249ef1fd1d256f0418ceb97a1e87bc44

Sharing

Copy URL

Twitter E-mail

General

Target

249ef1fd1d256f0418ceb97a1e87bc44
Size

419KB
MD5

249ef1fd1d256f0418ceb97a1e87bc44
SHA1

1dde59678f54aafa0380aec8dcb1a829c8fa9d2e
SHA256

f05c12807069009d3eb3621c1f305dd8395ab95fe81bf58bf2af557171757de1
SHA512

a0dca9bd9326e5d230215d15b5a4cb0d2c14374635d2175380b2c7e80706f0c8950107395eb9e71e6f43f8e3cd334c343256f69a9b33c05d65f4693d3251316b
SSDEEP

12288:E9pTSsPnQk1Swi3cd7TV3tF21cX3DakXYmi1K:E9pHhvd7TV3jwODdImIK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
249ef1fd1d256f0418ceb97a1e87bc44

Files

249ef1fd1d256f0418ceb97a1e87bc44
.exe windows:4 windows x86 arch:x86

6197eb36e68c445dffed2775c41879fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCheckConnectionA
InternetCrackUrlW
InternetCombineUrlA
DeleteUrlCacheEntry

gdi32

GetROP2
SetTextJustification
GetNearestPaletteIndex
StartPage
SetPixelV
GetBitmapDimensionEx
PlayMetaFileRecord
SetSystemPaletteUse
CreateBitmapIndirect
GetSystemPaletteEntries
EnumFontsA
SetICMProfileA

comdlg32

GetOpenFileNameA
ChooseFontA
PrintDlgA

user32

WindowFromPoint
DdeQueryConvInfo
LoadAcceleratorsA
IsMenu
InsertMenuItemA
UnregisterClassA
GetDlgCtrlID
EnumDisplaySettingsExW
IsDlgButtonChecked
CallWindowProcA
ActivateKeyboardLayout
ScreenToClient
GetClassLongW
MessageBoxW
SetScrollInfo
SetMenu
PackDDElParam
CallNextHookEx
CreateAcceleratorTableA
PeekMessageW
ImpersonateDdeClientWindow
DestroyWindow
SetTimer
SetWindowTextW
DialogBoxParamW

advapi32

CryptGetKeyParam
RegEnumValueA
CryptVerifySignatureA
CryptCreateHash
LookupSecurityDescriptorPartsA
CryptGetDefaultProviderA
RegSetValueExA
CryptDuplicateKey
RegOpenKeyW
CryptEncrypt
DuplicateToken
RegDeleteValueW
RegSetKeySecurity
RegCreateKeyExA
RegReplaceKeyA
RegQueryValueExW
ReportEventW
RegConnectRegistryA
InitializeSecurityDescriptor
CryptGetUserKey
CryptExportKey
CryptGenKey
CryptSignHashA
RegFlushKey

kernel32

SetEnvironmentVariableA
FreeEnvironmentStringsW
GetDateFormatA
SetCriticalSectionSpinCount
HeapReAlloc
EnterCriticalSection
DosDateTimeToFileTime
UnhandledExceptionFilter
GetProfileStringA
HeapAlloc
LCMapStringW
GetStartupInfoA
LoadLibraryA
SetHandleCount
GetEnvironmentStringsW
GetTimeFormatA
WriteFile
GetSystemTimeAsFileTime
HeapCreate
GetTickCount
GetCurrentThreadId
CompareStringA
GetModuleFileNameA
ExitProcess
InterlockedDecrement
DeleteCriticalSection
GetCPInfo
WideCharToMultiByte
GetCurrentProcess
InterlockedExchange
HeapSize
GetStdHandle
IsBadWritePtr
GetCurrentThread
GetFileType
GetVersionExA
GetSystemInfo
GetStringTypeA
GetUserDefaultLCID
FoldStringA
InitializeCriticalSection
GetStringTypeW
IsValidLocale
VirtualFree
LCMapStringA
FreeEnvironmentStringsA
GetACP
GetProcAddress
TlsGetValue
HeapFree
FindAtomW
VirtualQuery
GetLocaleInfoW
TlsAlloc
VirtualAlloc
GetLocaleInfoA
QueryPerformanceCounter
TerminateProcess
GetLogicalDriveStringsW
GetEnvironmentStrings
GetTimeZoneInformation
TlsFree
VirtualProtect
GetModuleHandleA
CreateRemoteThread
GetOEMCP
IsValidCodePage
RtlUnwind
TlsSetValue
IsDebuggerPresent
GetCurrentProcessId
CompareStringW
EnumSystemLocalesA
LeaveCriticalSection
GetCommandLineA
ReleaseSemaphore
GetLastError
HeapDestroy
SetLastError
MultiByteToWideChar

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 278KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6197eb36e68c445dffed2775c41879fa

Headers

File Characteristics

Imports

wininet

gdi32

comdlg32

user32

advapi32

kernel32

Sections

.text Size: 126KB - Virtual size: 125KB

.rdata Size: 8KB - Virtual size: 19KB

.data Size: 278KB - Virtual size: 278KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 126KB - Virtual size: 125KB

.rdata
Size: 8KB - Virtual size: 19KB

.data
Size: 278KB - Virtual size: 278KB

.rsrc
Size: 5KB - Virtual size: 4KB