4d2b5896b8fe7e6c2ed68db114ea2a16

Sharing

Copy URL Twitter E-mail

General

Target

4d2b5896b8fe7e6c2ed68db114ea2a16
Size

430KB
MD5

4d2b5896b8fe7e6c2ed68db114ea2a16
SHA1

1009f21620d763879e45ba0e3becf751208277fb
SHA256

6639ddb9063f5ec6644be511fdddbee4bfff20b768493aec10226ca6e3f6f1be
SHA512

b0f4141a84b7456d19c1aab7c2e57a21821d5f11e2574698f8e6b54b687afa519c0be61493be1fc4e1f8ec7902b9be84bacd1a15e4f96253cde46f7ab1eac02f
SSDEEP

6144:X2klR8ScmwN26vE6T1XVIGBPsxX+FJzPTRVYWgRztc9:X2KR8SkjvVRXVtGMJzPTR+tG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d2b5896b8fe7e6c2ed68db114ea2a16

Files

4d2b5896b8fe7e6c2ed68db114ea2a16
.exe windows:4 windows x86 arch:x86

5cdccebb8213aee46d6451ff53342fe7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetRasterizerCaps
DeleteDC
GetObjectW
CreateDCW
EnumObjects

wininet

InternetWriteFileExA
InternetSecurityProtocolToStringA
InternetAutodialHangup
InternetGetCertByURLA
FtpOpenFileW
InternetOpenA
UnlockUrlCacheEntryFile
InternetReadFileExW
InternetSetOptionA

user32

DefWindowProcA
SendMessageA
ShowWindow
MessageBoxW
GetMenuInfo
SetClassLongW
RegisterHotKey
GetClipboardOwner
DispatchMessageA
CallWindowProcA
LoadCursorW
RegisterClipboardFormatA
RegisterClassA
DestroyWindow
RegisterClassExA
CharPrevExA
ExitWindowsEx
CreateWindowExW
GetDC
GetClassNameW
CreateWindowStationA
EnumChildWindows
DrawFrameControl
TrackPopupMenu
SetProcessDefaultLayout
ChangeMenuA
GetClipboardSequenceNumber
TabbedTextOutA

comctl32

ImageList_DragEnter
ImageList_GetImageInfo
CreateStatusWindowW
ImageList_SetOverlayImage
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Write
ImageList_SetBkColor
ImageList_DragMove
ImageList_DrawIndirect
DrawInsert
ImageList_Replace
ImageList_Duplicate
DrawStatusTextA
InitCommonControlsEx
ImageList_GetBkColor
ImageList_AddIcon

kernel32

GetSystemInfo
GetStartupInfoA
FreeEnvironmentStringsA
HeapCreate
GetCurrentThread
ReadFile
GetModuleHandleA
VirtualFree
HeapReAlloc
GetStringTypeW
GetTimeZoneInformation
CompareStringW
GetEnvironmentStrings
SetHandleCount
TlsSetValue
GetLocaleInfoW
GetCommandLineA
HeapDestroy
CompareStringA
TlsAlloc
GetTickCount
GetModuleHandleW
DeleteCriticalSection
LeaveCriticalSection
GetLastError
CloseHandle
GetSystemTimeAsFileTime
VirtualQuery
LCMapStringW
OpenMutexA
InitializeCriticalSection
QueryPerformanceCounter
VirtualProtect
HeapSize
GetStringTypeA
IsBadWritePtr
GetCPInfo
CreateToolhelp32Snapshot
WriteFile
GetACP
GetModuleFileNameA
HeapAlloc
ExitProcess
FlushFileBuffers
GetFileType
GetTimeFormatA
HeapFree
GetEnvironmentStringsW
IsValidCodePage
GetOEMCP
GetStdHandle
GetVersionExA
GetUserDefaultLCID
GetCurrentProcess
TlsGetValue
GetConsoleScreenBufferInfo
EnterCriticalSection
TlsFree
EnumSystemLocalesA
InterlockedExchange
GetLocaleInfoA
LCMapStringA
GetCurrentThreadId
FreeEnvironmentStringsW
GetCurrentProcessId
TerminateProcess
MultiByteToWideChar
GetPrivateProfileStructW
TransactNamedPipe
VirtualAlloc
SetEnvironmentVariableA
GetDateFormatA
IsValidLocale
RtlUnwind
UnhandledExceptionFilter
CreateMutexA
WideCharToMultiByte
GetProcAddress
SetFilePointer
LoadLibraryA
SetLastError
SetStdHandle

comdlg32

ReplaceTextW
GetOpenFileNameA

shell32

DragAcceptFiles

Sections

.text
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cdccebb8213aee46d6451ff53342fe7

Headers

File Characteristics

Imports

gdi32

wininet

user32

comctl32

kernel32

comdlg32

shell32

Sections

.text Size: 194KB - Virtual size: 193KB

.rdata Size: 25KB - Virtual size: 53KB

.data Size: 86KB - Virtual size: 85KB

.rsrc Size: 124KB - Virtual size: 124KB

.text
Size: 194KB - Virtual size: 193KB

.rdata
Size: 25KB - Virtual size: 53KB

.data
Size: 86KB - Virtual size: 85KB

.rsrc
Size: 124KB - Virtual size: 124KB