29218ea8597d0342caeebc73ee14ccbb

Sharing

Copy URL Twitter E-mail

General

Target

29218ea8597d0342caeebc73ee14ccbb
Size

585KB
MD5

29218ea8597d0342caeebc73ee14ccbb
SHA1

fc16b0e2b94cecad3026ce14e4f7c2737afb6a61
SHA256

d268bfd089a24376fe0866d2e5e091bb242c92ef7de62f8334e4c318bae96993
SHA512

3e7fc9814d89b90150dceb9b42b939284e983e37bf74ab9949a1d9152525a23d7149c3e51333ddf489ee3cdf88f0a8330e615f5996da0b787aaaded00314787e
SSDEEP

12288:V4A30NJk+e4usxw+Uf+t46RLTa19WZFcU75gDot/FLwIE+5np1:V4A30jk7Ixw+Uf+m6RLTa19WVFgiUt+Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29218ea8597d0342caeebc73ee14ccbb

Files

29218ea8597d0342caeebc73ee14ccbb
.exe windows:4 windows x86 arch:x86

214b2e7fc98bb8131c62e83f598bd447

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

RealShellExecuteExA
RealShellExecuteExW
DoEnvironmentSubstW

comdlg32

GetFileTitleA
ChooseColorW

user32

CallMsgFilterW
GetUserObjectInformationW
CreateIcon
CreateCaret
SetWindowLongW
TileChildWindows
DefMDIChildProcW
EnumDisplayDevicesA
VkKeyScanExA
OpenIcon
RegisterClassExA
SetWindowsHookExW
KillTimer
DialogBoxParamA
DdeInitializeW
RealGetWindowClass
UnloadKeyboardLayout
MapVirtualKeyExW
GetWindow
SetPropA
RegisterClassA
DlgDirSelectExA
IsCharUpperA
RegisterHotKey
SetWindowPlacement

kernel32

TlsGetValue
GetTimeFormatA
GetDriveTypeW
IsValidCodePage
TlsSetValue
GetCPInfo
GetLocaleInfoA
HeapSize
HeapAlloc
CreateMutexA
GetTimeZoneInformation
WriteFile
FlushFileBuffers
TlsFree
GetLastError
WritePrivateProfileSectionW
LeaveCriticalSection
CreateFileA
SetLastError
HeapFree
GetOEMCP
TlsAlloc
SetHandleCount
ReadConsoleOutputCharacterW
GetLocaleInfoW
OpenSemaphoreW
LCMapStringW
GetUserDefaultLCID
EnumDateFormatsExA
RtlUnwind
GetStringTypeExW
GetLogicalDrives
DeleteCriticalSection
VirtualAlloc
CloseHandle
SetConsoleCtrlHandler
WriteProfileStringW
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
LoadLibraryA
lstrlenA
FoldStringW
GetVersionExA
CompareStringW
SetStdHandle
GetCurrentThreadId
HeapCreate
GetModuleHandleW
GetConsoleOutputCP
IsDebuggerPresent
GetFileType
GetTempPathA
EnterCriticalSection
WriteConsoleA
GetConsoleCP
EnumSystemLocalesA
FreeEnvironmentStringsA
WriteConsoleW
SetUnhandledExceptionFilter
GetSystemDirectoryW
SetEnvironmentVariableA
GetNumberFormatW
VirtualFree
SetFilePointer
GetModuleHandleA
GetStringTypeA
CreateRemoteThread
GetDateFormatA
GetModuleFileNameA
GetTickCount
GetStringTypeW
VirtualQuery
ExitProcess
ReadFile
GetCommandLineW
GetACP
GetEnvironmentStringsA
WideCharToMultiByte
InterlockedIncrement
LCMapStringA
FreeLibrary
GetConsoleMode
Sleep
GetCurrentThread
DosDateTimeToFileTime
GetProcAddress
GetSystemTimeAsFileTime
GetCurrentProcess
InterlockedDecrement
GetStartupInfoW
FreeResource
QueryPerformanceCounter
GetCommandLineA
HeapDestroy
GetStartupInfoA
UnhandledExceptionFilter
FreeEnvironmentStringsW
MultiByteToWideChar
FindFirstFileExA
CompareStringA
GetCurrentProcessId
OpenMutexA
InterlockedExchange
GetNamedPipeHandleStateA
TerminateProcess
IsValidLocale
HeapReAlloc
GetModuleFileNameW
GetStdHandle

Sections

.text
Size: 247KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

214b2e7fc98bb8131c62e83f598bd447

Headers

File Characteristics

Imports

comctl32

shell32

comdlg32

user32

kernel32

Sections

.text Size: 247KB - Virtual size: 247KB

.rdata Size: 10KB - Virtual size: 39KB

.data Size: 317KB - Virtual size: 317KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 247KB - Virtual size: 247KB

.rdata
Size: 10KB - Virtual size: 39KB

.data
Size: 317KB - Virtual size: 317KB

.rsrc
Size: 8KB - Virtual size: 8KB