50ac2d59ddc0b6dda14795ec6f13100e

Sharing

Copy URL Twitter E-mail

General

Target

50ac2d59ddc0b6dda14795ec6f13100e
Size

673KB
MD5

50ac2d59ddc0b6dda14795ec6f13100e
SHA1

6ef9fa0c40c3954a84a4bcb709943470f5f74cd5
SHA256

a3b68c0847564424bba438c2047d85e06705b6a1e7622d68c3ad2dfe4687116a
SHA512

e906b7c27a58bb3b2163ebf04f6b95e6840dfeadba87e7a93024423655f193a97d256d8163a9f9de8a5e01cfa8e9d7b6ad116817f4afc799bb0ea9f91843103f
SSDEEP

12288:k8rNYhgMUPlPnltt4tS2v6mAPWzUxjlE4/0iQKu:lNU7UPRn/tZmMOUhEiQP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
50ac2d59ddc0b6dda14795ec6f13100e

Files

50ac2d59ddc0b6dda14795ec6f13100e
.exe windows:4 windows x86 arch:x86

fb7bab16b725853f353300dcd7404895

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuBarInfo
GetAsyncKeyState
GetShellWindow
RegisterClassExA
GetDlgItemInt
RegisterClassA
SetMessageQueue
EnumPropsExA
CreateCaret
RemoveMenu
CreateDesktopW
SetClassLongW
ModifyMenuA
MessageBeep
GetKeyboardType
SetActiveWindow
IsWindowUnicode
SendNotifyMessageW
PackDDElParam

comctl32

InitCommonControlsEx

gdi32

PlayEnhMetaFileRecord
GetStretchBltMode
GetViewportOrgEx
GetMapMode

kernel32

GetACP
GetLocaleInfoW
ReadFile
CloseHandle
GetTickCount
GetDateFormatA
OpenMutexA
CreateFileA
GetTimeFormatA
GetProcAddress
TlsGetValue
TlsFree
GetModuleFileNameA
SetConsoleCtrlHandler
GetTimeZoneInformation
HeapDestroy
QueryPerformanceCounter
GetThreadSelectorEntry
GetCurrentProcessId
lstrcpy
GetStartupInfoA
IsValidLocale
GetConsoleCP
GetCurrencyFormatA
MultiByteToWideChar
GetConsoleMode
LeaveCriticalSection
GetCurrentThread
CreateDirectoryA
VirtualAlloc
GetCommandLineA
InterlockedDecrement
GetOEMCP
ExitProcess
InitializeCriticalSectionAndSpinCount
GetStringTypeW
GetStringTypeA
TlsAlloc
SetLastError
UnhandledExceptionFilter
SetThreadIdealProcessor
GetEnvironmentStringsW
VirtualQuery
GetModuleHandleA
IsValidCodePage
WriteFile
CompareStringA
FindClose
LCMapStringA
GetCurrentThreadId
FlushFileBuffers
GetCurrentProcess
GetLocaleInfoA
GetStartupInfoW
GetUserDefaultLCID
InterlockedIncrement
GetSystemTimeAsFileTime
CompareStringW
SetLocaleInfoW
WideCharToMultiByte
TlsSetValue
HeapSize
HeapCreate
HeapAlloc
IsDebuggerPresent
LoadLibraryA
GetCPInfo
GetLastError
GetFileType
GetModuleHandleW
GetStdHandle
GetCommandLineW
LCMapStringW
SetEnvironmentVariableA
HeapReAlloc
FreeEnvironmentStringsW
HeapFree
SetHandleCount
Sleep
InterlockedExchange
GetConsoleOutputCP
DeleteCriticalSection
FreeLibrary
WriteConsoleW
CreateMutexA
SetUnhandledExceptionFilter
RtlUnwind
SetStdHandle
SetFilePointer
VirtualFree
GetModuleFileNameW
GetProfileSectionA
WriteConsoleA
EnterCriticalSection
TerminateProcess
EnumSystemLocalesA

shell32

SHGetPathFromIDListA
SHGetDataFromIDListW
ExtractIconW

Sections

.text
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 323KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb7bab16b725853f353300dcd7404895

Headers

File Characteristics

Imports

user32

comctl32

gdi32

kernel32

shell32

Sections

.text Size: 334KB - Virtual size: 334KB

.rdata Size: 10KB - Virtual size: 28KB

.data Size: 323KB - Virtual size: 322KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 334KB - Virtual size: 334KB

.rdata
Size: 10KB - Virtual size: 28KB

.data
Size: 323KB - Virtual size: 322KB

.rsrc
Size: 5KB - Virtual size: 4KB