51dabd09f75b63f08e6be89b95ccd222

Sharing

Copy URL Twitter E-mail

General

Target

51dabd09f75b63f08e6be89b95ccd222
Size

683KB
MD5

51dabd09f75b63f08e6be89b95ccd222
SHA1

886c07af73558e9748fdd115a321e394d69f009a
SHA256

d48fca276ea5b65199b8053c52ebf36400feb23df423df1a8c65e90a26671646
SHA512

15c424ab744a18a94d3b73e54a6a633d9a8e2922d0a500902c3bf1aa5713d5f0f2141e911879432387280079c828973303cea0cb797ac48812defea43efac0cd
SSDEEP

12288:Z1+N6HdUpyfXtAjGE5/hPhI+wwqRjBihaXhni6gxX:Xs6HdUyrEdo1Voai6I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51dabd09f75b63f08e6be89b95ccd222

Files

51dabd09f75b63f08e6be89b95ccd222
.exe windows:5 windows x86 arch:x86

4129d9e82fe4b48f734d03a18b4b43ee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
LoadLibraryA
EnterCriticalSection
LoadLibraryA
HeapDestroy
UnhandledExceptionFilter
EnterCriticalSection
CreateEventW
ReadFile
VirtualProtect
GetLastError
CloseHandle
SetLastError
HeapAlloc
GetCurrentThreadId
LocalFree
LoadLibraryA
LocalAlloc
LoadLibraryA
LoadLibraryA
SetLastError
GetCurrentThreadId
InterlockedDecrement
LocalAlloc
HeapFree
GetModuleFileNameW
FreeLibrary
DisableThreadLibraryCalls
GetVersionExA
InterlockedIncrement
LocalAlloc
GetCurrentProcessId
CreateFileW
InterlockedCompareExchange
GetModuleHandleW
GetCurrentProcess
LeaveCriticalSection
GetCurrentProcess
LocalFree
GetModuleFileNameW
CloseHandle
GetCurrentThreadId
VirtualAlloc
LoadLibraryW
DisableThreadLibraryCalls
GetModuleFileNameW
GetTickCount
MultiByteToWideChar
GetModuleHandleA
EnterCriticalSection
GetModuleFileNameA
InterlockedExchange
HeapFree
DisableThreadLibraryCalls
GetCurrentProcess
GetModuleFileNameA
HeapFree
CreateEventW
HeapDestroy
FreeLibrary
CreateFileW
LocalAlloc
LoadLibraryW
GetModuleFileNameW
GetCurrentProcess
GetCurrentThreadId
InterlockedExchange
CreateThread
GetCurrentThreadId
GetCurrentProcessId
Sleep
InterlockedExchange
EnterCriticalSection
InterlockedExchange
GetModuleFileNameA
lstrlenA
InterlockedDecrement
LoadLibraryA
CreateThread
VirtualProtect
ReadFile
GetModuleFileNameW

user32

InvalidateRect
GetSysColor
ReleaseDC
SetDlgItemTextW
GetWindowLongW
SetWindowPos
SendDlgItemMessageW
InvalidateRect
wsprintfA
EnableWindow
SetTimer
KillTimer
SetTimer
BeginPaint
DefWindowProcW
SetFocus
LoadCursorW
GetWindowLongW
TranslateMessage
IsWindow
GetFocus
CharNextW
ShowWindow
GetParent
InvalidateRect
SetForegroundWindow
KillTimer
SetFocus
GetDlgItem
CreateWindowExW
EnableWindow
InvalidateRect
GetParent
KillTimer
LoadStringW
SetWindowPos
IsWindow
DialogBoxParamW
PeekMessageW
SetWindowPos
IsDlgButtonChecked
SetTimer
ShowWindow
CreateWindowExW
InvalidateRect
GetWindowLongW
GetFocus
EnableWindow
GetWindowRect
wsprintfA
PostQuitMessage
DialogBoxParamW
GetFocus
GetWindowLongW
PostMessageW
SetCursor
GetWindowLongW
GetDC
GetFocus
SetWindowTextW
LoadCursorW
GetParent
GetWindowLongW
BeginPaint
GetDesktopWindow
InvalidateRect
KillTimer
IsDlgButtonChecked
LoadCursorW
DefWindowProcW
SetForegroundWindow
SetTimer
GetDC
LoadIconW
IsWindow
SetWindowLongW
ShowWindow
EndPaint
LoadCursorW
EnableWindow
GetDesktopWindow
IsWindow
GetDlgItem
SetWindowTextW
KillTimer
SetForegroundWindow
MessageBoxW
SetForegroundWindow

Sections

.text
Size: 594KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4129d9e82fe4b48f734d03a18b4b43ee

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 594KB - Virtual size: 968KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 8KB

.pdata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 594KB - Virtual size: 968KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 8KB

.pdata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 82KB - Virtual size: 84KB