2d5fd12b26c472e0c737771b9f52082f

Sharing

Copy URL Twitter E-mail

General

Target

2d5fd12b26c472e0c737771b9f52082f
Size

496KB
MD5

2d5fd12b26c472e0c737771b9f52082f
SHA1

4475fb19a2c034ffb454eec9a21ee30fc6f3d3d6
SHA256

310d5424e0e88ae3c72a145352d4adab94f1b982f573d54ff415372e5989440f
SHA512

aee5b66758cb2d236cbe5cebef19a8596e89561f0f44bcbc831b42d2e35ffc50cee8475e5101616b8d107b71aa9f78b982975af4a722c5e78c1a21fbf7fea473
SSDEEP

12288:uHOjJDBmMjkvzxGyVC0WoEE5SgWzi64PTVNPI:uHO9DBmMjCrVfWpE5S3i64PTV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d5fd12b26c472e0c737771b9f52082f

Files

2d5fd12b26c472e0c737771b9f52082f
.exe windows:4 windows x86 arch:x86

b67d6403164ca1240780e466a769c43e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
EndPaint
DdeAbandonTransaction
AnimateWindow
MonitorFromPoint
CharLowerA
FindWindowExA
CharUpperA
GetMenuState
OpenIcon
CreateDialogParamA
RegisterClassA
GetMenuBarInfo
GetWindowInfo
WinHelpA
RegisterClassExA
MessageBoxExW
LoadMenuW
DefMDIChildProcW

gdi32

ArcTo
GetKerningPairsA
SelectPalette
ColorCorrectPalette
ExtFloodFill

kernel32

GetOEMCP
HeapFree
ExitProcess
DeleteFiber
SetConsoleCtrlHandler
EnterCriticalSection
SetStdHandle
VirtualFree
FreeLibrary
GetTickCount
GetModuleHandleA
GetFileAttributesW
SetConsoleTitleW
InitializeCriticalSection
SetLastError
InterlockedIncrement
GetCurrentProcess
InterlockedDecrement
GetUserDefaultLCID
FreeEnvironmentStringsA
HeapDestroy
SetHandleCount
TlsAlloc
LocalShrink
GetStdHandle
GetSystemDirectoryA
GetProcessHeap
VirtualQuery
GetEnvironmentStringsW
ReadFile
CreateFileA
GetConsoleMode
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
TlsGetValue
GetTimeFormatA
RtlUnwind
GetModuleFileNameA
SetConsoleTextAttribute
EnumSystemLocalesA
TerminateProcess
GetCurrentThread
FreeEnvironmentStringsW
WriteConsoleW
Sleep
LCMapStringA
IsValidLocale
GetACP
GetStringTypeW
OpenMutexA
CreateMutexA
GetTimeZoneInformation
MultiByteToWideChar
FlushFileBuffers
IsDebuggerPresent
LCMapStringW
GetStartupInfoA
GetEnvironmentStrings
WriteFile
TlsSetValue
GetLocaleInfoA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetConsoleCP
HeapSize
GetVersionExA
GetLastError
LeaveCriticalSection
GetConsoleOutputCP
InterlockedExchange
HeapAlloc
WriteConsoleA
SetFilePointer
GetProcAddress
IsValidCodePage
GetCommandLineA
CloseHandle
CompareStringW
DeleteCriticalSection
WideCharToMultiByte
TlsFree
GetCPInfo
SetEnvironmentVariableA
QueryPerformanceCounter
GetStringTypeA
VirtualAlloc
GetFileType
LoadLibraryA
GetLocaleInfoW
HeapReAlloc
GetDateFormatA
HeapCreate
CompareStringA

comdlg32

FindTextW
ReplaceTextA
GetFileTitleA

shell32

InternalExtractIconListA

comctl32

InitCommonControlsEx

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b67d6403164ca1240780e466a769c43e

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comdlg32

shell32

comctl32

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 10KB - Virtual size: 24KB

.data Size: 312KB - Virtual size: 312KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 10KB - Virtual size: 24KB

.data
Size: 312KB - Virtual size: 312KB

.rsrc
Size: 17KB - Virtual size: 16KB