW
IntersectRect
InvalidateRect
IsDialogMessageW
IsDlgButtonChecked
IsRectEmpty
IsWindowVisible
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadImageW
LoadMenuW
LoadStringW
MapWindowPoints
MessageBoxA
MessageBoxIndirectW
MessageBoxW
MonitorFromRect
MoveWindow
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
RegisterWindowMessageW
ReleaseDC
SendMessageW
SetActiveWindow
SetFocus
SetMenu
SetMenuItemInfoW
SetWindowLongW
SetWindowTextA
SetWindowTextW
ShowWindow
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorW
TranslateMessage
wsprintfW

comctl32

CreateStatusWindowW
CreateToolbarEx
InitCommonControlsEx
PropertySheetW

shell32

DragAcceptFiles
DragFinish
DragQueryFileW
ShellAboutW

gdi32

EnumFontFamiliesExW
GetDeviceCaps
GetTextExtentPointW
SelectObject

comdlg32

ChooseFontW
FindTextW
GetOpenFileNameW
GetSaveFileNameW
ReplaceTextW

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.voltbl
Size: 512B - Virtual size: 172B

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

211889fbd769218c7de88e900b98c2f2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comctl32

shell32

gdi32

comdlg32

Sections

.text Size: 137KB - Virtual size: 137KB

.rdata Size: 31KB - Virtual size: 31KB

.data Size: 2KB - Virtual size: 11KB

.00cfg Size: 512B - Virtual size: 4B

.voltbl Size: 512B - Virtual size: 172B

.rsrc Size: 512B - Virtual size: 424B

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 137KB - Virtual size: 137KB

.rdata
Size: 31KB - Virtual size: 31KB

.data
Size: 2KB - Virtual size: 11KB

.00cfg
Size: 512B - Virtual size: 4B

.voltbl
Size: 512B - Virtual size: 172B

.rsrc
Size: 512B - Virtual size: 424B

.reloc
Size: 6KB - Virtual size: 5KB