38f9d4aae5cc0941c716f376d4c0d620

Sharing

Copy URL Twitter E-mail

General

Target

38f9d4aae5cc0941c716f376d4c0d620
Size

122KB
MD5

38f9d4aae5cc0941c716f376d4c0d620
SHA1

4ecc5a184c68dd7766555f5414bafa026dae3cc5
SHA256

7321c2243cd468a8d2d5f02305beb07fde8c2998f0327f82cf68ee9424fb93c4
SHA512

099f45ca30d126b5903ee88ea3d7c7fafbcfffda8a871f9b0818f3efef34e863bafc7d39a3347f0cbf575a34f8df248231d4ff9950c9f9c2c3c6156cbf641f46
SSDEEP

1536:YeMOLi/R/8Qo0oGRvqZjCMwhqfG+A2b2p7AgjB7/pHe1BIXdEyP3e3GwM0tM98OM:TjYFoGRvqIzoejG017xeC5PVP0tMWE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38f9d4aae5cc0941c716f376d4c0d620

Files

38f9d4aae5cc0941c716f376d4c0d620
.exe windows:4 windows

3c72447945e6f95db7a8a318caad036b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

RetrieveUrlCacheEntryFileA
FtpFindFirstFileW
FtpRemoveDirectoryW
ReadUrlCacheEntryStream
FtpGetCurrentDirectoryW
InternetOpenA
InternetGetLastResponseInfoA
FtpGetFileA
InternetGetCookieA
InternetOpenUrlA
FtpPutFileW
GetUrlCacheEntryInfoW
HttpAddRequestHeadersA
InternetCloseHandle
CommitUrlCacheEntryW

user32

SetCapture

winmm

auxSetVolume

gdi32

GetPixel
GetEnhMetaFileDescriptionA
SetWindowExtEx
EnumFontFamiliesW
InvertRgn
SetPaletteEntries
CloseMetaFile
BitBlt
SetICMProfileW
CreateEnhMetaFileA
GetCharABCWidthsFloatW
GetGraphicsMode
GetBrushOrgEx
GetCharWidthFloatW
SelectClipRgn
EnumEnhMetaFile
DescribePixelFormat
CreatePen
GetEnhMetaFileA
SetRectRgn
GdiSetBatchLimit
CreateBrushIndirect
EnumObjects
CopyMetaFileW
RemoveFontResourceA
GetPaletteEntries
GetEnhMetaFilePaletteEntries
GetCurrentPositionEx
StretchDIBits
GetPixelFormat
CreateDCA
EndPage

kernel32

CreateTapePartition
GetTapeParameters
GetShortPathNameW
Toolhelp32ReadProcessMemory
GetModuleHandleA
GetStartupInfoA
EnumDateFormatsA
GetFileTime
GetSystemTime
GetModuleHandleW
GetUserDefaultLCID
CreateDirectoryExA
GetBinaryTypeA
BuildCommDCBAndTimeoutsW
CreateIoCompletionPort
GlobalAddAtomA
FindResourceExA
GetPrivateProfileStructA
GetConsoleMode
GetModuleFileNameW
DebugBreak
EndUpdateResourceA
Module32First
FindFirstChangeNotificationA
Process32First
GetDriveTypeA
CreateConsoleScreenBuffer
GetDefaultCommConfigW
GetACP
GlobalMemoryStatus
GetConsoleOutputCP
GlobalFindAtomW
FreeResource
GetProfileSectionA
FlushInstructionCache
DosDateTimeToFileTime
GetPrivateProfileSectionA
FoldStringW
BuildCommDCBA
FindCloseChangeNotification
CreateSemaphoreW

imm32

ImmConfigureIMEA

rasapi32

RasEnumConnectionsA
RasHangUpA
RasHangUpW

comctl32

DrawStatusTextW
ImageList_Remove
CreatePropertySheetPageA
CreateToolbarEx

ole32

CoRegisterSurrogate
OleSaveToStream
HACCEL_UserFree
HBITMAP_UserUnmarshal
HACCEL_UserUnmarshal

msvcrt

_XcptFilter
_exit
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_except_handler3
exit

resutils

ResUtilGetPropertiesToParameterBlock
ResUtilEnumResources
ClusWorkerCheckTerminate

mpr

WNetGetUserA
WNetCancelConnection2W
WNetConnectionDialog1A
WNetGetLastErrorA
MultinetGetConnectionPerformanceW
WNetCancelConnectionA
WNetEnumResourceA
WNetAddConnectionW

setupapi

SetupAdjustDiskSpaceListA
SetupDiCreateDeviceInfoW
SetupCopyErrorA
SetupDiCreateDeviceInfoList
SetupGetLineByIndexW
SetupScanFileQueueW
SetupDiClassGuidsFromNameExW
SetupDiGetSelectedDriverA
SetupDiCreateDeviceInterfaceW
SetupDiSetDeviceInstallParamsA
SetupRemoveFromSourceListA
SetupGetLineCountA
SetupGetIntField
SetupDiBuildDriverInfoList
SetupCloseLog
SetupDiDestroyDriverInfoList
SetupDiGetClassInstallParamsW
SetupInstallServicesFromInfSectionW
SetupFindNextLine
SetupDiCreateDeviceInfoListExA
SetupDiCreateDevRegKeyW
SetupPromptForDiskW
SetupQueueRenameSectionW
SetupDiGetClassImageListExW
SetupInstallFileW
SetupDiGetClassImageListExA
SetupDiGetClassDevsExA
SetupOpenAppendInfFileA

oleaut32

VarBstrFromCy
LPSAFEARRAY_UserSize
VarI4FromDisp
VarDateFromUI4
CreateTypeLi
VarInt
VarR8FromUI4

Sections

.text
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c72447945e6f95db7a8a318caad036b

Headers

File Characteristics

Imports

wininet

user32

winmm

gdi32

kernel32

imm32

rasapi32

comctl32

ole32

msvcrt

resutils

mpr

setupapi

oleaut32

Sections

.text Size: 91KB - Virtual size: 91KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 2KB - Virtual size: 2.6MB

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 91KB - Virtual size: 91KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 2KB - Virtual size: 2.6MB

.rsrc
Size: 15KB - Virtual size: 15KB