259726530520f91d59c95466a176069c

Sharing

Copy URL Twitter E-mail

General

Target

259726530520f91d59c95466a176069c
Size

88KB
MD5

259726530520f91d59c95466a176069c
SHA1

0657125c0b16b793d4d9136c1e6a1a5bee43bc63
SHA256

e96837c76dcc12b636cf00032dfda3040d0adfe2dc2919b36f281e57f7089554
SHA512

5c52e058997c7eb6e4b8cb523a1a973004102d4588e0060e2cca08ceaca68900101b8f485056f45e97410edfe110db30827ebcc3e6a2c9e5152d094ce605202b
SSDEEP

1536:2yuMn6M62oXl07AA2EtqrR77AJzOOzUW0+HulEz8KF8VcL2e1jrkLAogF:WEkgnwKEcLfjwLAo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
259726530520f91d59c95466a176069c

Files

259726530520f91d59c95466a176069c
.exe windows:4 windows x86 arch:x86

67f9815280ab61f025f80772523dbf05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
GetStringTypeA
GetOEMCP
GetACP
InterlockedExchange
RtlUnwind
GetCPInfo
GetLocaleInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
LocalAlloc
ExitProcess
LCMapStringW
LCMapStringA
VirtualQuery
GetSystemInfo
VirtualProtect
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetProcessHeap
LocalFree
lstrcatA
WideCharToMultiByte
MultiByteToWideChar
GetPrivateProfileStringA
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
SizeofResource
LockResource
lstrcpyA
CreateProcessA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
CreateFileA
WriteFile
lstrlenA
lstrcmpiA
GetTickCount
WaitForMultipleObjects
CloseHandle
SetEvent
WaitForSingleObject
SearchPathA
lstrcmpA
CreateMutexA
GetLastError
GetCommandLineA
HeapAlloc
HeapFree
GetVersionExA
Sleep
CreateEventA
CreateThread
WinExec
GetStdHandle
GetStringTypeW

user32

GetMessageA
ShowWindow
DispatchMessageA
LoadImageA
CreateWindowExA
RegisterClassA
LoadStringA
TranslateMessage
TrackPopupMenu
CharUpperA
GetSysColor
SystemParametersInfoA
GetDC
LoadCursorA
ReleaseDC
CreatePopupMenu
InsertMenuItemA
GetCursorPos
GetMenuCheckMarkDimensions
DestroyMenu
PostQuitMessage
PostMessageA
SetForegroundWindow
DefWindowProcA
GetDesktopWindow
GetWindow
GetClassNameA
SendMessageA
LoadIconA

gdi32

ExtTextOutA
CreateFontIndirectA
SelectObject
GetTextExtentPoint32A
Rectangle
SetTextAlign
CreateCompatibleDC
BitBlt
DeleteDC
CreatePen
MoveToEx
LineTo
CreateBrushIndirect
GetTextColor
SetTextColor
GetBkMode
SetBkMode
GetTextAlign
DeleteObject

advapi32

RegEnumKeyA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegCreateKeyA
RegDeleteValueA
RegOpenKeyA
RegOpenKeyExA

shell32

Shell_NotifyIconA

setupapi

SetupDiSetClassInstallParamsA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller

winmm

mixerGetNumDevs
mixerClose
mixerOpen
mixerGetDevCapsA
mixerGetID
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerSetControlDetails

hid

HidD_GetAttributes
HidD_GetPreparsedData
HidP_GetCaps
HidD_GetHidGuid
HidD_FreePreparsedData

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

67f9815280ab61f025f80772523dbf05

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

setupapi

winmm

hid

Sections

.text Size: 40KB - Virtual size: 40KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 13KB

.sxdata Size: 4KB - Virtual size: 28B

.rsrc Size: 24KB - Virtual size: 44KB

.text
Size: 40KB - Virtual size: 40KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 13KB

.sxdata
Size: 4KB - Virtual size: 28B

.rsrc
Size: 24KB - Virtual size: 44KB