38bf5519b3fb1c8affe7add423c7b660

General

Target

38bf5519b3fb1c8affe7add423c7b660
Size

408KB
MD5

38bf5519b3fb1c8affe7add423c7b660
SHA1

07735ac0da5db6e6a5143d7cccb25080ead11a2f
SHA256

4332c637c70c21c52eb6ed35f58921be7577a19ea7c84ce7162071cb42912c6e
SHA512

e5b30155f2cccbc1d2336412b97a537fa963db10e56080b4c90958393d32b98a00454fd59ac39e0c61fe8c9a88c6b00d223ca842f2ca84c064ee911daae4defa
SSDEEP

6144:P5jJOZBUJK5wZ4LMdB2BrNoXQ9ySRcsm8vasxI++YyMYskSe4sWbMxcM1psz:PCUJKyK/hsQQx8yxAY6Wns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38bf5519b3fb1c8affe7add423c7b660

Files

38bf5519b3fb1c8affe7add423c7b660
.exe windows:4 windows x86 arch:x86

5ee65760a31eb7b3dde41a8812f7c638

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowModuleFileNameW
IsCharAlphaNumericA
DrawTextW
DrawFrameControl
ShowOwnedPopups

gdi32

CreateBrushIndirect
GdiFlush
DeleteEnhMetaFile
AnimatePalette
GetMetaFileBitsEx
GetTextFaceW
SetColorAdjustment
ExtSelectClipRgn
CreateMetaFileW
GetPath
GetAspectRatioFilterEx
Rectangle
PtInRegion
CreateDIBSection
Pie
GetDIBColorTable
RectInRegion
EndPath
StartDocA
GetCharABCWidthsFloatA
EnumFontFamiliesExW

advapi32

CryptGetDefaultProviderW
CryptSetProvParam

wininet

CreateUrlCacheContainerW
DeleteUrlCacheEntryA
SetUrlCacheEntryInfoW
FtpSetCurrentDirectoryW
InternetFindNextFileW
InternetFortezzaCommand
SetUrlCacheConfigInfoW
GopherGetAttributeW
CreateUrlCacheGroup
UrlZonesDetach
SetUrlCacheEntryInfoA
FtpCommandA
IsUrlCacheEntryExpiredW
InternetCloseHandle

kernel32

GetCurrentThreadId
QueryPerformanceCounter
GetModuleFileNameA
VirtualQuery
IsDebuggerPresent
GlobalGetAtomNameW
OpenFileMappingW
LoadLibraryA
SetConsoleOutputCP
GetModuleHandleA
GetSystemTimeAsFileTime
ExitProcess
GlobalFlags
GetProcAddress
HeapReAlloc
SetConsoleScreenBufferSize
VirtualAlloc
CopyFileA
HeapAlloc
GetCurrentProcessId
FreeLibrary
HeapFree
GetTickCount
InterlockedExchange
GetVolumeInformationW
CreateMutexA
GetEnvironmentStringsW
RtlUnwind
FindFirstFileW
lstrcatW
SetPriorityClass
DeleteCriticalSection
TerminateProcess
GetCurrentProcess

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ee65760a31eb7b3dde41a8812f7c638

Headers

File Characteristics

Imports

user32

gdi32

advapi32

wininet

kernel32

Sections

.text Size: 133KB - Virtual size: 132KB

.data Size: 267KB - Virtual size: 266KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 133KB - Virtual size: 132KB

.data
Size: 267KB - Virtual size: 266KB

.rsrc
Size: 7KB - Virtual size: 7KB