1bda399ca6e991009261b70d772f5ae3

Sharing

Copy URL

Twitter E-mail

General

Target

1bda399ca6e991009261b70d772f5ae3
Size

105KB
MD5

1bda399ca6e991009261b70d772f5ae3
SHA1

859662d15cc548c405def73aab864bfc6d6f198e
SHA256

a3534b9a416cec67cc2ef03eed36bef54928bc98a35cfe0b0693f0af13f663ad
SHA512

d679c39c4cb5fae11b0d460e0f63abc2a4f1d7efe08bd750998f96c091c2b2be0cea276ba84f8e24a823a9258ab539217cb4cb3284278d8ab51c42bd24520331
SSDEEP

1536:P+hdlFkj4qUrrUHvJMj+pt6sQ8iIcGyBggH0efnrBE/zNmdkiMj3lmANu9CDk8L3:P4Bkkn+Mju6VMsQeDy/hEkr3zmCOc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/DialPeer.exe

Files

1bda399ca6e991009261b70d772f5ae3
.zip
DialPeer.exe
.exe windows:5 windows x86 arch:x86

8137efdaa2993caaa65ee266d8968b96

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutGetDevCapsA
waveOutGetNumDevs

kernel32

lstrcpyA
lstrcpynA
GetLocalTime
CloseHandle
Sleep
CreateThread
lstrcatA
GetLastError
CreateMutexA
GetModuleFileNameA
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetSystemTime
SetFilePointer
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapReAlloc
VirtualAlloc
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
GetModuleHandleA
IsValidCodePage
GetOEMCP
GetACP
ExitProcess
HeapSize
HeapAlloc
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetProcAddress
GetModuleHandleW
LCMapStringW
LCMapStringA
GetCPInfo
HeapFree
GetStartupInfoA
HeapCreate
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RaiseException
RtlUnwind
CreateFileA
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetStringTypeW
GetStringTypeA
IsValidLocale
MultiByteToWideChar
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection

user32

GetWindowRect
MessageBoxA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassExA
UpdateWindow
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
SetTimer
DialogBoxParamA
DestroyWindow
EndDialog
wvsprintfA
GetCursorPos
TrackPopupMenu
PostMessageA
DestroyMenu
SetForegroundWindow
LoadIconA
CreatePopupMenu
GetWindowLongA
GetClientRect
MoveWindow
wsprintfA
CreateWindowExA
SendMessageA
ShowWindow
GetMenuItemCount
GetMenuStringA
GetSubMenu
GetMenu
CreateMenu
InsertMenuA
AppendMenuA

gdi32

CreateFontIndirectA

shell32

DragQueryFileA
Shell_NotifyIconA

shlwapi

PathRemoveExtensionA
PathAddBackslashA
PathFindExtensionA
PathRemoveFileSpecA
PathRenameExtensionA

wsock32

send
__WSAFDIsSet
WSAGetLastError
ntohl
gethostbyname
inet_addr
socket
setsockopt
bind
recvfrom
sendto
ntohs
htons
htonl
ioctlsocket
WSACleanup
WSAStartup
closesocket

Sections

.text
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
DialPeer.ini

Sharing

General

Malware Config

Signatures

Files

8137efdaa2993caaa65ee266d8968b96

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

shell32

shlwapi

wsock32

Sections

.text Size: 167KB - Virtual size: 166KB

.rdata Size: 31KB - Virtual size: 30KB

.data Size: 7KB - Virtual size: 174KB

.rsrc Size: 48KB - Virtual size: 48KB

.text
Size: 167KB - Virtual size: 166KB

.rdata
Size: 31KB - Virtual size: 30KB

.data
Size: 7KB - Virtual size: 174KB

.rsrc
Size: 48KB - Virtual size: 48KB