2159739a68fa270eb94caddbb7f5d132b1175716efab3b3f25f86dc57c4c0db4[.]exe

Resubmissions

09-01-2024 17:13

240109-vrsheaeffm 10

09-01-2024 17:12

240109-vq8g8sgaa4 3

09-01-2024 17:07

240109-vm262sfhe7 10

09-01-2024 17:01

240109-vjvb2aeecl 10

Sharing

Copy URL

Twitter E-mail

General

Target

2159739a68fa270eb94caddbb7f5d132b1175716efab3b3f25f86dc57c4c0db4.exe
Size

400KB
MD5

9476b5f481090ea650cfc65e017dc41c
SHA1

0fa937125a55c299a48d3e1485fee16646555087
SHA256

2159739a68fa270eb94caddbb7f5d132b1175716efab3b3f25f86dc57c4c0db4
SHA512

f97c6bf23101bf357d8e4a4ae47421ecfe8f12c821c036e09a4768a8f0dd9e12ba128cf5f10a0f5d4767ac6a3b7f3497f95ffc07d18ac2b9b4a14c9a2c9c9b6d
SSDEEP

12288:/4sAED7kDhOztcOTx00ll7Qbnck6i+JQnlopoMaJU:iEXkDQztfe0szc3nCloy7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2159739a68fa270eb94caddbb7f5d132b1175716efab3b3f25f86dc57c4c0db4.exe

Files

2159739a68fa270eb94caddbb7f5d132b1175716efab3b3f25f86dc57c4c0db4.exe
.exe windows:4 windows x86 arch:x86

4cade53bc9e8768f7d4f74a525cab877

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegRestoreKeyW
RegEnumValueA
RegEnumValueW
CloseServiceHandle
StartServiceA
RegQueryValueExW
StartServiceCtrlDispatcherW
RegCreateKeyExA
RegQueryValueExA
QueryServiceStatus
RegOpenKeyExA
DecryptFileW
RegOpenKeyExW
ChangeServiceConfigW
RegFlushKey
DeleteService
RegQueryInfoKeyA
DecryptFileA
GetOldestEventLogRecord
EncryptFileA
LsaRetrievePrivateData

kernel32

TerminateProcess
GetExitCodeThread
GetLastError
SetFilePointer

msvcrt

_mbsnbcpy
_mbsnbcoll

user32

ClientToScreen
TrackPopupMenu
DispatchMessageA
GetWindowTextA
LoadCursorW
EnableMenuItem
InvalidateRect
GetMenu
EndDialog
GetNextDlgGroupItem
ScreenToClient
SystemParametersInfoA
GetMessagePos
DialogBoxParamA
TranslateAcceleratorA
DeleteMenu
FindWindowA
DrawIcon
GetWindowRect
CharLowerW
GetMessageTime
SetForegroundWindow
DefDlgProcA
DrawTextA
LoadMenuW
UnregisterClassA
SetDlgItemInt
CharLowerBuffA
LoadMenuA
RegisterClassA
ReleaseDC
LoadStringW
MessageBoxW
TrackPopupMenuEx
SetScrollRange
LoadImageA
SetCursor
GetClassNameA
SetDlgItemTextW
SetTimer
GetDCEx
DialogBoxIndirectParamW
SetClassLongA
GetMenuState
wvsprintfA
CreateIconIndirect
MapDialogRect
InvalidateRgn
FrameRect
GetKeyState
GetWindowTextLengthA
GetMenuItemInfoW
GetCursorPos
GetFocus
IsClipboardFormatAvailable
GetDialogBaseUnits
GetClassInfoA
GetWindowThreadProcessId
DdeImpersonateClient
SetWindowPlacement
CountClipboardFormats
GetClipboardViewer
GetThreadDesktop
AttachThreadInput

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 855KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

4cade53bc9e8768f7d4f74a525cab877

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

user32

Sections

.text Size: 128KB - Virtual size: 125KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 855KB

.rsrc Size: 252KB - Virtual size: 249KB

.text
Size: 128KB - Virtual size: 125KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 855KB

.rsrc
Size: 252KB - Virtual size: 249KB