5133731b4e9958de2ac0da027a92432c

Sharing

Copy URL Twitter E-mail

General

Target

5133731b4e9958de2ac0da027a92432c
Size

316KB
MD5

5133731b4e9958de2ac0da027a92432c
SHA1

e84ab81779cd704786567637a1a2daad19b29888
SHA256

84751166bcbb9fdb23537420460a610fd371ba27dd393f8a134c5af592344184
SHA512

1d6e6f379993bc737d2654039b805a17c6e5de05e123e14844ccbde361cb279c55b460838a1b779b06eaf202fa1d8de56a11e9ce0b031314924e4ed98c0f2a16
SSDEEP

6144:p/BaZzqkBb7vQBX4aQSMKHvw2OMp1Bk89GP6cGbbYhq6GpMb:VBaf/QBX48MEoNMt46tfY4z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5133731b4e9958de2ac0da027a92432c

Files

5133731b4e9958de2ac0da027a92432c
.exe windows:4 windows x86 arch:x86

16d229fe5b9695592580a18e8fab3a64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
DispatchMessageA
TranslateAcceleratorW
GetMenuItemInfoW
InsertMenuA
GetScrollInfo
DefWindowProcA
IsCharUpperW
SendIMEMessageExW
TranslateMDISysAccel
TabbedTextOutW
CallMsgFilterW
SetUserObjectInformationW
GetCaretBlinkTime
DdeAbandonTransaction
EndDeferWindowPos
SetWindowContextHelpId
GetListBoxInfo
CharPrevExA
CopyAcceleratorTableA
BroadcastSystemMessageW
GetClipboardOwner
RealChildWindowFromPoint
SendIMEMessageExA
PaintDesktop
GetCursor
CallMsgFilterA
DlgDirSelectComboBoxExW
GetKeyboardState
GetUserObjectSecurity
InvertRect
SubtractRect
RemovePropW
SetWindowsHookW
GetWindowModuleFileNameA
DdePostAdvise
ShowWindow
WaitForInputIdle
GetClipboardSequenceNumber
GetCapture
EnumDisplaySettingsExW
CreateWindowExA
PostMessageW
SetRect
EnumDisplayDevicesA
PostMessageA
CallNextHookEx
wsprintfA
FindWindowA
DestroyCaret
GetFocus
PostThreadMessageA
GetWindowContextHelpId
DestroyWindow
LookupIconIdFromDirectoryEx
GetClassLongW
GetClassNameA
MessageBoxA
OpenDesktopW
GetScrollBarInfo
ValidateRgn
CallWindowProcW
DefFrameProcW
DragObject
SendDlgItemMessageW
RegisterClassW
AnimateWindow
RegisterClassExA
GetKeyState
CreateDialogIndirectParamA
RegisterClassA

comdlg32

ReplaceTextA
LoadAlterBitmap

comctl32

ImageList_Create
ImageList_LoadImageW
ImageList_SetBkColor
InitCommonControlsEx
DrawStatusTextA
ImageList_GetIconSize

wininet

GetUrlCacheConfigInfoA
InternetCreateUrlW
ShowClientAuthCerts
FtpOpenFileW

kernel32

LeaveCriticalSection
WaitNamedPipeA
SetEnvironmentVariableA
VirtualProtectEx
FindResourceW
TlsSetValue
CreateMutexA
GetTempFileNameW
IsBadReadPtr
GetCurrentThreadId
TlsAlloc
GetFileAttributesA
GetCPInfo
CloseHandle
GetLocalTime
GetCommandLineA
ExpandEnvironmentStringsW
GetCurrentProcess
WriteConsoleOutputW
GetStartupInfoW
GetCurrentProcessId
CompareStringA
lstrcpynA
LoadLibraryExA
GetProfileStringA
ReadConsoleInputW
ReadFile
SetStdHandle
GetModuleFileNameW
EnumCalendarInfoA
EnterCriticalSection
GetUserDefaultLangID
HeapReAlloc
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
DeleteCriticalSection
GlobalUnfix
GetCompressedFileSizeA
FreeEnvironmentStringsW
GetLogicalDriveStringsW
VirtualAlloc
GetEnvironmentStrings
GetNumberFormatA
LocalHandle
LCMapStringW
OpenMutexA
GetVersion
OutputDebugStringA
LCMapStringA
EnumCalendarInfoExA
SetConsoleTextAttribute
GetStartupInfoA
SetLastError
LoadLibraryA
lstrcatA
MultiByteToWideChar
GetProcAddress
FreeEnvironmentStringsA
GetStringTypeW
WritePrivateProfileSectionA
ExitProcess
SetCurrentDirectoryA
GetModuleHandleA
WriteFile
lstrlen
LocalSize
FoldStringA
ReadConsoleA
TlsFree
WideCharToMultiByte
GetStringTypeA
SetFilePointer
GetSystemTime
HeapFree
GetEnvironmentStringsW
SetConsoleCursorPosition
GetSystemTimeAsFileTime
InitializeCriticalSection
VirtualQuery
InterlockedExchange
HeapCreate
IsValidLocale
SystemTimeToFileTime
TerminateProcess
LocalLock
GetModuleFileNameA
GlobalAlloc
MapViewOfFileEx
VirtualFree
SetHandleCount
GetFileType
WritePrivateProfileStringA
RtlUnwind
HeapDestroy
SetWaitableTimer
GetSystemDefaultLCID
TlsGetValue
GetProfileStringW
InterlockedIncrement
GetTickCount
FlushFileBuffers
EnumSystemCodePagesA
GetCommandLineW
GetDateFormatA
GlobalDeleteAtom
SetEnvironmentVariableW
FindFirstFileExW
HeapAlloc
GetCalendarInfoA
GetFileTime
IsBadWritePtr
SetSystemTime
SetVolumeLabelW
ReadConsoleOutputA
CreateDirectoryExW
LocalUnlock
GetTimeZoneInformation
UnhandledExceptionFilter
QueryPerformanceCounter
GetLastError
LoadResource
FindFirstFileA
OpenFileMappingA
GetCurrentThread
CreateMailslotA
CompareStringW
GetStdHandle
OpenEventA

shell32

SHGetFileInfoW
SHQueryRecycleBinA
ExtractAssociatedIconA
SheChangeDirA
InternalExtractIconListW

gdi32

CreateFontIndirectW
PolyPolyline
GetObjectW
CreateHalftonePalette
GetViewportOrgEx
GetDeviceCaps
GetRandomRgn
StartDocW
SelectObject
DeleteDC
AddFontResourceA
GdiPlayJournal
SelectPalette
CreateDCA

Sections

.text
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16d229fe5b9695592580a18e8fab3a64

Headers

File Characteristics

Imports

user32

comdlg32

comctl32

wininet

kernel32

shell32

gdi32

Sections

.text Size: 136KB - Virtual size: 133KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 100KB - Virtual size: 119KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 136KB - Virtual size: 133KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 100KB - Virtual size: 119KB

.rsrc
Size: 12KB - Virtual size: 10KB