534b081e42040362306d5356b5848e7e

Sharing

Copy URL Twitter E-mail

General

Target

534b081e42040362306d5356b5848e7e
Size

682KB
MD5

534b081e42040362306d5356b5848e7e
SHA1

67fd7cd12852076437075889a5891ca1d017793d
SHA256

44be7caf1f1fc2b7ef2ed46d3bd639383c2e9db04536f7b86591338e9637b194
SHA512

a2b7637b315aef96bb0755afd9de3a8b312ca69e09baf07b22bde46627e2733b90a901d56400a371bfaeb3da87c6b9b4ef656bb124ef309ec1345abf3510f4b6
SSDEEP

12288:P0Hv42wdq2ojfjRKScu4A9s1tEbpGOrPGLKEnhuBRBvyMwJGglH:MHv42wdq2QfFKSb4ws1tEspKwuBRBvyX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
534b081e42040362306d5356b5848e7e

Files

534b081e42040362306d5356b5848e7e
.exe windows:4 windows x86 arch:x86

bc3ffa9138ed8ec34b81748443f00bca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
InitializeCriticalSection
GetVersion
GetStdHandle
SetLastError
CompareStringW
GetModuleFileNameA
VirtualFree
TlsAlloc
LCMapStringW
SetEndOfFile
DeleteCriticalSection
GetCurrentProcessId
VirtualQuery
GetTickCount
MultiByteToWideChar
QueryPerformanceCounter
IsBadWritePtr
GetTimeZoneInformation
TlsSetValue
GetCurrentProcess
SetStdHandle
GetStringTypeW
GetSystemTime
HeapAlloc
HeapReAlloc
FlushFileBuffers
GetProcAddress
WideCharToMultiByte
CloseHandle
InterlockedDecrement
HeapCreate
TlsGetValue
SetEnvironmentVariableA
SetHandleCount
GetModuleFileNameW
HeapDestroy
HeapFree
WriteFile
LoadLibraryA
FreeEnvironmentStringsA
ExitProcess
GetLocalTime
GetCPInfo
UnhandledExceptionFilter
SetFilePointer
RtlUnwind
GetEnvironmentStrings
CreateMutexA
GetStartupInfoA
CompareStringA
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCommandLineW
FindNextChangeNotification
InterlockedExchange
SetEnvironmentVariableW
InterlockedIncrement
OpenMutexA
GetStartupInfoW
ReadFile
GetCurrentThread
GetCurrentThreadId
GetFileType
EnterCriticalSection
SetVolumeLabelW
WriteConsoleW
TerminateProcess
GetLastError
GetCommandLineA
GetStringTypeA
TlsFree
GetModuleHandleA
VirtualAlloc
LCMapStringA

comctl32

ImageList_DragShowNolock
CreateMappedBitmap
CreateStatusWindowA
ImageList_DrawIndirect
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_SetDragCursorImage
ImageList_Replace
DrawStatusTextA
ImageList_Remove
ImageList_GetFlags
ImageList_Merge
InitCommonControlsEx
ImageList_LoadImageA
ImageList_GetBkColor
CreateUpDownControl
ImageList_SetFilter

user32

DrawIconEx
GetTabbedTextExtentA
DefWindowProcW
InsertMenuItemW
ChildWindowFromPointEx
ShowCaret
DlgDirListW
GetKeyState
DdeCmpStringHandles
IsCharAlphaA
GetSysColor
MsgWaitForMultipleObjects
ScrollWindowEx
SystemParametersInfoW
GetAsyncKeyState
CreateDialogIndirectParamW
MonitorFromPoint
GetWindow
GetMenuItemCount
OpenIcon
DefMDIChildProcA
CreateDesktopA
GetMenuInfo
ShowWindow
GetTopWindow
BringWindowToTop
EnumDisplaySettingsW
DrawMenuBar
CreateDialogIndirectParamA
SetWindowPlacement
CascadeWindows
UnhookWindowsHook
MessageBoxExW
InternalGetWindowText
GetScrollPos
GetGuiResources
GetShellWindow
DeleteMenu
ScreenToClient
SetWindowWord
IsDialogMessage
WaitForInputIdle
RegisterClassExA
GetMessageExtraInfo
TabbedTextOutW
GetWindowModuleFileNameW
RegisterClipboardFormatA
EnableWindow
EndDeferWindowPos
SetWindowLongW
GetAncestor
GetMessageTime
CharUpperW
GetDCEx
DlgDirListComboBoxA
GetPropW
CreateMenu
DestroyWindow
CopyIcon
GetWindowWord
CharPrevW
SendInput
TranslateAcceleratorW
DestroyMenu
SetForegroundWindow
SetPropW
GetPropA
SetClipboardData
IsClipboardFormatAvailable
SetRect
IsWindowVisible
CreateWindowExA
DdeConnect
TrackPopupMenu
EnumDesktopsA
CallWindowProcA
ShowOwnedPopups
GetClientRect
GetUserObjectInformationW
GetCursorInfo
GetWindowPlacement
LoadAcceleratorsA
MessageBoxW
GetWindowRgn
DdeCreateDataHandle
EnumDisplaySettingsExA
WinHelpW
PostThreadMessageA
DrawFrame
EnumDisplayMonitors
CreateAcceleratorTableW
RegisterClassA
MsgWaitForMultipleObjectsEx
ToUnicode
SetWindowRgn
MessageBoxIndirectW
RegisterDeviceNotificationA
AdjustWindowRect
GetKeyboardLayoutNameA
GetKeyboardLayout
SetUserObjectSecurity
GetMessageW
LockWindowUpdate
CreateIconFromResource

Sections

.text
Size: 250KB - Virtual size: 249KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc3ffa9138ed8ec34b81748443f00bca

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 250KB - Virtual size: 249KB

.rdata Size: 252KB - Virtual size: 252KB

.data Size: 121KB - Virtual size: 135KB

.rsrc Size: 58KB - Virtual size: 57KB

.text
Size: 250KB - Virtual size: 249KB

.rdata
Size: 252KB - Virtual size: 252KB

.data
Size: 121KB - Virtual size: 135KB

.rsrc
Size: 58KB - Virtual size: 57KB