2413a53bab43e28c53055530555671c1

Sharing

Copy URL Twitter E-mail

General

Target

2413a53bab43e28c53055530555671c1
Size

764KB
MD5

2413a53bab43e28c53055530555671c1
SHA1

de2f6d6add9be5e52310f056bb166cf95e40b85b
SHA256

695c53a2cacfa999827a92a0050900ebd621c6576f530c4cb455441a74b4fad7
SHA512

ae7793b386bb5adf84858615a47a1a01e3bedcc1806eb06608aa160036c32f6a2bc7b55df86ba9c34722f49f7f45693ee20ffa395ff949e8dcbff636694dc686
SSDEEP

12288:kiuizjdIp4nCrHdFE9g8j2HHkZ8zuNW822gBJyx56M/0h8NlRS+MPR2vEp:kiuizxw4NK8tuY/6M1LZw2cp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2413a53bab43e28c53055530555671c1

Files

2413a53bab43e28c53055530555671c1
.exe windows:4 windows x86 arch:x86

920fd679304ebb9c12dbf5a112731707

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpPutFileA
InternetGetLastResponseInfoW
InternetTimeFromSystemTimeW

advapi32

CryptDuplicateHash
LookupAccountSidA
CryptSignHashW
CryptSetProviderExW

user32

DestroyWindow
TileChildWindows
CreateDesktopA
SetWindowRgn
GetUpdateRect
GetShellWindow
MessageBoxA
DrawStateW
BlockInput
DragObject
SetScrollInfo
EnumDisplaySettingsW
EqualRect
CharLowerBuffW
ChangeClipboardChain
CreateWindowExA
DdeAccessData
ChangeMenuW
ChangeDisplaySettingsW
DefWindowProcW
GetKeyboardLayoutNameA
MessageBoxExA
GetMenu
DdeCreateDataHandle
TranslateAcceleratorA
TranslateAcceleratorW
SetLastErrorEx
GetMenuStringW
CallNextHookEx
WINNLSGetIMEHotkey
SetSystemCursor
GetClassNameW
ShowWindow
RealChildWindowFromPoint
GetSysColorBrush
GetSystemMetrics
CharToOemBuffW
RegisterClassA
EnableMenuItem
GetDlgItemInt
SetClipboardViewer
GetProcessDefaultLayout
CloseClipboard
WinHelpW
RegisterClassExA
LoadMenuA
GetWindowInfo
TrackPopupMenu
UpdateWindow
PtInRect
OemToCharW
SetCapture
MessageBoxW
DdePostAdvise
OpenIcon
SetCursorPos

comdlg32

PrintDlgA

comctl32

ImageList_AddIcon
InitCommonControlsEx
ImageList_Add
DrawInsert
ImageList_Merge
CreateUpDownControl
ImageList_GetDragImage
ImageList_EndDrag
CreatePropertySheetPageA

gdi32

SetViewportOrgEx
FillPath
AngleArc
StrokePath
PolyTextOutW
GetWindowExtEx
MaskBlt
GetEnhMetaFileDescriptionW
SetWindowExtEx
GetCharWidth32W
CreatePolyPolygonRgn
GetCharABCWidthsA
PtInRegion
SetRectRgn
GdiPlayScript
SetBkColor
GetPixelFormat
IntersectClipRect
RemoveFontResourceA
PatBlt
BeginPath

kernel32

CreateRemoteThread
SetConsoleActiveScreenBuffer
GetProfileSectionW
GetTickCount
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
TerminateThread
GetLastError
DebugBreak
GetTimeFormatA
GetNamedPipeHandleStateA
SetEnvironmentVariableA
OpenFile
FlushFileBuffers
CommConfigDialogW
MapViewOfFileEx
InitializeCriticalSection
GetConsoleCP
FindClose
IsBadWritePtr
GetConsoleOutputCP
SetHandleCount
TlsFree
DeleteCriticalSection
Sleep
GetCurrentProcessId
GetProcessHeap
WaitForMultipleObjectsEx
LCMapStringA
HeapAlloc
GlobalAlloc
IsValidLocale
TlsAlloc
GetStringTypeW
GetSystemTime
OpenMutexA
EnumSystemLocalesW
SetFilePointer
InterlockedExchange
HeapValidate
lstrcpynW
GetCurrentDirectoryW
SetUnhandledExceptionFilter
HeapDestroy
InterlockedDecrement
SetThreadAffinityMask
VirtualFree
TlsSetValue
GlobalUnlock
GetEnvironmentStrings
GetFileAttributesW
VirtualQuery
UnhandledExceptionFilter
GetFileType
FoldStringA
GetStartupInfoA
FindAtomW
IsBadReadPtr
GetSystemTimeAsFileTime
TerminateProcess
GlobalGetAtomNameW
LCMapStringW
ReadConsoleOutputCharacterA
InterlockedIncrement
WriteConsoleW
LoadLibraryW
IsDebuggerPresent
GetAtomNameW
OutputDebugStringA
MultiByteToWideChar
IsValidCodePage
GetLocaleInfoA
GetShortPathNameA
WaitCommEvent
WriteConsoleA
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCPInfo
GetCurrentThreadId
HeapCreate
EnterCriticalSection
GetCurrencyFormatA
FreeEnvironmentStringsA
CloseHandle
GetStdHandle
lstrlenA
GetProcAddress
VirtualAllocEx
GetLocaleInfoW
WritePrivateProfileStructA
CreateFileA
GetCurrentProcess
GetUserDefaultLangID
FindResourceExA
GetCurrentThread
GetDateFormatA
GlobalFree
HeapReAlloc
CreateThread
GetConsoleMode
FreeLibrary
GetStringTypeA
GetOEMCP
RaiseException
GetModuleHandleA
ExitProcess
lstrcmpi
EnumCalendarInfoA
HeapFree
GlobalDeleteAtom
GetEnvironmentStringsW
GetFileSize
VirtualAlloc
WideCharToMultiByte
RtlUnwind
LoadLibraryA
GetUserDefaultLCID
GetModuleHandleW
LeaveCriticalSection
TlsGetValue
ReadFile
OutputDebugStringW
FreeEnvironmentStringsW
HeapSize
GetTimeZoneInformation
GetModuleFileNameA
GetCommandLineA
GetComputerNameA
GetACP
CompareStringW
EnumSystemLocalesA
CompareStringA
CreateMutexA
GetCalendarInfoW
SetStdHandle
SetLastError
WritePrivateProfileStringW
GetLogicalDriveStringsA

Sections

.text
Size: 292KB - Virtual size: 291KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

920fd679304ebb9c12dbf5a112731707

Headers

File Characteristics

Imports

wininet

advapi32

user32

comdlg32

comctl32

gdi32

kernel32

Sections

.text Size: 292KB - Virtual size: 291KB

.rdata Size: 284KB - Virtual size: 282KB

.data Size: 116KB - Virtual size: 135KB

.rsrc Size: 68KB - Virtual size: 65KB

.text
Size: 292KB - Virtual size: 291KB

.rdata
Size: 284KB - Virtual size: 282KB

.data
Size: 116KB - Virtual size: 135KB

.rsrc
Size: 68KB - Virtual size: 65KB