28e9fe9a7c6a125cf7d30520c78af7a9

Sharing

Copy URL

Twitter E-mail

General

Target

28e9fe9a7c6a125cf7d30520c78af7a9
Size

28KB
MD5

28e9fe9a7c6a125cf7d30520c78af7a9
SHA1

a2209aa372180a1eabdb4f5c19d00e90f6184ae2
SHA256

4a02171568451bc0dd98d18bc8293f89d277d2daf27b0dd413a93ddebb0aace1
SHA512

21dc050855092b3d93333d0f8e79c6ae0f230ae8e2372deb59acacb663315806cc1815cd6493e350e3cc2070fb32c2773711cd8509974bd98fe986ea2bfd9fa0
SSDEEP

768:GLg6yw9WItUJC7XgTQ15wnrOIoTCvtDX:8pcKuC7Xgc1enrD+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28e9fe9a7c6a125cf7d30520c78af7a9

Files

28e9fe9a7c6a125cf7d30520c78af7a9
.exe windows:4 windows x86 arch:x86

27d884d0869eed367725ac9b303c42a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
CloseHandle
CompareStringA
ConnectNamedPipe
ConvertDefaultLocale
CreateConsoleScreenBuffer
CreateFiber
CreateFileMappingW
CreateMailslotW
EnumCalendarInfoW
EnumDateFormatsA
EnumDateFormatsW
EnumResourceTypesW
ExitProcess
FindFirstChangeNotificationA
FindResourceExA
FoldStringW
FreeLibrary
FreeLibraryAndExitThread
GetBinaryTypeA
GetCommandLineW
GetComputerNameW
GetConsoleFontSize
GetConsoleHardwareState
GetConsoleKeyboardLayoutNameA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetLargestConsoleWindowSize
GetLastError
GetLocalTime
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleW
GetNamedPipeInfo
GetNumberFormatA
GetPriorityClass
GetPrivateProfileSectionW
GetPrivateProfileStructA
GetStartupInfoW
GetSystemDefaultLCID
GetSystemTime
GetTapeParameters
GetTapeStatus
GetThreadPriorityBoost
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetWindowsDirectoryW
GlobalFix
GlobalUnfix
GlobalUnlock
HeapCompact
HeapFree
HeapSummary
HeapValidate
InitializeCriticalSectionAndSpinCount
IsValidCodePage
LoadLibraryA
LocalShrink
LocalUnlock
MoveFileW
OpenEventA
OpenFile
OpenWaitableTimerA
OutputDebugStringW
ReadConsoleW
ReadConsoleInputA
ReadFileScatter
RemoveDirectoryA
SetConsoleCursorInfo
SetConsoleOutputCP
SetConsoleTitleW
SetErrorMode
SetEvent
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetProcessPriorityBoost
SetTapePosition
SetVolumeLabelA
Sleep
TransactNamedPipe
VerLanguageNameA
VirtualProtect
VirtualQuery
WriteConsoleInputW
WriteConsoleInputVDMW
WriteConsoleOutputA
WriteConsoleOutputAttribute
WriteConsoleOutputCharacterW
WriteFileGather
WritePrivateProfileStructW
_hwrite
_lcreat
_lopen
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynW

user32

AppendMenuW
BeginPaint
CallWindowProcW
CharPrevW
CharUpperA
CharUpperW
CreateIcon
DdeCreateStringHandleA
DdeFreeDataHandle
DdeGetQualityOfService
DdeKeepStringHandle
DefDlgProcW
DeleteMenu
DialogBoxParamW
DlgDirListComboBoxW
DrawCaption
DrawFocusRect
EnableWindow
EndDialog
EndMenu
EnumWindowStationsA
GetActiveWindow
GetClassInfoExA
GetClientRect
GetClipCursor
GetCursor
GetCursorInfo
GetDlgCtrlID
GetDlgItemInt
GetFocus
GetForegroundWindow
GetLastActivePopup
GetMenu
GetNextDlgTabItem
GetOpenClipboardWindow
GetParent
GetQueueStatus
GetSysColor
GetSysColorBrush
GetSystemMenu
GetTabbedTextExtentW
GetThreadDesktop
GetWindowDC
IMPQueryIMEA
ImpersonateDdeClientWindow
InflateRect
InsertMenuItemA
IsCharAlphaA
IsDialogMessageA
IsWindowEnabled
LoadIconW
LoadMenuW
MenuItemFromPoint
MessageBoxIndirectA
MsgWaitForMultipleObjects
OpenDesktopA
PeekMessageA
RealChildWindowFromPoint
RegisterDeviceNotificationW
RegisterWindowMessageA
ReleaseDC
ReuseDDElParam
SendNotifyMessageA
SetCaretPos
SetForegroundWindow
SetLayeredWindowAttributes
SetMessageQueue
SetSysColors
SetUserObjectInformationW
SetUserObjectSecurity
ShowCaret
SwitchDesktop
ToAsciiEx
TranslateMDISysAccel
UnhookWindowsHookEx
UserHandleGrantAccess
WINNLSGetEnableStatus
WindowFromPoint
wvsprintfA

gdi32

AngleArc
CloseFigure
CreateCompatibleDC
CreatePenIndirect
DeviceCapabilitiesExA
EnumFontsA
EnumFontsW
ExtEscape
ExtTextOutW
GdiComment
GdiGetBatchLimit
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDeviceGammaRamp
GetFontLanguageInfo
GetICMProfileW
GetObjectW
GetPixel
GetPixelFormat
GetTextMetricsA
Polyline
SetBoundsRect
SetDIBits
SetEnhMetaFileBits
SetMetaFileBitsEx
SetRectRgn
SetRelAbs
SetStretchBltMode
SetWinMetaFileBits
StartPage
StrokePath
SwapBuffers
TextOutA

comdlg32

ChooseColorA
FindTextA
ReplaceTextW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ijml
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27d884d0869eed367725ac9b303c42a7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 17KB - Virtual size: 27KB

.ijml Size: 3KB - Virtual size: 11KB

.reloc Size: 1024B - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 17KB - Virtual size: 27KB

.ijml
Size: 3KB - Virtual size: 11KB

.reloc
Size: 1024B - Virtual size: 5KB