22fcdf0ee35291451b1a5ccf949b9459

Sharing

Copy URL Twitter E-mail

General

Target

22fcdf0ee35291451b1a5ccf949b9459
Size

452KB
MD5

22fcdf0ee35291451b1a5ccf949b9459
SHA1

1e94d97511f4a5b1f3388569e80e7c8e9fa7d100
SHA256

1fdebf9aee14903cac864ce5095360c867691b5f18159b917565067959e46535
SHA512

83b3d61184c38d7635e8f38f476c457e86f88c65dc7e14f03b90eab6ce8f81ad63b4c7736b703c6cde1d7b25d88708d988add454a0572632b1356073ef9ed88f
SSDEEP

6144:in9sTzLDP1FuifieI9tD24S/dmoQlv44efZlHUg4A1k4856NNXgkFOtr7:C9+v3uiaeI952rEoQFSonc856NOKOr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22fcdf0ee35291451b1a5ccf949b9459

Files

22fcdf0ee35291451b1a5ccf949b9459
.exe windows:4 windows x86 arch:x86

7486ba4b8957065d2e82b459f45bdbc3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetDragImage
InitCommonControlsEx
ImageList_SetImageCount
ImageList_ReplaceIcon
ImageList_SetOverlayImage
DrawStatusText
ImageList_LoadImageW
ImageList_LoadImage
ImageList_SetDragCursorImage
ImageList_GetIconSize
ImageList_Draw
ImageList_Replace
MakeDragList
ImageList_Write
ImageList_EndDrag
ImageList_SetBkColor
ImageList_Merge
CreateStatusWindowW
CreateStatusWindow

user32

IsWindowVisible
SendDlgItemMessageW
LoadAcceleratorsW
BroadcastSystemMessage
SetMenu
RegisterClassA
SetCaretPos
SetTimer
EnumDesktopWindows
wvsprintfA
ImpersonateDdeClientWindow
GetDoubleClickTime
CloseDesktop
SetRectEmpty
ReleaseDC
SetWindowPlacement
NotifyWinEvent
ToAsciiEx
MessageBoxA
SetActiveWindow
CopyAcceleratorTableW
UpdateWindow
OemToCharBuffA
DestroyWindow
ShowWindow
DdeFreeDataHandle
DefWindowProcW
IsCharUpperW
ScrollDC
GetKeyboardLayoutNameA
ExitWindowsEx
TrackPopupMenu
SetPropA
CreateWindowExW
ArrangeIconicWindows
GetThreadDesktop
OpenIcon
GetNextDlgGroupItem
GetShellWindow
GetMenuCheckMarkDimensions
PostQuitMessage
DdeSetUserHandle
IsCharAlphaNumericW
CharNextW
AdjustWindowRectEx
GetMenuContextHelpId
GetClipboardViewer
WINNLSEnableIME
InvalidateRect
MsgWaitForMultipleObjects
RegisterClassExA
GetProcessWindowStation
CharLowerBuffW
MapDialogRect
GetActiveWindow
IsWindowUnicode
CopyIcon

gdi32

GetLogColorSpaceA
GetTextCharset
EndPage
GetCharWidthW
GetBkColor
GetPath
SetWinMetaFileBits
GetBrushOrgEx
GetEnhMetaFileDescriptionA
GetKerningPairsA
SetAbortProc
CreatePenIndirect
SetICMProfileW
EnumICMProfilesA
ExcludeClipRect
RemoveFontResourceW
GetRegionData
SetBrushOrgEx
EnumEnhMetaFile

