5146766686333eef3e14dedd146f4644

Sharing

Copy URL Twitter E-mail

General

Target

5146766686333eef3e14dedd146f4644
Size

524KB
MD5

5146766686333eef3e14dedd146f4644
SHA1

b15daa582ef77b3a162c04d56b8277a84805cb7e
SHA256

ac3bb50aeade07eed91ab5075e43acc4b9e4315439be341b76ac4de82b17994a
SHA512

02e8833febfaeefecb8998925e6b2288e5b845610b18d30be3cc482b60a7d07c1bbb602603d93332c81d4a15a48598221e167b73daaeb7ce6e596580080dac83
SSDEEP

12288:IQFMcWjglh6oKY8fUuW6losG4z9mual/Kp8Hl:IQFMnkn6muHW6lG4zMdV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5146766686333eef3e14dedd146f4644

Files

5146766686333eef3e14dedd146f4644
.exe windows:4 windows x86 arch:x86

52bcd3c30286510f41f3dd0a9589d33e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCheckConnectionA
FindNextUrlCacheEntryW

kernel32

WideCharToMultiByte
SetLastError
LCMapStringA
VirtualAlloc
ReadFile
IsValidLocale
SetFilePointer
GetFileType
GetCommandLineA
GetLastError
LoadLibraryA
GetConsoleOutputCP
EnumSystemLocalesA
LCMapStringW
GetStringTypeW
FreeEnvironmentStringsW
InterlockedDecrement
Sleep
InterlockedIncrement
GetUserDefaultLCID
GetDateFormatA
ExitProcess
GetStdHandle
GetStartupInfoA
HeapDestroy
CreateFileA
VirtualQuery
GetSystemTimeAsFileTime
GetCurrentThread
GetCPInfo
GetProfileSectionA
GetProcAddress
GetConsoleCP
HeapCreate
FreeLibrary
HeapSize
LoadLibraryExA
SetStdHandle
HeapAlloc
QueryPerformanceCounter
GetTempFileNameW
GetCurrentProcess
WriteConsoleA
GetCurrentThreadId
InitializeCriticalSectionAndSpinCount
TlsSetValue
WriteFile
EnterCriticalSection
GetModuleFileNameA
HeapReAlloc
GetCurrentProcessId
RtlUnwind
GetLocaleInfoW
WriteConsoleW
GetConsoleCursorInfo
CompareStringA
TlsGetValue
GetSystemDirectoryW
GetOEMCP
MultiByteToWideChar
GetTimeFormatA
WritePrivateProfileSectionW
UnhandledExceptionFilter
GetConsoleMode
GetTickCount
OpenMutexA
SetUnhandledExceptionFilter
TerminateProcess
WaitForMultipleObjects
GetModuleHandleW
GetEnvironmentStringsW
WriteConsoleOutputAttribute
SetHandleCount
ExpandEnvironmentStringsA
SetEnvironmentVariableA
InterlockedExchange
TlsFree
GetTimeZoneInformation
GetEnvironmentStrings
GetSystemDefaultLCID
TlsAlloc
GetACP
LeaveCriticalSection
CompareStringW
IsDebuggerPresent
CloseHandle
IsValidCodePage
DeleteCriticalSection
WriteConsoleOutputCharacterW
CreateMutexA
VirtualFree
GetModuleHandleA
GetLocaleInfoA
FlushFileBuffers
SetConsoleCtrlHandler
GetStringTypeA
FreeEnvironmentStringsA
HeapFree

comctl32

InitCommonControlsEx

comdlg32

PageSetupDlgW
ChooseFontA
GetOpenFileNameW
GetFileTitleA

gdi32

DeleteEnhMetaFile
BitBlt
EnumFontsW
SetWinMetaFileBits
ExtFloodFill
PolyTextOutA
ModifyWorldTransform
EnumICMProfilesA
AngleArc

user32

MapVirtualKeyExA
GetScrollBarInfo
RegisterClassExA
DdeCmpStringHandles
RegisterClassA
GetUpdateRect
CreateIconIndirect
GetMenuItemInfoW
LoadImageW
WaitMessage
KillTimer
PostMessageW
SetWindowLongA
GetCursor
CreateAcceleratorTableW
IsDialogMessageA

Sections

.text
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52bcd3c30286510f41f3dd0a9589d33e

Headers

File Characteristics

Imports

wininet

kernel32

comctl32

comdlg32

gdi32

user32

Sections

.text Size: 193KB - Virtual size: 192KB

.rdata Size: 10KB - Virtual size: 15KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 193KB - Virtual size: 192KB

.rdata
Size: 10KB - Virtual size: 15KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 5KB - Virtual size: 4KB