41d03c23e92d178c9cb46bbaddd592ad

Sharing

Copy URL Twitter E-mail

General

Target

41d03c23e92d178c9cb46bbaddd592ad
Size

396KB
MD5

41d03c23e92d178c9cb46bbaddd592ad
SHA1

9f8464f0442a9a5d960d95b064d49ef407e4f86d
SHA256

a27862e2d2bd95979e4590b64036a5f61dec0b57589741fbf0c088ff8e6a8622
SHA512

6dcad47646dfa1f348c73b8008bf2fac63bcf5813659a19ff4e29906d31415d2b9ebde02c11c10ce985f0926819b65adc7dc21e5e88c56884e58be4ba4e8c90c
SSDEEP

3072:ZRDH5pPq/ug0gIPWrx4fWallYmbKqBJSVhcvIxyWHlHs9Y8hqgbLDrunml:nHfPETxEW1mOwJSVh+cVYsjml

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41d03c23e92d178c9cb46bbaddd592ad

Files

41d03c23e92d178c9cb46bbaddd592ad
.exe windows:4 windows x86 arch:x86

fe16d92a89d1c918a68f9b6f41aade49

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommMask
GetEnvironmentVariableA
GetConsoleAliasA
GetUserDefaultUILanguage
VerifyVersionInfoA
DebugBreak
lstrcmpi
UnlockFile
VirtualLock
VerifyVersionInfoA
GetLogicalDrives
GetComputerNameExA
GetFullPathNameA
DeleteTimerQueueTimer
SetConsoleCP
GetProcessTimes
OpenMutexA
EnumSystemGeoID
FindNextFileA
GetSystemWindowsDirectoryA
ReplaceFileA
GetConsoleScreenBufferInfo
DisconnectNamedPipe
GetTempPathA
GetFileInformationByHandle
GetThreadPriorityBoost
GetExitCodeThread
GetCurrentProcess
VirtualAlloc
lstrcpynA
GetThreadLocale
IsBadStringPtrA
GetStartupInfoA
FreeEnvironmentStringsA
SetProcessWorkingSetSize
GetProcessVersion
GetLocaleInfoA
SetComputerNameExA
FindNextVolumeMountPointA
GetSystemDefaultLangID
lstrlenA
GetCommMask
GetDllDirectoryA
GetLogicalDrives
GetThreadTimes
WriteConsoleOutputCharacterW
LocalFlags
WritePrivateProfileStructA
GetConsoleInputExeNameA
AddAtomA
GetLongPathNameA
HeapLock
GetModuleFileNameA
OpenProcess
GetCurrencyFormatA
GetFileAttributesExA
EnumSystemGeoID
CreateFileMappingW
IsBadWritePtr
GetComputerNameA
HeapUnlock
ReadFileEx
WriteConsoleA
FileTimeToSystemTime
SetHandleInformation
GetVersionExA
GetSystemDirectoryA
RemoveDirectoryA
GetTapeParameters
GetVersion
UnregisterWaitEx
GetConsoleWindow
ResetEvent
GetFileTime
GetDriveTypeA
GetDefaultCommConfigA
GlobalDeleteAtom
GetSystemTimeAdjustment
GetFileTime
WaitForMultipleObjectsEx
LZRead
UnregisterConsoleIME
CopyFileExW
CreateNamedPipeA
SizeofResource
GetProcessId
CompareStringA
GetTickCount
ReadConsoleA
LZStart
SetUnhandledExceptionFilter
CreateDirectoryA
EnumSystemLanguageGroupsA
LocalLock
GetCommandLineA
IsSystemResumeAutomatic
GetPrivateProfileStructA
MoveFileA
SetCalendarInfoA
SetEndOfFile
VirtualQueryEx
DefineDosDeviceA
GetVolumeInformationA
GetConsoleAliasesLengthA
OpenJobObjectA
SetComputerNameExW
GetThreadSelectorEntry
GetProcessPriorityBoost
SetSystemPowerState
GetDiskFreeSpaceA
GlobalHandle
UnregisterConsoleIME
IsValidCodePage
_hwrite
GetSystemTimeAsFileTime
SetFileAttributesA
MoveFileWithProgressA
CopyFileExW
OpenSemaphoreA
SetConsoleCursorMode
BeginUpdateResourceA
RaiseException
OpenJobObjectA
EnumSystemLocalesA
GetThreadPriority
SetFirmwareEnvironmentVariableA
GetFileAttributesExA
FlushViewOfFile
RemoveDirectoryA
SetConsoleActiveScreenBuffer
SetFileShortNameA
GetTapePosition
WritePrivateProfileStringA
GetTickCount
SetFileShortNameA
GetProcAddress
CreateWaitableTimerA
IsValidCodePage
SetVolumeMountPointA
SignalObjectAndWait
OpenJobObjectA
SetThreadPriorityBoost
QueryPerformanceFrequency
Toolhelp32ReadProcessMemory
HeapSize
LockFileEx
IsProcessorFeaturePresent
SetPriorityClass
SetConsoleScreenBufferSize
CreateSocketHandle
FindFirstFileExA
WriteProcessMemory
EnumResourceNamesA
GetUserDefaultLCID
OutputDebugStringA
ReleaseSemaphore
HeapSize
WaitCommEvent
GetPrivateProfileStringA
GetModuleHandleA
CommConfigDialogA
EnumSystemLocalesA
GetPrivateProfileStringA
GetCompressedFileSizeA
SetFilePointer
GetConsoleFontSize
GetEnvironmentVariableA
WaitForMultipleObjectsEx
OpenFileMappingA
CreateThread
ClearCommBreak
WriteFileGather