wininet

InternetQueryFortezzaStatus
IncrementUrlCacheHeaderData

kernel32

SetFileAttributesA
SetUnhandledExceptionFilter
RtlMoveMemory
HeapAlloc
SetConsoleCtrlHandler
Sleep
GetTickCount
GetThreadPriorityBoost
SetFileTime
GetLocaleInfoW
GlobalReAlloc
VirtualAlloc
IsDebuggerPresent
OpenSemaphoreW
GetConsoleTitleA
GetEnvironmentStringsW
UnlockFileEx
WriteConsoleInputA
OpenWaitableTimerA
GetCurrentThreadId
VirtualFree
OpenFile
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetDriveTypeA
lstrlenW
GetCurrentProcessId
GetModuleFileNameA
GetVersion
EnumDateFormatsExA
WideCharToMultiByte
GetTimeFormatA
GetCurrentProcess
VirtualUnlock
VirtualQuery
GetSystemDefaultLangID
InterlockedIncrement
VirtualQueryEx
GetOEMCP
LoadResource
GetThreadContext
GetProfileSectionA
GetFileAttributesExA
InterlockedDecrement
TerminateProcess
SetCurrentDirectoryA
OpenEventA
GetACP
CompareStringA
GetVolumeInformationW
GetUserDefaultLCID
IsValidLocale
CreateMutexA
GetDateFormatA
FindClose
GetModuleHandleA
DeleteFileW
LCMapStringW
ReadFile
GetFileType
InterlockedExchange
GetConsoleOutputCP
EnumSystemLocalesA
GetLogicalDriveStringsW
HeapCreate
SetHandleCount
EnumResourceNamesA
FileTimeToSystemTime
EnumCalendarInfoExW
TlsAlloc
GetConsoleCursorInfo
WriteFile
GetConsoleMode
FlushFileBuffers
WriteConsoleW
FreeEnvironmentStringsA
LockFileEx
WaitForSingleObject
QueryPerformanceCounter
FreeEnvironmentStringsW
GetEnvironmentStrings
GetLogicalDrives
RtlUnwind
CreateMailslotW
SetEnvironmentVariableA
WriteProfileStringA
GetLastError
GetStdHandle
WriteProfileStringW
TlsFree
WriteConsoleA
SetConsoleTitleA
GetProfileSectionW
GetTimeZoneInformation
FreeLibraryAndExitThread
MoveFileA
GetStringTypeW
LeaveCriticalSection
FindNextChangeNotification
GetCommandLineA
SetLastError
OpenMutexA
HeapFree
GetProfileStringA
GetSystemTimeAsFileTime
HeapReAlloc
HeapSize
GetDiskFreeSpaceA
GetLongPathNameW
DeleteCriticalSection
SetComputerNameA
GetProcAddress
LoadLibraryA
lstrcpyA
EnterCriticalSection
UnhandledExceptionFilter
GetPrivateProfileStringW
CloseHandle
CreateFileA
HeapDestroy
MultiByteToWideChar
GetCompressedFileSizeW
TlsGetValue
GetLocaleInfoA
GetModuleHandleW
GetComputerNameA
CreateProcessW
LCMapStringA
GetStringTypeA
GlobalUnlock
ExitProcess
GetNamedPipeHandleStateA
SetStdHandle
lstrcmpiW
GetUserDefaultLangID
GetVersionExW
TlsSetValue
GlobalAddAtomW
FreeLibrary
IsValidCodePage
GetConsoleCP
GetDateFormatW
CompareStringW
GetCurrentThread
GetStartupInfoA
SetFilePointer
FindNextFileW

advapi32

RegEnumValueA
CreateServiceW
RegCreateKeyExA
RegSaveKeyW
CryptContextAddRef
CryptGetDefaultProviderA
DuplicateToken
CryptSetProviderW
RegQueryValueW
CryptAcquireContextW
RegOpenKeyExW
LookupAccountNameW

shell32

DragFinish
SHGetDiskFreeSpaceA
SHGetInstanceExplorer
SHEmptyRecycleBinA
DragQueryPoint

Sections

.text
Size: 200KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7486ba4b8957065d2e82b459f45bdbc3

Headers

File Characteristics

Imports

comctl32

user32

gdi32

wininet

kernel32

advapi32

shell32

Sections

.text Size: 200KB - Virtual size: 197KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 100KB - Virtual size: 121KB

.rsrc Size: 72KB - Virtual size: 70KB

.text
Size: 200KB - Virtual size: 197KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 100KB - Virtual size: 121KB

.rsrc
Size: 72KB - Virtual size: 70KB