407370a1d8dfc95a0d9524870d481bd1

Sharing

Copy URL Twitter E-mail

General

Target

407370a1d8dfc95a0d9524870d481bd1
Size

540KB
MD5

407370a1d8dfc95a0d9524870d481bd1
SHA1

0b5f13ce83248c64c83c568a24d5a204a5d69a17
SHA256

30cc28586a3efcb747e749e9e25b7ea6334cfe13df4b24c7b7ed7e0a7aaacc22
SHA512

94c94950cf1c50e685172796d84b5eefe7215082f4d7d62e1cbcd4a2fc1d8c1e61142e607561162ff6f4a6b0fada71b9418ee57457afa94b2c912fe06b340d01
SSDEEP

12288:ddnmd1mdiCcZFKcQW2XsdhyCLKIqEKVM8YbuhLSEt+57:/mHmdiCcZ8nW2Xsd0CGQ98wkSe+R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
407370a1d8dfc95a0d9524870d481bd1

Files

407370a1d8dfc95a0d9524870d481bd1
.exe windows:4 windows x86 arch:x86

3c81f87f25f9ee49cfbc6abdd1257b33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeDisplaySettingsExW
DrawStateW
GetParent
EnumPropsExW
IsCharUpperW
WINNLSGetEnableStatus
RegisterClassA
SetClassLongA
EnumDesktopsW
DrawAnimatedRects
SetClipboardViewer
CreateDialogIndirectParamA
GetWindowTextLengthW
MenuItemFromPoint
GetClassInfoA
GetWindowTextA
DdeReconnect
RegisterClassExA
HideCaret
SendMessageTimeoutA
GetWindowInfo
GetCaretBlinkTime
CharToOemA
LoadMenuA
InSendMessage

comctl32

InitCommonControlsEx

comdlg32

FindTextW

gdi32

SetPixelV
CancelDC
GetTextExtentPoint32A
SetDIBColorTable
CreateRectRgn

kernel32

HeapSize
GetEnvironmentStringsW
GetCurrentProcessId
GetModuleFileNameA
WriteConsoleW
LCMapStringW
FlushFileBuffers
VirtualQuery
GetConsoleCP
FreeResource
SetConsoleTextAttribute
SetLastError
HeapReAlloc
SetCriticalSectionSpinCount
CreateWaitableTimerW
DeleteCriticalSection
GetSystemDirectoryW
GetLocalTime
GetStringTypeW
ReadFile
TlsSetValue
TlsFree
UnlockFile
Sleep
LoadLibraryA
SetFilePointer
GlobalReAlloc
FreeEnvironmentStringsW
CompareStringA
InterlockedIncrement
HeapCreate
GetTimeZoneInformation
GetTimeFormatA
SetConsoleCtrlHandler
GetVersionExA
EnumSystemLocalesA
GetModuleFileNameW
RtlUnwind
GetLastError
GetSystemTimeAsFileTime
IsDebuggerPresent
GetCurrentProcess
GetOEMCP
GetCurrentThread
GetACP
GetLocaleInfoW
CreateSemaphoreA
GetStdHandle
CloseHandle
IsValidLocale
GetUserDefaultLCID
SetStdHandle
GetLocaleInfoA
LCMapStringA
TerminateProcess
WriteConsoleA
GetDateFormatA
FindNextFileA
GetCurrentThreadId
GetDiskFreeSpaceW
MultiByteToWideChar
HeapAlloc
SetUnhandledExceptionFilter
GetFileType
UnhandledExceptionFilter
HeapFree
GetCommandLineW
ExitProcess
WriteFile
GetProcAddress
SetEnvironmentVariableA
GetEnvironmentStrings
lstrcmpW
FreeLibrary
VirtualLock
GetCommandLineA
SystemTimeToFileTime
EnterCriticalSection
CreateMutexA
CreateFileA
GetStartupInfoA
IsValidCodePage
GetConsoleOutputCP
InitializeCriticalSection
GetStartupInfoW
WideCharToMultiByte
TlsAlloc
GetConsoleMode
GetTickCount
GetStringTypeA
HeapDestroy
VirtualAlloc
GetModuleHandleA
OpenMutexA
SetHandleCount
VirtualFree
LeaveCriticalSection
CompareStringW
OpenMutexW
FreeEnvironmentStringsA
SetFileAttributesA
GetProcessHeap
TlsGetValue
QueryPerformanceCounter
InterlockedExchange
GetCPInfo
VirtualProtect
CreateEventW
InterlockedDecrement

Sections

.text
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c81f87f25f9ee49cfbc6abdd1257b33

Headers

File Characteristics

Imports

user32

comctl32

comdlg32

gdi32

kernel32

Sections

.text Size: 200KB - Virtual size: 199KB

.rdata Size: 10KB - Virtual size: 25KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 200KB - Virtual size: 199KB

.rdata
Size: 10KB - Virtual size: 25KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 14KB - Virtual size: 13KB