user32

ChangeMenuA
IsWinEventHookInstalled
RegisterHotKey
InsertMenuItemW
GetListBoxInfo
EnumDisplayDevicesA
GetClassNameA
PackDDElParam
SetWindowsHookExW
UnionRect
GetKeyNameTextA
GetMonitorInfoA
SetForegroundWindow
GetWindowTextA
RealGetWindowClassA
SendIMEMessageExA
EndDialog
GetCursor
GetClipboardData
EnableMenuItem
RegisterClassExA
CopyRect
RedrawWindow
CreateWindowExA
ShowScrollBar
OpenClipboard
RegisterWindowMessageA
RecordShutdownReason
EnumDisplaySettingsExA
SetCursorContents
GetCursorPos
GetMenuStringA
GetClassInfoExW
IsRectEmpty
GetInputDesktop
InflateRect
ClientThreadSetup
GetClipboardFormatNameA
EnumDesktopsA
SetClassLongA
SendIMEMessageExA
DragDetect
MessageBoxA
IsWindowInDestroy
EnableWindow
CharLowerBuffW
CallMsgFilterA
RegisterDeviceNotificationA
GetMenuState
DlgDirListComboBoxA
UpdateLayeredWindow
GetDCEx
CreateDialogParamA
SendDlgItemMessageA
ScreenToClient
MenuWindowProcA
PostQuitMessage
SendMessageTimeoutW
RegisterUserApiHook
UnpackDDElParam
BroadcastSystemMessageExA
MapVirtualKeyA
GetAltTabInfoA
ReleaseCapture
SetProgmanWindow
SetWindowWord
RemoveMenu
ReplyMessage
BeginPaint
EnableScrollBar
GetDlgCtrlID
LoadKeyboardLayoutEx
SetDlgItemTextA
GetKeyboardState
InSendMessage
CascadeChildWindows
UnpackDDElParam
CopyRect
GetWindowRgnBox
LoadStringA
GetAppCompatFlags2
TranslateAccelerator
RegisterClipboardFormatA

ws2_32

closesocket

Exports

Exports

Okymymiisi
WriteAhpqkwymc
Ocknbhn
ReadTdablyoq
Pckihcom
Koxtcwac

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe16d92a89d1c918a68f9b6f41aade49

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 48KB - Virtual size: 682KB

.idata Size: 280KB - Virtual size: 276KB

.rsrc Size: 64KB - Virtual size: 60KB

.itext
Size: - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 682KB

.idata
Size: 280KB - Virtual size: 276KB

.rsrc
Size: 64KB - Virtual size: 60KB