378665c11a4cd0e85cae1912de956615

Sharing

Copy URL Twitter E-mail

General

Target

378665c11a4cd0e85cae1912de956615
Size

572KB
MD5

378665c11a4cd0e85cae1912de956615
SHA1

b3980980a4e86d131a1786b83f9d452ac198b615
SHA256

e0b70961052f3b2c707fd2a48a5e83ab8af76426b5ee12707b55a42ad0408917
SHA512

300540d80928cccfadd769fffa22000b565102d8b89c460db4143ab5aa48f5eb94ecc9e7601b02db29c3a1d6f96ebab3825460a7df66e284c6eb4bae3a68438e
SSDEEP

6144:/KA0bC7EfXS3+8hKdQL0EKTcbjG6ijXy8bOfQwJRl0xiqg5KlDFnvDa3NoFleWIQ:/KTbCwfXS3Y6L0EKTg6t6YgwFrPF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
378665c11a4cd0e85cae1912de956615

Files

378665c11a4cd0e85cae1912de956615
.exe windows:4 windows x86 arch:x86

5d6152e61f1e477f5b4ad963a0af9816

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputCharacterA
EnumSystemCodePagesA
GetDateFormatA
GetPrivateProfileStructW
GetThreadContext
HeapSize
LocalLock
FlushFileBuffers
GetComputerNameW
ReleaseMutex
CreateMutexA
OutputDebugStringA
VirtualAlloc
GetCurrentThread
InterlockedDecrement
HeapReAlloc
ReadConsoleOutputAttribute
GetTickCount
SetPriorityClass
GetThreadTimes
WaitForMultipleObjectsEx
lstrcatA
OpenSemaphoreA
CreateMailslotW
GlobalDeleteAtom
EnterCriticalSection
CreateFileA
WriteFile
MultiByteToWideChar
CreateProcessA
EnumSystemLocalesA
CopyFileA
TlsGetValue
TlsAlloc
GetCalendarInfoA
LCMapStringA
GetModuleFileNameA
GetNamedPipeInfo
SetLocaleInfoW
VirtualFree
SetVolumeLabelW
LoadResource
SetStdHandle
lstrcatW
LoadLibraryA
HeapDestroy
UnhandledExceptionFilter
EnumResourceTypesW
GetSystemTimeAdjustment
DeleteCriticalSection
GetSystemInfo
RemoveDirectoryW
SuspendThread
GetModuleHandleA
FormatMessageW
TlsFree
SetThreadPriority
InitializeCriticalSection
GetConsoleMode
SetHandleCount
GetEnvironmentStringsW
RtlUnwind
WriteConsoleA
GetLocaleInfoA
GetVersionExA
HeapCreate
SetConsoleTextAttribute
GetProcessAffinityMask
GetFileType
IsValidLocale
FreeEnvironmentStringsW
SetConsoleActiveScreenBuffer
SetConsoleMode
TlsSetValue
WriteConsoleW
FreeLibrary
WideCharToMultiByte
GetStringTypeW
GetProcAddress
CompareStringW
GetTimeFormatA
GetStdHandle
GetStringTypeExA
GetConsoleOutputCP
GetSystemTimeAsFileTime
FindFirstFileExA
GetDiskFreeSpaceW
lstrcpynA
LCMapStringW
SetThreadIdealProcessor
GetProfileIntA
GlobalUnfix
EnumCalendarInfoW
WriteConsoleOutputCharacterW
IsBadReadPtr
CreateFileW
QueryPerformanceCounter
CreateEventA
IsValidCodePage
ReadFile
GetFileTime
SetLastError
MoveFileExW
GetCurrentProcess
TerminateProcess
GetConsoleCP
CreateNamedPipeA
GetOEMCP
CompareStringA
InterlockedIncrement
GetMailslotInfo
LeaveCriticalSection
GetProcessHeap
ExitProcess
CloseHandle
GetCPInfo
GetStringTypeA
SetEnvironmentVariableA
SetFilePointer
GetFileAttributesExA
GetACP
SetUnhandledExceptionFilter
GetLocaleInfoW
FoldStringW
FreeEnvironmentStringsA
SetEnvironmentVariableW
SystemTimeToTzSpecificLocalTime
HeapAlloc
FindFirstFileA
InterlockedExchange
Sleep
GetLastError
GlobalFlags
IsDebuggerPresent
GetCurrentProcessId
OpenWaitableTimerW
SetConsoleCtrlHandler
MoveFileW
VirtualQuery
OpenMutexA
GetUserDefaultLCID
ReadFileEx
GetCommandLineA
GetStartupInfoW
GetCurrentThreadId
GetStartupInfoA
HeapFree
GetEnvironmentStrings
GetTimeZoneInformation

