37f679ae17b6c18d41d053883cb2501b

Sharing

Copy URL Twitter E-mail

General

Target

37f679ae17b6c18d41d053883cb2501b
Size

514KB
MD5

37f679ae17b6c18d41d053883cb2501b
SHA1

fea74bf2747944e94c8e16abc154e7ad4f60ce41
SHA256

f9b1daf1defb476d391a65a5dee918d659a1f3f3249b1559093db336e4f62653
SHA512

f1b69c1a2f9329415dfc6fc7b688c500415acdbd5a44476d19c8798144fb3ed82cc8d3989129518b1d78c3cb7cc7d4fb87e6e81df28e73d561bb76f2ed6fbb13
SSDEEP

6144:PTtDQr6J4TTquUDIltBLOMb6bd4ne6WbSVnFPpLkolY/zy19qyo9/iYNLJ0xungy:P6r6JeJjdWFc9kaYO1oi8+8nG9xv7lr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37f679ae17b6c18d41d053883cb2501b

Files

37f679ae17b6c18d41d053883cb2501b
.exe windows:4 windows x86 arch:x86

916f350738e11af84c844422653c427c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
DeleteCriticalSection
GetCommandLineW
GetACP
SetHandleCount
GetStartupInfoW
CompareStringA
GetTickCount
CreateFileA
InterlockedExchange
VirtualQuery
InterlockedIncrement
CompareStringW
LoadLibraryA
GetDateFormatA
GetConsoleMode
GetModuleFileNameA
GetEnvironmentStringsW
SetLocaleInfoA
Sleep
HeapCreate
WriteConsoleA
LCMapStringW
EnumTimeFormatsA
GetStartupInfoA
GetOEMCP
GetModuleFileNameW
GetVersionExA
GetUserDefaultLCID
OpenMutexA
HeapDestroy
IsValidLocale
GetCurrentProcess
GetCurrentProcessId
WideCharToMultiByte
GetStringTypeW
HeapFree
FreeEnvironmentStringsW
TlsFree
GetEnvironmentStrings
GetConsoleOutputCP
TerminateProcess
HeapAlloc
InterlockedDecrement
MultiByteToWideChar
SetLocaleInfoW
GetSystemTimeAsFileTime
FindFirstFileW
GetCurrentThreadId
GetNumberFormatA
FreeLibrary
VirtualFree
WriteConsoleW
IsDebuggerPresent
SetUnhandledExceptionFilter
GlobalAddAtomW
IsValidCodePage
UnhandledExceptionFilter
FreeEnvironmentStringsA
TlsSetValue
SetConsoleCtrlHandler
ExitProcess
RtlUnwind
GetCurrentThread
CloseHandle
GetConsoleCP
HeapReAlloc
ReadFile
GetStdHandle
TlsAlloc
GetLocaleInfoW
GetTimeZoneInformation
GetPrivateProfileSectionW
GetProcAddress
GetCPInfo
CreateMutexA
GetCommandLineA
GetFileType
SetLastError
SetFilePointer
WriteFile
GetTimeFormatA
GetProcessHeap
SetStdHandle
FlushFileBuffers
SetEnvironmentVariableA
EnterCriticalSection
LCMapStringA
GetStringTypeA
WaitForMultipleObjectsEx
QueryPerformanceCounter
HeapSize
LeaveCriticalSection
GetLocaleInfoA
GetConsoleTitleA
GetModuleHandleA
EnumSystemLocalesA
InitializeCriticalSection
TlsGetValue
VirtualAlloc

wininet

InternetInitializeAutoProxyDll
InternetGetCookieA
InternetTimeFromSystemTime
SetUrlCacheEntryInfoW
GetUrlCacheGroupAttributeA
InternetGetConnectedStateExW
FtpCommandW
DeleteUrlCacheEntryA

comdlg32

ChooseFontA

advapi32

RegOpenKeyExA
CryptAcquireContextW
CryptEnumProviderTypesW
RegQueryValueExW
RegEnumKeyA
CryptEnumProvidersA
CryptContextAddRef
CryptVerifySignatureA
LookupSecurityDescriptorPartsA
CreateServiceW
CryptSignHashW
RevertToSelf
InitializeSecurityDescriptor
RegQueryMultipleValuesA
CryptGetHashParam
RegQueryValueExA
CryptGetProvParam
StartServiceW

shell32

SHFreeNameMappings

comctl32

InitCommonControlsEx

user32

GetMenu
TranslateAccelerator
RegisterClassExA
RegisterClassA

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

916f350738e11af84c844422653c427c

Headers

File Characteristics

Imports

kernel32

wininet

comdlg32

advapi32

shell32

comctl32

user32

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 10KB - Virtual size: 24KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 10KB - Virtual size: 24KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 14KB - Virtual size: 14KB