558ee827218bdaaeb17b700b08ffb100

Sharing

Copy URL Twitter E-mail

General

Target

558ee827218bdaaeb17b700b08ffb100
Size

518KB
MD5

558ee827218bdaaeb17b700b08ffb100
SHA1

dc51ab8f8c8fb3dd3d0ce61329e7afb8f91420d4
SHA256

c5399fa968543bc7861eb7cbb21022c4e47013016184d383c4d4d07bb92c4fde
SHA512

2dfff50b87a88545b183b3e3e2c3db56c2d3e00960820ebbd7063366740c7d7ebe304331afd25cee85479badccd654f02e6b5bc2017c931e1b3fc1e5a7bd9f76
SSDEEP

12288:Ph67ii1LcOnb2btAUTT9hPs9SGuJIiWo0T+5B5nr7:o7iQWRA2hPsAGuJ4LMTv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
558ee827218bdaaeb17b700b08ffb100

Files

558ee827218bdaaeb17b700b08ffb100
.exe windows:4 windows x86 arch:x86

1b1c05ad3a69b04ee8c845ccd57edc8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetMenuState
SetDoubleClickTime
WinHelpW
GetClassLongW
OpenInputDesktop
GetSysColorBrush
CreateCaret
MapDialogRect
GetSubMenu
PostQuitMessage
CreateIconFromResourceEx
SetCaretPos
RegisterClassA
InSendMessage
wvsprintfA
DdeNameService
GetSystemMenu
RegisterClassExA
EnumPropsA
SetUserObjectInformationA
DdeSetQualityOfService
SystemParametersInfoA
SubtractRect
TrackMouseEvent
InsertMenuW

kernel32

GetProcessHeap
ExitProcess
CompareStringA
GetEnvironmentStringsA
GetCPInfo
GetConsoleOutputCP
GetTickCount
LCMapStringW
HeapAlloc
EnterCriticalSection
GetConsoleTitleA
TlsSetValue
ReadFile
RemoveDirectoryA
SetLastError
GetLastError
LoadLibraryA
SetConsoleCtrlHandler
VirtualQuery
HeapReAlloc
GetStdHandle
DeleteCriticalSection
InterlockedExchange
HeapSize
HeapFree
GetCurrentThread
GetStartupInfoA
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GetCurrentThreadId
HeapCreate
VirtualAlloc
EnumSystemLocalesA
GetModuleHandleW
SetEnvironmentVariableA
RtlUnwind
GetTimeZoneInformation
FlushFileBuffers
FreeEnvironmentStringsW
LeaveCriticalSection
FreeLibrary
HeapDestroy
WriteConsoleA
GetStringTypeW
TerminateProcess
CreateFileA
GetCommandLineW
InterlockedDecrement
WriteConsoleW
SetHandleCount
WriteFile
GetOEMCP
GetConsoleMode
GetProcAddress
GetDateFormatA
CloseHandle
GetUserDefaultLCID
GetModuleFileNameA
GetCommandLineA
IsValidLocale
InterlockedIncrement
GetLocaleInfoA
GetStartupInfoW
GetTempPathA
OpenMutexA
GetSystemTimeAsFileTime
GetACP
GetModuleFileNameW
CompareStringW
GetConsoleCP
LCMapStringA
GetModuleHandleA
GetTimeFormatA
SetUnhandledExceptionFilter
MultiByteToWideChar
VirtualFree
SetStdHandle
TlsGetValue
GetCurrentProcess
TlsAlloc
GetStringTypeA
GetFileType
WideCharToMultiByte
QueryPerformanceCounter
GetEnvironmentStringsW
SetFilePointer
IsValidCodePage
Sleep
IsDebuggerPresent
UnhandledExceptionFilter
GetLocaleInfoW
CreateMutexA
TlsFree

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b1c05ad3a69b04ee8c845ccd57edc8f

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 9KB - Virtual size: 26KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 9KB - Virtual size: 26KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 14KB - Virtual size: 14KB