wininet

GetUrlCacheHeaderData
SetUrlCacheGroupAttributeW
FindNextUrlCacheEntryExW
InternetOpenUrlA
HttpSendRequestW
RegisterUrlCacheNotification
FindFirstUrlCacheContainerW
LoadUrlCacheContent
CreateUrlCacheEntryW

user32

MessageBoxA
UnionRect
DestroyWindow
GetCursor
UnhookWindowsHook
PostQuitMessage
RegisterClassA
DrawTextA
PostThreadMessageW
SetShellWindow
DdeQueryNextServer
SetSystemCursor
CheckDlgButton
EqualRect
MessageBoxW
CharLowerBuffA
GetClipboardData
EnumChildWindows
CallWindowProcA
DdeCreateStringHandleW
DdeReconnect
GetPropA
OemToCharBuffW
GetUpdateRgn
CreateWindowStationA
IsCharAlphaA
LoadMenuA
PostMessageA
GetScrollInfo
CreateCaret
DragDetect
RegisterClassExA
RedrawWindow
GetInputState
ArrangeIconicWindows
SetCaretPos
GetMenuItemID
ShowWindow
EndDialog
GetComboBoxInfo
DispatchMessageW
GetAltTabInfo
EnumDisplaySettingsA
TileWindows
DlgDirListComboBoxW
EnumDisplayMonitors
SetDlgItemTextA
CreateWindowExW
CallMsgFilterW
CreateMenu
GetClipboardFormatNameA
GetShellWindow
GetWindowThreadProcessId
RemovePropW
GetCapture
EnumDisplaySettingsExA
ChangeDisplaySettingsExA
GetWindowTextLengthW
GetScrollBarInfo
DrawTextExA
DdeInitializeW
SendIMEMessageExW
GetMessageTime
SetWindowWord
SetMenuContextHelpId
DefWindowProcW
GetClassInfoA
CreateAcceleratorTableA

gdi32

ArcTo
SetMapMode
CreateRectRgnIndirect
GetMetaFileA
CopyMetaFileW
CreateMetaFileA
EnumFontFamiliesExW
GetCharWidth32W
ExtFloodFill
CreatePolygonRgn
GetSystemPaletteUse
AbortPath
ColorMatchToTarget
AngleArc
CopyEnhMetaFileW
CreateFontW
CopyEnhMetaFileA
SetTextAlign
RealizePalette
SetEnhMetaFileBits
GetColorAdjustment
UpdateColors
GdiGetBatchLimit
LineTo
FixBrushOrgEx

comctl32

CreateMappedBitmap
ImageList_LoadImage
ImageList_Draw
InitCommonControlsEx
ImageList_LoadImageA
ImageList_AddMasked
ImageList_Write

Sections

.text
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d6152e61f1e477f5b4ad963a0af9816

Headers

File Characteristics

Imports

kernel32

wininet

user32

gdi32

comctl32

Sections

.text Size: 164KB - Virtual size: 161KB

.rdata Size: 268KB - Virtual size: 267KB

.data Size: 112KB - Virtual size: 120KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 164KB - Virtual size: 161KB

.rdata
Size: 268KB - Virtual size: 267KB

.data
Size: 112KB - Virtual size: 120KB

.rsrc
Size: 24KB - Virtual size: 23KB