24a2752f9b5e67ac71ce9285501d93d0

Sharing

Copy URL Twitter E-mail

General

Target

24a2752f9b5e67ac71ce9285501d93d0
Size

540KB
MD5

24a2752f9b5e67ac71ce9285501d93d0
SHA1

2260a78b215885e47ef95c1bc6aad4f3af2003e6
SHA256

0df61864a04633f7c205d9980a89956d56816ebdf64cd2c5a03f1e9ba001203c
SHA512

9733e636c837346d690d6c61853f9024d3f5ada5fab6eb02bc2722526f1559ec472842e4d0d81a9da8c90852d396503594232af87ae760a5437322c828deb405
SSDEEP

12288:xLZ/2vGV/eXR2kcgMV2Bz4RWFoz6Ll/X+CJDI:XuuNejvkWFozSv+aI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24a2752f9b5e67ac71ce9285501d93d0

Files

24a2752f9b5e67ac71ce9285501d93d0
.exe windows:4 windows x86 arch:x86

b1c6c73a71c1e3cbf665355c7dc22e9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawStatusTextW
_TrackMouseEvent
ImageList_DragMove
CreateToolbarEx
CreatePropertySheetPage
ImageList_GetImageInfo
ImageList_Destroy
DrawStatusText
GetEffectiveClientRect
ImageList_EndDrag
InitCommonControlsEx
ImageList_DragLeave
CreateToolbar
ImageList_DragEnter
ImageList_SetImageCount
CreatePropertySheetPageW
ImageList_GetIconSize

kernel32

FindFirstFileExA
GetVolumeInformationA
TransactNamedPipe
WriteFile
SetLastError
MultiByteToWideChar
InterlockedExchange
LocalUnlock
InterlockedDecrement
RemoveDirectoryW
HeapReAlloc
HeapAlloc
FormatMessageW
GetFileAttributesExW
MoveFileExA
OpenMutexA
CreateDirectoryExW
lstrcatW
LeaveCriticalSection
GetProcAddress
CompareStringA
ReleaseMutex
DeleteCriticalSection
GetFileType
CloseHandle
GetPrivateProfileIntA
UnhandledExceptionFilter
GetSystemDefaultLangID
ReadConsoleOutputCharacterW
LoadLibraryA
FreeEnvironmentStringsW
WaitForMultipleObjectsEx
CreateMailslotA
GetCPInfo
CreateMutexA
GetCommandLineA
WriteConsoleOutputW
HeapCreate
EnumTimeFormatsA
SetConsoleCtrlHandler
lstrcpynA
FlushViewOfFile
FlushFileBuffers
LocalSize
lstrcmpW
WideCharToMultiByte
HeapFree
SetStdHandle
GetSystemTimeAsFileTime
GetTimeFormatA
SetLocaleInfoA
GetLocalTime
TlsFree
GetCurrentProcess
GetShortPathNameA
InterlockedIncrement
GetLastError
EnterCriticalSection
GetTimeZoneInformation
InitializeCriticalSection
GetCurrentDirectoryA
CreateDirectoryA
IsBadWritePtr
SetTimeZoneInformation
GetStartupInfoA
GetTickCount
ReadFile
HeapDestroy
WriteConsoleInputW
SleepEx
FreeLibraryAndExitThread
SetFileTime
FindResourceW
GetStdHandle
WriteConsoleOutputAttribute
SetHandleCount
LCMapStringW
FreeResource
GetCurrentProcessId
VirtualQuery
FreeEnvironmentStringsA
VirtualAlloc
ReadFileEx
CompareStringW
CreateRemoteThread
GetDriveTypeA
GetACP
GetEnvironmentStringsW
GetModuleHandleA
GetStringTypeA
GetSystemTimeAdjustment
TryEnterCriticalSection
lstrcpy
SetEvent
TlsSetValue
CreateFileA
GetCurrentThreadId
GetSystemTime
SetFilePointer
GetModuleFileNameA
GetProcessAffinityMask
TlsGetValue
LoadModule
GetPrivateProfileSectionNamesW
GetProcessHeaps
GetVersion
EnumCalendarInfoW
LCMapStringA
QueryPerformanceCounter
GetOEMCP
CreateFileMappingA
VirtualFree
VirtualLock
GlobalAddAtomW
TlsAlloc
SetEnvironmentVariableA
CompareFileTime
FoldStringW
RtlUnwind
GetStringTypeW
GetCurrentDirectoryW
SetPriorityClass
WriteConsoleInputA
EnumCalendarInfoA
GetCurrentThread
GetComputerNameW
GetEnvironmentStrings
ExitProcess
MoveFileExW
ReadConsoleW
TerminateProcess

user32

OemToCharBuffW
SetScrollRange
SwitchToThisWindow
ChangeMenuW
DdeCreateDataHandle
RegisterClassA
GetMenuStringW
CreateMDIWindowW
DdeCreateStringHandleA
GetQueueStatus
CharLowerW
DdeQueryStringW
GetWindowThreadProcessId
EnumWindowStationsW
VkKeyScanExW
GetDlgItemTextA
CreateWindowExW
ActivateKeyboardLayout
ShowWindow
RegisterClassExA
SwitchDesktop
EnableMenuItem
MessageBoxA
TranslateMessage
InSendMessageEx
DefWindowProcW
DestroyWindow
TrackPopupMenuEx
SendDlgItemMessageW
DrawStateW
GetCursorInfo
SetActiveWindow
LookupIconIdFromDirectory
GetListBoxInfo
ChildWindowFromPointEx
DdeGetData

Sections

.text
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1c6c73a71c1e3cbf665355c7dc22e9e

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 152KB - Virtual size: 148KB

.rdata Size: 248KB - Virtual size: 244KB

.data Size: 116KB - Virtual size: 134KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 152KB - Virtual size: 148KB

.rdata
Size: 248KB - Virtual size: 244KB

.data
Size: 116KB - Virtual size: 134KB

.rsrc
Size: 20KB - Virtual size: 16KB