68812da6bd9d84887082f94507f25843348aad0d6314c9e0013f2dc148ba2388

Sharing

Copy URL Twitter E-mail

General

Target

68812da6bd9d84887082f94507f25843348aad0d6314c9e0013f2dc148ba2388
Size

312KB
MD5

ed98724a693718a4e4f53b6180cdeb58
SHA1

7349148802ec70be9dcd7bbcaf7ea004e64e1936
SHA256

68812da6bd9d84887082f94507f25843348aad0d6314c9e0013f2dc148ba2388
SHA512

641be208484213d4d9d640242c23c5a9f3ece37b4589f04ec59e70a822287e7f3e35133a1c0f0f0ee5130e13367e53f99fcf89ac3f7883ee1e4da9aab69780f2
SSDEEP

6144:cOKyrM4K95FvrJGppAs3KeOiDP9CqkFumbQH01Nzn3byAOkHksw8wAEW8t7:cBOM4K95FTJGppAs3KeJkFumbQHMJ+uo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68812da6bd9d84887082f94507f25843348aad0d6314c9e0013f2dc148ba2388

Files

68812da6bd9d84887082f94507f25843348aad0d6314c9e0013f2dc148ba2388
.exe windows:6 windows x86 arch:x86

fa4939745dfdd5e5b67d78cda9ad36b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
GlobalLock
GlobalUnlock
MultiByteToWideChar
WideCharToMultiByte
GetCPInfoExW
IsValidCodePage
VirtualFree
GetCurrentProcess
VirtualAlloc
FlushInstructionCache
CreateFileW
ReadConsoleW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
GetACP
FindNextFileW
FindFirstFileExW
FindClose
HeapSize
HeapReAlloc
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
SetFilePointerEx
GetFileSizeEx
GetModuleHandleW
GetUserDefaultLCID
IsValidLocale
GetFileType
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
LoadLibraryExW
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
OutputDebugStringW
IsDebuggerPresent
LoadLibraryExA
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProcessHeap
HeapFree
HeapAlloc
GetCPInfo
GetLocaleInfoW
LCMapStringW
DeleteCriticalSection
GetProcAddress
SetLastError
DecodePointer
LoadLibraryW
RaiseException
GetLastError
GetCurrentThreadId
InitializeCriticalSectionEx
LeaveCriticalSection
FreeLibrary
EnterCriticalSection
EnumSystemLocalesW
GetStringTypeW
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
WriteConsoleW

user32

GetWindow
SetWindowPos
MessageBoxW
MonitorFromWindow
EndDialog
ChangeClipboardChain
GetMonitorInfoW
MapWindowPoints
GetWindowLongW
GetWindowTextLengthW
DefWindowProcW
GetWindowRect
ScreenToClient
SetWindowTextW
RegisterClassExW
IsWindowEnabled
MoveWindow
LoadCursorW
GetClientRect
GetClassInfoExW
GetParent
BeginPaint
EndPaint
EnableWindow
GetWindowTextW
CallWindowProcW
GetDlgItem
CreateWindowExW
SendMessageW
LoadIconW
OpenClipboard
CloseClipboard
GetClipboardData
IsClipboardFormatAvailable
UnregisterClassW
GetActiveWindow
SetWindowLongW
DialogBoxParamW

gdi32

BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
DeleteDC
DeleteObject

comctl32

ord17

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa4939745dfdd5e5b67d78cda9ad36b5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Sections

.text Size: 157KB - Virtual size: 157KB

.rdata Size: 63KB - Virtual size: 62KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 157KB - Virtual size: 157KB

.rdata
Size: 63KB - Virtual size: 62KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 10KB - Virtual size: 9KB