40650b1aaeca74d6ec85166d75e15b0a

Sharing

Copy URL Twitter E-mail

General

Target

40650b1aaeca74d6ec85166d75e15b0a
Size

364KB
MD5

40650b1aaeca74d6ec85166d75e15b0a
SHA1

03497b967b5dd480d349cb5795e0b6eeffe84a56
SHA256

e6e1fd80682e1f0704f2ea45c022c955c3545b56dc00585fa4c3e41e5ba258f8
SHA512

f41e8febc720571967c6e63bb6a2bd34a676097a0951be08b73c92085e1d09e46c3a41eb4df2c1af7da4f7db3da03fba5eef9bb065722124a70927bafffb23e2
SSDEEP

6144:TWjwQ9ab4G7OOieQk5zqS9DIrRELrjj6Mphwo0qiU:TWx0bgjeFwlFELrS4hnc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40650b1aaeca74d6ec85166d75e15b0a

Files

40650b1aaeca74d6ec85166d75e15b0a
.exe windows:4 windows x86 arch:x86

99ca0740027f81ea234e112563e72ae8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EraseTape
CreateMutexW
GetShortPathNameA
ReadConsoleOutputA
PurgeComm
GetVersionExA
VirtualProtect
ReadDirectoryChangesW
GetConsoleMode
WriteProcessMemory
ExitProcess
GetACP
GlobalFindAtomW
EnumResourceNamesA
ReadConsoleA
FreeLibraryAndExitThread
LCMapStringA
FindResourceExA
SetMailslotInfo
GetSystemDefaultLangID
GetSystemTimeAdjustment
ClearCommBreak
EnumTimeFormatsW
GlobalFlags
SuspendThread
PeekNamedPipe
GlobalAddAtomW
UnmapViewOfFile
GetUserDefaultLangID
LocalAlloc
WritePrivateProfileStringA
SetLastError
IsProcessorFeaturePresent
FindFirstFileW
CreateFileW
GetDriveTypeA
LoadLibraryExW
LeaveCriticalSection
SetStdHandle
CompareStringA
ScrollConsoleScreenBufferA
CreateDirectoryW
GetNumberFormatW
RemoveDirectoryW
GetCommandLineA
SetCommTimeouts

user32

GetNextDlgGroupItem
GetDoubleClickTime
GetDC
FindWindowExA
CreateIcon
SetWindowLongA
ChildWindowFromPoint
SetTimer
LookupIconIdFromDirectory
EndDialog
EnumDisplaySettingsExA
TranslateMDISysAccel
EnumWindowStationsW
UnregisterDeviceNotification
UpdateWindow
DragDetect
ExcludeUpdateRgn
InflateRect
mouse_event
SwitchToThisWindow
FindWindowA
RedrawWindow
IsClipboardFormatAvailable
IsDlgButtonChecked
GetMenuCheckMarkDimensions
EndDeferWindowPos
HiliteMenuItem
MonitorFromRect
SetLastErrorEx
GetMenuItemInfoA
SetClassLongW
ChangeDisplaySettingsW
SetProcessDefaultLayout
IsChild
CloseDesktop
DefFrameProcW
SwapMouseButton
IsCharAlphaA
DefFrameProcA
GetUserObjectInformationW
GetWindowContextHelpId
GetWindowTextA
GetFocus
LockWindowUpdate
VkKeyScanW
IsCharLowerA
RemoveMenu
EnumDesktopsW
GetTopWindow
BeginPaint
GetClassLongA
TileWindows
GetMenuDefaultItem
SetWindowPos
GetMenuState
LoadAcceleratorsW
DestroyCaret
SetWindowLongW
GetSysColorBrush
InsertMenuW
MapDialogRect

gdi32

PathToRegion
GetTextCharset
GetTextExtentPointW
SetWinMetaFileBits
SetRectRgn
PtVisible
EnumFontsA
SaveDC
CreateBrushIndirect
RoundRect
AddFontResourceW
SetMapMode
GetViewportExtEx
EnumObjects
SetPixelFormat
GetOutlineTextMetricsA
GetBrushOrgEx
CombineRgn
CreateMetaFileW
GetOutlineTextMetricsW
GetGlyphOutlineA

comdlg32

PageSetupDlgW

advapi32

QueryServiceConfigW
LookupPrivilegeValueA
RegisterEventSourceA
CreateProcessAsUserW
StartServiceCtrlDispatcherA
AbortSystemShutdownA
RegisterEventSourceW
RegEnumKeyExA
RegQueryValueExA
RegReplaceKeyW
GetSidSubAuthorityCount

shell32

DragQueryPoint
SHGetSettings
SHGetSpecialFolderPathW

ole32

ReadClassStm
OleQueryLinkFromData
StgSetTimes
OleRegGetMiscStatus
CoFileTimeNow
OleSetContainedObject
WriteClassStg
CoReleaseMarshalData
PropVariantCopy
CreateStreamOnHGlobal

oleaut32

SafeArrayCreate
SafeArrayGetElement
LoadTypeLi
SafeArrayRedim

comctl32

ImageList_GetImageCount
CreatePropertySheetPageW
ImageList_GetDragImage
ImageList_Merge

shlwapi

SHRegWriteUSValueW
PathRemoveFileSpecW
SHRegGetBoolUSValueA
PathRemoveFileSpecA
SHRegGetBoolUSValueW
PathRemoveBackslashW
PathIsRootA
SHQueryValueExW
PathFindFileNameA
StrRStrIW
SHStrDupW
PathRelativePathToA
wnsprintfW

setupapi

SetupLogErrorW
SetupOpenAppendInfFileA
SetupDiOpenDevRegKey
SetupOpenLog
SetupScanFileQueueA
SetupIterateCabinetA
SetupFindFirstLineW
SetupDiSetDeviceInstallParamsA
SetupDiSetSelectedDriverW

Sections

oecis
Size: 304KB - Virtual size: 301KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

qqkge
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

oyuiiyy
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iogkoec
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99ca0740027f81ea234e112563e72ae8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

Sections

oecis Size: 304KB - Virtual size: 301KB

qqkge Size: 8KB - Virtual size: 5KB

oyuiiyy Size: 32KB - Virtual size: 29KB

iogkoec Size: 16KB - Virtual size: 12KB

oecis
Size: 304KB - Virtual size: 301KB

qqkge
Size: 8KB - Virtual size: 5KB

oyuiiyy
Size: 32KB - Virtual size: 29KB

iogkoec
Size: 16KB - Virtual size: 12KB