39f345435296a31e240fabf990bc5e3e

Sharing

Copy URL

Twitter E-mail

General

Target

39f345435296a31e240fabf990bc5e3e
Size

1.2MB
MD5

39f345435296a31e240fabf990bc5e3e
SHA1

62b9eef5778afb2062f6c41cf21ce619347f6bbf
SHA256

c1b2724a50ae94d28c3ae0f8cf81655291c432b17e984dfde987ceeeee54c6a3
SHA512

dcbbc199bf4f9a69aff94b7f2cd9b8c831b72687bae5c3b2a06cc662282cc2306dddd6726983ad8e11d54ec397d68ab6f0d3ec3cbe521a0bba3cc37203348d59
SSDEEP

24576:0A0DPSx1su+vbclXPo0Ueqd2v1vTSsSn7RCYguBJeq4z9wlwDB:jcSx1MctPN/qIBSfVac4Zw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39f345435296a31e240fabf990bc5e3e

Files

39f345435296a31e240fabf990bc5e3e
.exe windows:5 windows x86 arch:x86

e16d317b53cbceacfbf42ed69592593a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoUninitialize
CoInitializeSecurity

advapi32

GetAce
RegCloseKey
AdjustTokenPrivileges
InitializeAcl
RegQueryValueExA
SetSecurityDescriptorDacl
CheckTokenMembership

kernel32

SetLastError
LockResource
EnterCriticalSection
GetModuleHandleA
FindClose
GetSystemTime
HeapAlloc
WriteTapemark
LoadLibraryA
CloseHandle
SetFilePointer
SetUnhandledExceptionFilter
GetTapeParameters
OpenMutexA
GetTapeStatus
GetCurrentDirectoryA
UnhandledExceptionFilter
SetEndOfFile
FileTimeToLocalFileTime
GetProcessHeap
VirtualAllocEx
WideCharToMultiByte
CreateNamedPipeA
ReleaseMutex
CreateMutexA
EraseTape
WaitForSingleObject
GetLastError
GetCurrentProcessId
GetTickCount

msvcrt

_CxxThrowException
_wcsupr
_mbscpy
_wcsicmp
_wfopen
wprintf
__set_app_type
_exit
_c_exit
wcsncpy
wcslen
__p__fmode
_wcmdln
mktime
malloc
wcscat
_except_handler3

setupapi

SetupCloseInfFile
SetupFindNextLine

comctl32

DestroyPropertySheetPage

netapi32

NetApiBufferFree

user32

DispatchMessageA
GetParent
GetDC
DefWindowProcA
UpdateWindow
ShowWindow
CreateWindowExA
EnableWindow
GetMessageA
SendMessageA
PostQuitMessage
KillTimer
GetSysColor
CreateIconIndirect
MapDialogRect
FlashWindow
TranslateMessage
GetMenuItemCount
SetWindowPos
WindowFromPoint
GetSystemMetrics
RegisterClassExA
DestroyWindow
GetDlgItem
DeleteMenu
CreateIconFromResource

ntdll

wcscspn

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
CreateBitmap
SelectObject

Sections

.text
Size: 650KB - Virtual size: 650KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 233KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e16d317b53cbceacfbf42ed69592593a

Headers

DLL Characteristics

File Characteristics

Imports

ole32

advapi32

kernel32

msvcrt

setupapi

comctl32

netapi32

user32

ntdll

gdi32

Sections

.text Size: 650KB - Virtual size: 650KB

.data Size: 233KB - Virtual size: 232KB

.rsrc Size: 295KB - Virtual size: 3.3MB

.text
Size: 650KB - Virtual size: 650KB

.data
Size: 233KB - Virtual size: 232KB

.rsrc
Size: 295KB - Virtual size: 3.3MB