5637bd84b67bc3b764a904713d1d6650

Sharing

Copy URL Twitter E-mail

General

Target

5637bd84b67bc3b764a904713d1d6650
Size

337KB
MD5

5637bd84b67bc3b764a904713d1d6650
SHA1

37df5f80db396729613a9eb9014df78a8d4c5c19
SHA256

53132e088844d7352ea474daafb873ca761579a0c5de67f4554856796d4cf903
SHA512

713f6aa576f046a4e1d6940bd11581d78f73360797cf15d2e7ea5e31bbc6563b1775481a5f9de47438c415b73fe2b49f1840cff167576bd2d90d8d0905179608
SSDEEP

6144:5lVEvszJ5Z0PrFResmyS4mEvV3jfsNl3AM0FKQvOZTb:z+v4J5CPri4Ddf0lwMmu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5637bd84b67bc3b764a904713d1d6650

Files

5637bd84b67bc3b764a904713d1d6650
.exe windows:4 windows x86 arch:x86

59f293072412ad5d83ed67ee1ac29c90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
GetStartupInfoA
OpenMutexA
VirtualQuery
LCMapStringA
GetVersionExA
SetFilePointer
GetLastError
ExitProcess
EnumCalendarInfoA
GetStringTypeW
GetTickCount
VirtualAlloc
GetCurrentProcessId
SetHandleCount
WriteFile
GetSystemInfo
LoadLibraryA
GetStdHandle
InterlockedExchange
UnhandledExceptionFilter
GetCurrentThreadId
TlsSetValue
GetModuleHandleA
SetStdHandle
GetOEMCP
GetDateFormatA
CompareStringW
TerminateProcess
ReadFile
GetPrivateProfileSectionNamesA
TlsGetValue
TlsAlloc
FlushFileBuffers
WideCharToMultiByte
GetEnvironmentStringsW
GetTimeZoneInformation
VirtualProtect
LeaveCriticalSection
FindResourceW
GetProcAddress
HeapDestroy
IsValidLocale
SetEnvironmentVariableA
CreateMutexA
GetACP
QueryPerformanceCounter
GetCurrentThread
GetEnvironmentStrings
InitializeCriticalSection
EnumSystemLocalesA
GetModuleFileNameA
IsValidCodePage
RtlFillMemory
CloseHandle
HeapFree
HeapReAlloc
GetLocaleInfoW
ConvertDefaultLocale
TlsFree
HeapAlloc
DeleteCriticalSection
GetUserDefaultLCID
MultiByteToWideChar
SetLastError
RtlUnwind
VirtualFree
FreeEnvironmentStringsA
CompareStringA
GetSystemTimeAsFileTime
GetCurrentProcess
GetCPInfo
GetNumberFormatW
HeapSize
GetStringTypeA
LCMapStringW
EnterCriticalSection
SetConsoleCursorInfo
FreeEnvironmentStringsW
HeapCreate
IsBadWritePtr
GetCommandLineA
GetNumberFormatA
GetTimeFormatA
GetLocaleInfoA

comctl32

ImageList_AddMasked
MakeDragList
ImageList_Merge
ImageList_DrawIndirect
ImageList_SetFlags
DrawStatusText
ImageList_Copy
DrawInsert
DrawStatusTextA
CreatePropertySheetPageA
CreateStatusWindow
DrawStatusTextW
InitCommonControlsEx

shell32

SHFileOperationW
SHFormatDrive
SHGetFileInfoA
SHUpdateRecycleBinIcon

user32

DestroyWindow
GetActiveWindow
GetKeyboardState
RegisterClassExA
FindWindowExW
RegisterClassA
GetCaretPos
GetDoubleClickTime
SendDlgItemMessageW
SetTimer
SwitchToThisWindow
CharUpperA
FillRect
SetDlgItemTextW
CreateWindowExW
AppendMenuA
GetMenuStringA
MessageBoxW
FindWindowExA
DefWindowProcW
SwitchDesktop
ShowWindow

comdlg32

ChooseColorW
ChooseColorA

gdi32

GetCharWidth32A
DeleteDC
DeleteObject
PlayMetaFile
CreateDCA
GetBitmapBits
GetWinMetaFileBits
GetTextCharsetInfo
GetNearestPaletteIndex
AnimatePalette
PolylineTo
GetDeviceCaps
AngleArc
Chord
ExtCreateRegion
GetLayout
SetColorSpace
SetMapMode
EnableEUDC
GetGlyphOutline
GetMetaFileA
GetObjectW
FixBrushOrgEx
CreateEnhMetaFileW
GetTextExtentExPointA
CreateDCW
SelectObject
GetTextColor

Sections

.text
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59f293072412ad5d83ed67ee1ac29c90

Headers

File Characteristics

Imports

kernel32

comctl32

shell32

user32

comdlg32

gdi32

Sections

.text Size: 226KB - Virtual size: 226KB

.rdata Size: 12KB - Virtual size: 22KB

.data Size: 88KB - Virtual size: 87KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 226KB - Virtual size: 226KB

.rdata
Size: 12KB - Virtual size: 22KB

.data
Size: 88KB - Virtual size: 87KB

.rsrc
Size: 9KB - Virtual size: 9KB