21639f71cbe2470c5720c279431b0c4d

Sharing

Copy URL

Twitter E-mail

General

Target

21639f71cbe2470c5720c279431b0c4d
Size

26KB
MD5

21639f71cbe2470c5720c279431b0c4d
SHA1

12cd4a797b92221cb55d05aa5671e0dc0939cc54
SHA256

a7dcbbb4e5d036f11d5037fee16c384dafa12b40dcde9753d2f0438992b6515d
SHA512

0e9978176c352021c1239e210ec29af4b7b36853f10a668071fcf3a008f8ce465b51843f3a3f9c4e33e3de6e5a6360ffc4dab96254e678199b73aeb718d16e81
SSDEEP

384:r6vhfYA2cnU7/nO2NkhTzOGVZKKCAeJ+zO2+h3b3TIUhQ/DXHeaWQVAuC:qni2DVPEKCAwJNr3TIU27+aWQV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21639f71cbe2470c5720c279431b0c4d

Files

21639f71cbe2470c5720c279431b0c4d
.exe windows:4 windows x86 arch:x86

caf4eb489e052d66352010720436fd76

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddConsoleAliasA
AddConsoleAliasW
AreFileApisANSI
BackupWrite
CallNamedPipeW
CloseHandle
CreateIoCompletionPort
CreateMutexA
CreatePipe
DefineDosDeviceW
EnumSystemCodePagesA
ExitProcess
FileTimeToLocalFileTime
FillConsoleOutputAttribute
FindFirstFileExA
GetAtomNameW
GetCommandLineA
GetCommandLineW
GetConsoleCP
GetConsoleCommandHistoryA
GetConsoleFontSize
GetConsoleWindow
GetCurrencyFormatA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetEnvironmentVariableA
GetFileAttributesA
GetFileAttributesExW
GetHandleInformation
GetLastError
GetLocalTime
GetLogicalDriveStringsW
GetModuleFileNameW
GetModuleHandleW
GetPrivateProfileSectionA
GetPrivateProfileSectionW
GetShortPathNameA
GetStartupInfoW
GetSystemDefaultLangID
GetSystemDirectoryW
GetSystemInfo
GetSystemTime
GetTapeStatus
GetVersion
GetVersionExA
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalDeleteAtom
Heap32Next
HeapUnlock
InterlockedDecrement
InterlockedExchange
IsDebuggerPresent
IsValidCodePage
LCMapStringW
LoadLibraryW
LoadLibraryExA
LoadResource
Module32Next
MoveFileWithProgressW
OpenMutexW
OpenWaitableTimerA
PulseEvent
PurgeComm
QueryPerformanceCounter
ReadConsoleW
ReadConsoleInputW
RegisterWowBaseHandlers
ReleaseMutex
SetConsoleCP
SetConsoleCursorPosition
SetConsoleDisplayMode
SetConsoleHardwareState
SetFileAttributesW
SetHandleCount
SetLastError
SetLocalTime
SetStdHandle
SetSystemPowerState
SetThreadPriority
SetTimeZoneInformation
SuspendThread
VirtualProtect
WideCharToMultiByte
WriteConsoleInputVDMW
WritePrivateProfileStructW
WriteProfileStringW
_hread
_lread
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrlenW

user32

CascadeChildWindows
CharToOemBuffA
CharToOemBuffW
CharUpperA
CharUpperW
CloseClipboard
CountClipboardFormats
CreateAcceleratorTableA
CreateCaret
CreateDesktopA
CreateMDIWindowW
DdeAbandonTransaction
DdeAccessData
DdeConnectList
DdeCreateDataHandle
DdeGetQualityOfService
DdeReconnect
DefDlgProcA
DlgDirListW
DlgDirListComboBoxW
DrawTextExW
EditWndProc
EnableScrollBar
EnumClipboardFormats
ExitWindowsEx
GetCapture
GetCaretBlinkTime
GetClassInfoW
GetClipCursor
GetCursor
GetCursorInfo
GetDCEx
GetFocus
GetForegroundWindow
GetMenu
GetMenuItemInfoA
GetParent
GetProcessWindowStation
GetScrollPos
GetThreadDesktop
GetUserObjectInformationW
GetWindow
GetWindowDC
IMPGetIMEW
InflateRect
InsertMenuA
IsCharUpperA
IsDlgButtonChecked
IsIconic
KillTimer
LoadBitmapW
LoadIconW
LoadMenuIndirectW
LockWorkStation
MapWindowPoints
MessageBoxExW
MonitorFromRect
MoveWindow
OemToCharBuffA
OpenDesktopW
PostThreadMessageA
PtInRect
RealChildWindowFromPoint
RegisterClassExA
ScreenToClient
SendIMEMessageExW
SetActiveWindow
SetCaretBlinkTime
SetClipboardViewer
SetDebugErrorLevel
SetMenu
SetMenuItemInfoA
SetMenuItemInfoW
SetPropW
SetScrollPos
SetScrollRange
SetSystemCursor
ShowWindow
TabbedTextOutA
TileWindows
TranslateAcceleratorA
UnhookWindowsHook
UnpackDDElParam
ValidateRgn
WINNLSGetEnableStatus
WaitMessage
WinHelpW
wvsprintfA

gdi32

CreateCompatibleBitmap
CreateDIBPatternBrush
CreateEllipticRgnIndirect
CreateRectRgnIndirect
DescribePixelFormat
ExtFloodFill
ExtTextOutA
FillPath
FloodFill
GdiComment
GdiFlush
GdiGetBatchLimit
GetArcDirection
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBoundsRect
GetCharABCWidthsFloatW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDIBColorTable
GetEnhMetaFileDescriptionW
GetEnhMetaFileHeader
GetGlyphOutlineW
GetICMProfileA
GetPixel
GetPolyFillMode
GetROP2
GetRegionData
GetWindowExtEx
GetWorldTransform
InvertRgn
LineTo
OffsetClipRgn
Polygon
PolylineTo
ResetDCA
SetBitmapBits
SetPolyFillMode
SetRelAbs
SetViewportExtEx
SetViewportOrgEx
StartDocA
StrokePath
gdiPlaySpoolStream

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameW
PrintDlgW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcoz
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

caf4eb489e052d66352010720436fd76

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 26KB

.rcoz Size: 2KB - Virtual size: 13KB

.reloc Size: 1024B - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 26KB

.rcoz
Size: 2KB - Virtual size: 13KB

.reloc
Size: 1024B - Virtual size: 5KB