256319d240716417435bb46d8f885bbf

Sharing

Copy URL Twitter E-mail

General

Target

256319d240716417435bb46d8f885bbf
Size

520KB
MD5

256319d240716417435bb46d8f885bbf
SHA1

e2b033fb71a1f1b4fc428d806ab07638233b7435
SHA256

f177a0225b41dcbd1a841c572c99cb32e4fc278a1507b2dc41cb9962552aa3b5
SHA512

c71aacbddf6e6a17d792b86dc2a0515ff5f6aa99bf64e0573cbe685622c48427bdf7abfa371a102fcc189402dcfa039414e6943e1dde545523c8bad3fa49c892
SSDEEP

12288:x/pykppIVELgsJ6UtRPeQOxVr2L8YOSljU:ZppIMgsJfmQWa59ljU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
256319d240716417435bb46d8f885bbf

Files

256319d240716417435bb46d8f885bbf
.exe windows:4 windows x86 arch:x86

6adb956cb94761e90a3cd9b904609482

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

FreeIconList
ShellExecuteExA
DragFinish
ExtractIconExW
SHGetSpecialFolderPathA

gdi32

StretchBlt
Polygon
DescribePixelFormat
CreateCompatibleBitmap
ResizePalette
EnableEUDC
SetViewportOrgEx
CreateDIBPatternBrush
GetCharWidth32A
EnumFontFamiliesExW
Rectangle
CreateDIBitmap
Pie
GetDIBColorTable
CreatePen
CopyMetaFileA
PolyBezier
GetGraphicsMode
SetDIBColorTable
ResetDCA

kernel32

CreateMutexA
FreeEnvironmentStringsA
UnmapViewOfFile
WriteProfileSectionW
HeapFree
GetCurrentThreadId
GetStdHandle
EnterCriticalSection
GlobalUnlock
GetModuleHandleA
IsValidLocale
ConnectNamedPipe
TerminateProcess
GetOEMCP
GetLastError
GetSystemTimeAsFileTime
InterlockedDecrement
GetStartupInfoA
GetCurrentProcess
GetFileType
CreateWaitableTimerA
ExitProcess
GetProcessHeap
SetStdHandle
CompareStringA
VirtualProtect
VirtualFree
CompareStringW
OpenSemaphoreW
UnlockFileEx
GetEnvironmentStringsW
GetModuleHandleW
GetPrivateProfileSectionA
SetFilePointer
DeleteCriticalSection
WideCharToMultiByte
GetStartupInfoW
IsBadReadPtr
EnumSystemLocalesA
GetLocaleInfoA
GetSystemInfo
SetEnvironmentVariableA
GetCPInfo
GetCurrentThread
GetTimeFormatA
OutputDebugStringA
WriteFile
WriteProfileStringW
FreeEnvironmentStringsW
VirtualQuery
DebugBreak
GetCommandLineA
LoadLibraryA
GetDateFormatA
GetCurrentProcessId
CloseHandle
HeapDestroy
RtlUnwind
MultiByteToWideChar
GetUserDefaultLCID
GetModuleFileNameW
IsValidCodePage
GetStringTypeA
InterlockedIncrement
GetProcAddress
SetConsoleCtrlHandler
SetLastError
EnumTimeFormatsA
InitializeCriticalSection
TlsFree
FlushFileBuffers
LCMapStringA
TlsSetValue
GetEnvironmentStrings
SetHandleCount
LeaveCriticalSection
SetConsoleScreenBufferSize
GetLocaleInfoW
GetModuleFileNameA
HeapReAlloc
GetACP
QueryPerformanceCounter
OpenMutexA
HeapCreate
VirtualAlloc
IsBadWritePtr
GetVersionExW
GetCommandLineW
UnhandledExceptionFilter
GetStringTypeW
TlsGetValue
TlsAlloc
GetVersionExA
GetTimeZoneInformation
GetShortPathNameW
ReadFile
GetLogicalDrives
LCMapStringW
GetTickCount
HeapAlloc
HeapValidate
InterlockedExchange

comdlg32

GetSaveFileNameA

wininet

DetectAutoProxyUrl
InternetFindNextFileW

user32

LoadKeyboardLayoutA
SetWindowsHookExA
SetRect
RegisterClassA
CharPrevExA
LoadMenuA
CreateIconFromResourceEx
SetCursor
SetLastErrorEx
GetCaretBlinkTime
CloseWindow
EnumWindowStationsW
DrawFrameControl
SetShellWindow
EnumDisplaySettingsW
RegisterClassExA
IsRectEmpty
GetTabbedTextExtentA
GetScrollPos
GetMenuStringA
UnpackDDElParam
InternalGetWindowText
OemToCharW
PostMessageW
DrawFrame
PeekMessageA
GetUpdateRgn

comctl32

InitCommonControlsEx

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6adb956cb94761e90a3cd9b904609482

Headers

File Characteristics

Imports

shell32

gdi32

kernel32

comdlg32

wininet

user32

comctl32

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 13KB - Virtual size: 19KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 13KB - Virtual size: 19KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 9KB - Virtual size: 9KB