43d88296bc68e03b2fb33ccafee16215

Sharing

Copy URL Twitter E-mail

General

Target

43d88296bc68e03b2fb33ccafee16215
Size

529KB
MD5

43d88296bc68e03b2fb33ccafee16215
SHA1

32f17b053cd1c4ff392b028fa14feb72c9b87542
SHA256

f1b56b6e05f9e659db37ccc4eb9762d5bd476f62ff04c42f1f32ffb8a82fdc5c
SHA512

4a0c796ae8a9418d0cdac1838dfa074706a0f545105e540ad06fba118735c91bd1c8e3391e71a19c5636a4abd3f82e3fc19fb89e81924ccbb5d8d9fceb63841d
SSDEEP

12288:nUztVvoL+gES+FLOiRlS3vYWeJbjTJSDq:UyxELLOiRwvKF0Dq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43d88296bc68e03b2fb33ccafee16215

Files

43d88296bc68e03b2fb33ccafee16215
.exe windows:4 windows x86 arch:x86

5a992a8ee9a8aaeb9bcdac28a337df5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetMenuState
EnableMenuItem
RegisterClassExA
MenuItemFromPoint
ShowWindow
CreateWindowExA
RegisterClassA
VkKeyScanExA
DrawTextExA
LoadMenuIndirectA
DeferWindowPos
MessageBoxW
VkKeyScanExW
LoadMenuIndirectW
SendNotifyMessageW
RemovePropA
GetMonitorInfoW
CloseDesktop
MapVirtualKeyA

kernel32

HeapCreate
HeapSize
WideCharToMultiByte
TlsSetValue
ExitProcess
GetCurrentProcess
TerminateProcess
RtlUnwind
GetStringTypeA
TlsAlloc
GetStartupInfoA
WriteFile
LeaveCriticalSection
GetFileType
GetEnvironmentStrings
GetModuleFileNameA
GetProcAddress
GetVersionExA
DeleteCriticalSection
LCMapStringW
GetStdHandle
FreeEnvironmentStringsA
GetProcessHeap
SetConsoleTextAttribute
LCMapStringA
SetEnvironmentVariableA
GetEnvironmentStringsW
MultiByteToWideChar
CompareStringA
GetVersionExW
Sleep
SetHandleCount
WriteConsoleW
GetConsoleMode
HeapReAlloc
WaitNamedPipeW
GetLocaleInfoA
InitializeCriticalSection
ReadFile
WriteConsoleA
FreeEnvironmentStringsW
HeapValidate
GetDateFormatA
VirtualFree
CompareStringW
GetOEMCP
GetCommandLineW
TlsGetValue
EnterCriticalSection
CreateMailslotA
TlsFree
HeapDestroy
CreateEventW
GetConsoleOutputCP
CommConfigDialogW
QueryPerformanceCounter
IsValidCodePage
LoadLibraryA
GetTimeZoneInformation
GetThreadLocale
CreateProcessW
IsValidLocale
SetUnhandledExceptionFilter
FreeLibrary
SetLastError
SetFilePointer
GetCurrentProcessId
GetUserDefaultLCID
GetCommandLineA
InterlockedExchange
InterlockedDecrement
SetConsoleCtrlHandler
GetLastError
GetStringTypeW
FlushFileBuffers
HeapFree
GetACP
VirtualQuery
GetLocaleInfoW
CreateFileA
UnhandledExceptionFilter
GetModuleHandleA
OpenMutexA
SetStdHandle
GetTimeFormatA
GetModuleFileNameW
GetTickCount
GetConsoleCP
CloseHandle
InterlockedIncrement
GetStartupInfoW
EnumSystemLocalesA
GetCurrentThreadId
GetCPInfo
VirtualAlloc
GetCurrentThread
CreateMutexA
IsDebuggerPresent
TerminateThread
GetSystemTimeAsFileTime
HeapAlloc

gdi32

ScaleWindowExtEx
Arc
GetOutlineTextMetricsA
EnumFontsA
CreateSolidBrush
SetArcDirection
PolylineTo
PlayEnhMetaFile
ChoosePixelFormat
GetCharABCWidthsA
GetMetaFileW
GetROP2
UpdateICMRegKeyA
SetDIBitsToDevice
EnumMetaFile
FillPath
GetCharacterPlacementW
SetBitmapBits

comdlg32

LoadAlterBitmap
ChooseFontW
GetFileTitleW
GetOpenFileNameA

Sections

.text
Size: 390KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a992a8ee9a8aaeb9bcdac28a337df5e

Headers

File Characteristics

Imports

comctl32

user32

kernel32

gdi32

comdlg32

Sections

.text Size: 390KB - Virtual size: 389KB

.rdata Size: 20KB - Virtual size: 49KB

.data Size: 109KB - Virtual size: 109KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 390KB - Virtual size: 389KB

.rdata
Size: 20KB - Virtual size: 49KB

.data
Size: 109KB - Virtual size: 109KB

.rsrc
Size: 9KB - Virtual size: 8KB