4099ac0e9fb7436962b58aab87e47773

Sharing

Copy URL

Twitter E-mail

General

Target

4099ac0e9fb7436962b58aab87e47773
Size

858KB
MD5

4099ac0e9fb7436962b58aab87e47773
SHA1

e252ac9bacc7765882f86f4920fab7bb61ea94fb
SHA256

f9d28aa80a67b6299bc05f41d919bcbd341419893a0833f0c2fb519d9cb862c2
SHA512

43623515135e04679b874bcdd090652c107ea0f883b82d00f9d56cb2bbd43708e3918d0c410c55750a5d5cd1d4cac9d4d6b044dddbc2dc7d7d79f5d5c0ac9a97
SSDEEP

12288:/l9lyflC2l8/C4P2oyNTZfbv5Uhy8JbofeyKtv3J/Ne3rSu3JJUEgg1+1ux:/pklpaaVvNY1bofefJ/obS8JIQ+1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4099ac0e9fb7436962b58aab87e47773

Files

4099ac0e9fb7436962b58aab87e47773
.exe windows:4 windows x86 arch:x86

d91fd9f6d4501762e5694d6bd2f7a3e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

VkKeyScanA
CreateWindowExA
SendMessageTimeoutA
ChangeMenuA
ArrangeIconicWindows
OpenDesktopA
EnumPropsExA
GetWindowWord
EnumClipboardFormats
EnableScrollBar
InvalidateRgn
CreateIconIndirect
CharToOemBuffA
GetProcessDefaultLayout
DdeEnableCallback
DlgDirSelectExA
GetComboBoxInfo
UpdateWindow
ScrollDC
PackDDElParam
GetKBCodePage
IsCharLowerA
GetDoubleClickTime
GetClassInfoA
SetMenuDefaultItem
SetScrollInfo
SetClipboardData
RegisterDeviceNotificationA
CreateDialogParamA
DrawTextExA
SetProcessWindowStation
IsWindowUnicode
InSendMessage
ToUnicodeEx
CharNextExA
SetCaretBlinkTime
GetDlgCtrlID
WinHelpA
GetWindowRect
SetKeyboardState
SetMessageExtraInfo
TileWindows
RemovePropA
DrawMenuBar
SetWindowContextHelpId
CheckMenuItem
ChildWindowFromPointEx
MapVirtualKeyExA
GetWindowInfo
DestroyMenu
TranslateAccelerator
RegisterWindowMessageA
DrawFrame
MessageBoxA
DdeCreateDataHandle
GetMenuCheckMarkDimensions

advapi32

RegQueryValueA
CopySid
AccessCheck
CryptHashSessionKey
GetNumberOfEventLogRecords
GetAclInformation
CryptGetKeyParam
AllocateAndInitializeSid
RegUnLoadKeyA
QueryServiceObjectSecurity
SetEntriesInAuditListA
OpenEventLogA
GetExplicitEntriesFromAclA
GetSecurityDescriptorControl
PrivilegeCheck
RegOpenKeyA
GetSidSubAuthority
DeregisterEventSource
CryptSignHashA
GetMultipleTrusteeA
BackupEventLogA
IsTextUnicode
ControlService
GetTrusteeTypeA
CryptSetKeyParam
RegConnectRegistryA
CryptGenKey
InitializeAcl
ChangeServiceConfigA
ObjectDeleteAuditAlarmA
RegDeleteValueA
FindFirstFreeAce
BuildSecurityDescriptorA
AddAce

kernel32

VirtualProtectEx

Sections

.jkng
Size: 635KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wbil
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gjmd
Size: 19KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sjs
Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sti
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tszot
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kdy
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xgdkp
Size: 48KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obojs
Size: 124KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d91fd9f6d4501762e5694d6bd2f7a3e5

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.jkng Size: 635KB - Virtual size: 1.3MB

.wbil Size: 5KB - Virtual size: 5KB

.gjmd Size: 19KB - Virtual size: 27KB

.sjs Size: 512B - Virtual size: 20KB

.sti Size: 6KB - Virtual size: 15KB

.tszot Size: 512B - Virtual size: 56B

.kdy Size: 512B - Virtual size: 24B

.xgdkp Size: 48KB - Virtual size: 76KB

.obojs Size: 124KB - Virtual size: 1.7MB

.rsrc Size: 18KB - Virtual size: 20KB

.jkng
Size: 635KB - Virtual size: 1.3MB

.wbil
Size: 5KB - Virtual size: 5KB

.gjmd
Size: 19KB - Virtual size: 27KB

.sjs
Size: 512B - Virtual size: 20KB

.sti
Size: 6KB - Virtual size: 15KB

.tszot
Size: 512B - Virtual size: 56B

.kdy
Size: 512B - Virtual size: 24B

.xgdkp
Size: 48KB - Virtual size: 76KB

.obojs
Size: 124KB - Virtual size: 1.7MB

.rsrc
Size: 18KB - Virtual size: 20KB