39533654fb700e8d218851091fbe4820

Sharing

Copy URL Twitter E-mail

General

Target

39533654fb700e8d218851091fbe4820
Size

560KB
MD5

39533654fb700e8d218851091fbe4820
SHA1

38dd1dc5e947f05d4b38eb044bef95499b629eae
SHA256

e97bbcc321866355a9bf5a62b609e706990a9817f3f08d4803199e355025c184
SHA512

800ec24f56040bda4bb2af53a1eb43cb58e6b77abf84234d095c57188596aedf7944f0a47c03c425afbc6bfbed0cab88e376b60ffb6083cd1ea3b5be796c1216
SSDEEP

12288:+HboQ4z+Ncn9MbAmyhzPLa8tdQZAMpOBnKc:yboQY+Ncn9M0myRtdQZLpO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39533654fb700e8d218851091fbe4820

Files

39533654fb700e8d218851091fbe4820
.exe windows:4 windows x86 arch:x86

4e75249056e2ac23c8a1d9fed8db8ee5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
CreateDirectoryExW
EnterCriticalSection
GetCommandLineW
ExitProcess
GetStringTypeW
SetEnvironmentVariableA
GlobalUnlock
HeapCreate
LeaveCriticalSection
VirtualFree
EnumDateFormatsExA
GetThreadPriority
SetHandleCount
GetCurrencyFormatW
LocalLock
GetCommandLineA
EnumResourceNamesW
OutputDebugStringA
CreateSemaphoreW
lstrcmpA
GetProfileIntA
CreateMutexA
GetSystemTimeAsFileTime
CreateProcessW
GetLastError
LCMapStringW
GetEnvironmentVariableA
WideCharToMultiByte
TlsFree
EnumDateFormatsExW
GetTimeZoneInformation
GetTickCount
GetDateFormatW
GetPriorityClass
GetSystemTime
CreateMutexW
UnhandledExceptionFilter
RemoveDirectoryA
MapViewOfFile
InterlockedExchangeAdd
CreateFileA
GetProfileIntW
TerminateProcess
GetStringTypeA
HeapAlloc
HeapReAlloc
SetConsoleCtrlHandler
OpenProcess
GetFileType
LocalUnlock
GetStartupInfoW
IsBadWritePtr
CloseHandle
ReadConsoleW
GetPrivateProfileIntA
GetCurrentProcessId
SetCriticalSectionSpinCount
WaitForDebugEvent
LoadLibraryW
WriteConsoleOutputCharacterA
HeapValidate
SetThreadPriority
SetConsoleTitleA
FlushFileBuffers
LocalHandle
GetCPInfo
InterlockedIncrement
GetThreadPriorityBoost
GlobalGetAtomNameA
QueryPerformanceCounter
WriteFile
VirtualProtect
GetLocalTime
GetModuleFileNameA
GetProcAddress
GetDriveTypeA
DeleteCriticalSection
GetCurrentThread
TlsAlloc
GetNamedPipeInfo
GetModuleHandleA
VirtualAlloc
TlsSetValue
GetPrivateProfileStringW
FillConsoleOutputCharacterW
WriteProfileSectionA
lstrlen
GetDateFormatA
OpenWaitableTimerA
InitializeCriticalSection
LoadLibraryA
DeleteFiber
GlobalFree
GetPrivateProfileSectionW
GlobalUnfix
GetCurrentProcess
GetStdHandle
GlobalAddAtomA
GetShortPathNameA
lstrcat
FreeEnvironmentStringsA
FreeEnvironmentStringsW
MultiByteToWideChar
UnlockFile
GlobalFindAtomA
GetEnvironmentStrings
RemoveDirectoryW
InterlockedExchange
GetEnvironmentStringsW
LockFileEx
RtlUnwind
GetFileSize
SetStdHandle
SetLastError
CompareStringA
TlsGetValue
SetFilePointer
GetModuleFileNameW
ReadFile
GetPrivateProfileIntW
OpenFileMappingW
GetStartupInfoA
WriteFileEx
DebugActiveProcess
CreateDirectoryExA
InterlockedDecrement
GetVersion
CreateNamedPipeW
GlobalAlloc
CompareStringW
WritePrivateProfileSectionW
LCMapStringA
EnumResourceNamesA
VirtualQuery
SetThreadLocale
OpenMutexA
GetCurrentThreadId
HeapFree
RtlZeroMemory
OpenFile

user32

DestroyWindow
DefFrameProcA
GetSysColorBrush
EnumPropsExA
GetWindowRgn
SetWindowLongW
SendIMEMessageExA
GetClipboardSequenceNumber
EnableScrollBar
ShowWindow
ReplyMessage
SetMessageQueue
SetWindowPlacement
DrawEdge
GetMenuItemRect
CreateWindowStationA
KillTimer
GetKeyNameTextA
FlashWindow
EmptyClipboard
DrawAnimatedRects
GetInputState
GetClientRect
IsIconic
CreateWindowExA
GetPriorityClipboardFormat
SubtractRect
SetWindowsHookExA
VkKeyScanA
GetDesktopWindow
IsCharLowerA
GetMessageW
EndDeferWindowPos
SetDlgItemTextA
RegisterClassW
GetClipboardOwner
GetPropA
IsWindowEnabled
SetCaretBlinkTime
CreateMDIWindowW
MessageBoxW
GetMenuStringW
DestroyCaret
DefWindowProcW
SetProcessWindowStation
CreateIconFromResourceEx
SetWindowTextA
DestroyAcceleratorTable
DlgDirListComboBoxW
GetNextDlgGroupItem
SetClassWord
SetPropA
CreateWindowExW
DdeAccessData
GetWindow
GetCaretPos
GetMessageA
DlgDirSelectExW
SetMenuItemInfoA
OemKeyScan
RegisterClassExA
RegisterClassA
GetAncestor
DlgDirSelectExA
SetForegroundWindow
MsgWaitForMultipleObjectsEx
MonitorFromPoint
TranslateMDISysAccel
DdeSetQualityOfService
SetFocus
SendDlgItemMessageW

comctl32

CreateToolbarEx
InitCommonControlsEx
ImageList_AddMasked
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_Destroy
GetEffectiveClientRect
ImageList_SetFilter
ImageList_GetIconSize

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e75249056e2ac23c8a1d9fed8db8ee5

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 248KB - Virtual size: 245KB

.data Size: 112KB - Virtual size: 127KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 248KB - Virtual size: 245KB

.data
Size: 112KB - Virtual size: 127KB

.rsrc
Size: 16KB - Virtual size: 12KB