50111a44a54cfdbcf8ae3842a68a11af

Sharing

Copy URL Twitter E-mail

General

Target

50111a44a54cfdbcf8ae3842a68a11af
Size

608KB
MD5

50111a44a54cfdbcf8ae3842a68a11af
SHA1

af6f606ef586a3486984b4979fecc0436427ff5a
SHA256

12acb441144adeb7a13ec952181670b8d28ff280e7d2ac0ddd284a088486c3fd
SHA512

b56b22f363bccb94c67b30e1922b921945ae8cd8df6a48fd2870de96a44c9604e2434ce1aeb214101692ff17dd15f57090cf6f4a5635cca4fd7e4f388a2e3b64
SSDEEP

12288:E8i58eD2HTmNG4nB7rgq6/bUwNizgLCeoFa4SxbXSCVvZ4cm:Fi5l6TmNNBvY/bUwNitfFa1xbXSq4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50111a44a54cfdbcf8ae3842a68a11af

Files

50111a44a54cfdbcf8ae3842a68a11af
.exe windows:4 windows x86 arch:x86

5302469c76fac122b0720bfe984c1cee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DrawIndirect
ImageList_GetIconSize
_TrackMouseEvent
ImageList_Destroy
ImageList_Duplicate
DrawStatusText
InitCommonControlsEx
ImageList_GetBkColor
ImageList_Merge
ImageList_LoadImageW
DrawStatusTextW
CreatePropertySheetPageW
DrawStatusTextA
CreateStatusWindow
ImageList_Add
ImageList_ReplaceIcon

user32

UnregisterClassA
InvalidateRgn
MapVirtualKeyExW
GetWindowDC
DefWindowProcA
EnableScrollBar
SetMenuItemBitmaps
SendIMEMessageExW
ModifyMenuW
ShowWindow
MessageBoxW
MessageBoxIndirectA
GetKeyboardType
CreateWindowExA
GetKBCodePage
CharLowerW
GetKeyboardLayoutNameW
EnumDisplayMonitors
RegisterClassExA
EndPaint
IsCharAlphaNumericA
DestroyMenu
BeginPaint
SetFocus
GetMenuItemID
GetProcessWindowStation
DefWindowProcW
MsgWaitForMultipleObjects
DdeCreateDataHandle
GetUpdateRgn
DestroyWindow
GetWindowRect
GetClipboardSequenceNumber
SendMessageW
GetMessageW
RegisterClassA

kernel32

GetSystemTimeAsFileTime
GetPrivateProfileSectionNamesW
HeapFree
SetLocalTime
EnumSystemCodePagesW
Sleep
GetThreadContext
OpenMutexW
TlsGetValue
SetLastError
GetACP
LoadLibraryA
GetProcessHeap
GetUserDefaultLCID
GetProcAddress
HeapDestroy
OpenSemaphoreA
CompareStringW
GetTickCount
OpenProcess
TerminateProcess
GetStdHandle
SystemTimeToFileTime
GetEnvironmentStringsW
GetLocaleInfoW
OpenMutexA
DeleteFileW
lstrcmpW
FlushFileBuffers
GetConsoleMode
FindFirstFileW
TlsAlloc
GetTimeFormatA
GetFileType
FindFirstFileExA
LCMapStringW
CreateMutexA
EnumCalendarInfoA
GetStringTypeW
TlsSetValue
VirtualProtect
GetStringTypeA
GetSystemDirectoryA
InterlockedIncrement
GetCurrentThread
lstrlenW
EnumSystemLocalesA
LeaveCriticalSection
SetEnvironmentVariableA
SetConsoleActiveScreenBuffer
GetLastError
HeapAlloc
IsValidLocale
GetPrivateProfileStringA
GetModuleHandleA
GetConsoleOutputCP
DeleteCriticalSection
InterlockedDecrement
WideCharToMultiByte
SetConsoleCtrlHandler
VirtualFree
GetCPInfo
GetExitCodeProcess
HeapCreate
IsDebuggerPresent
GetEnvironmentStrings
WriteFile
CompareStringA
GetConsoleCP
TlsFree
MultiByteToWideChar
QueryPerformanceCounter
lstrlenA
LoadLibraryExW
FreeLibrary
HeapSize
UnhandledExceptionFilter
LocalFlags
InitializeCriticalSection
GetOEMCP
CreateFileA
FreeEnvironmentStringsW
FindAtomW
SetFilePointer
GetVersionExA
EnterCriticalSection
GetCurrentProcessId
GetStringTypeExA
GetModuleFileNameA
GetModuleHandleW
SetConsoleTextAttribute
RtlUnwind
GetCurrentThreadId
ReadConsoleOutputW
GlobalLock
VirtualAlloc
MoveFileExA
HeapReAlloc
ReadFile
GetLogicalDriveStringsW
InterlockedExchange
VirtualQuery
MoveFileW
SetUnhandledExceptionFilter
ExitProcess
GetDateFormatA
CreateEventW
FreeEnvironmentStringsA
GetFileTime
OpenWaitableTimerW
lstrcpyA
LCMapStringA
CloseHandle
SetLocaleInfoA
SetHandleCount
SetStdHandle
lstrcpynW
GetPrivateProfileIntW
ReadConsoleA
CreateDirectoryExW
LocalSize
GetCommandLineA
GetStartupInfoA
LoadLibraryW
IsBadWritePtr
WriteConsoleA
WriteConsoleW
GetCurrentProcess
FileTimeToDosDateTime
GetLocaleInfoA
EnumResourceTypesW
LockFile
SetConsoleCursorInfo
GetTimeZoneInformation
GetCompressedFileSizeA
IsValidCodePage

gdi32

RectInRegion
CreateFontIndirectA
PolylineTo

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 312KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5302469c76fac122b0720bfe984c1cee

Headers

File Characteristics

Imports

comctl32

user32

kernel32

gdi32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 312KB - Virtual size: 308KB

.data Size: 128KB - Virtual size: 135KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 312KB - Virtual size: 308KB

.data
Size: 128KB - Virtual size: 135KB

.rsrc
Size: 16KB - Virtual size: 12KB