5990921f1c587ef7c7a91c01a6c312e4

Sharing

Copy URL Twitter E-mail

General

Target

5990921f1c587ef7c7a91c01a6c312e4
Size

192KB
MD5

5990921f1c587ef7c7a91c01a6c312e4
SHA1

4cb1ac7dbe37e7c78ca9008ed7639b5b3742afab
SHA256

485043bc5a9b362d6d62d4f409e19ce1202fcbcbf04d64840b67dd0cc564f0fb
SHA512

cc3b49bc3416faf64904526cd8f787477da86af90cf478cea2d347805c1755bf428bab126600cbb494d9a5faa5243ba64215f63e19a8290ffcc4906f2a2ea3b9
SSDEEP

3072:kLXC6ArJWPwS+po4jqotOqeZlot+4SVS26xfaOHdRquuw61qKMdQCzjnRDy03tKo:kDkrJWYSL4jJIlotvSU26xf9dqDko3bU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5990921f1c587ef7c7a91c01a6c312e4

Files

5990921f1c587ef7c7a91c01a6c312e4
.exe windows:4 windows x86 arch:x86

07942ebd6d53518bd38476e6f5e5f86b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetTickCount
GetLongPathNameW
UnmapViewOfFile
ReadFile
GetProcessHandleCount
LocalAlloc
Sleep
MapViewOfFile
DisableThreadLibraryCalls
EnumResourceTypesA
GlobalAlloc
GlobalSize
SetFilePointer
GetFileAttributesA
WriteFile
CreateFileW
WideCharToMultiByte
CreateFileMappingA
LocalFree
GlobalFree
GetFileSize
CloseHandle

gdi32

CreateFontA
CreateDIBitmap
SelectPalette
StretchDIBits
GetDIBits
GetDeviceCaps
BitBlt
RealizePalette
SelectObject
DeleteDC
GetStockObject
CreateDIBSection
CreateCompatibleDC
SetStretchBltMode
CreateSolidBrush
GetObjectA
CreateCompatibleBitmap
ExtEscape
DeleteObject
SetBkMode

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

shlwapi

PathFileExistsW
PathCombineW

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

ole32

CoInitialize
CoTaskMemRealloc
CoUninitialize
CreateStreamOnHGlobal
CoSetProxyBlanket
CoCreateInstance
CLSIDFromProgID
CoTaskMemAlloc
OleUninitialize
StgCreateDocfile
CoGetClassObject
BindMoniker
CreateBindCtx
StgIsStorageFile
OleInitialize
OleLockRunning
GetRunningObjectTable
StgOpenStorage
CreateItemMoniker
CoTaskMemFree
StringFromGUID2
CoInitializeSecurity
CLSIDFromString

user32

ReleaseCapture
GetClassInfoExA
GetWindow
SendMessageA
FindWindowA
wvsprintfA
GetFocus
GetWindowTextA
EndPaint
GetWindowLongA
PostThreadMessageA
SetCapture
DestroyAcceleratorTable
IsWindow
SetWindowLongA
ShowWindow
InvalidateRect
BeginPaint
SetTimer
EnumDisplayDevicesA
PostMessageA
GetWindowTextLengthA
SendNotifyMessageA
DispatchMessageA
DrawTextA
GetClientRect
wsprintfA
CreateDialogParamA
CallWindowProcA
RegisterWindowMessageA
GetDesktopWindow
IsChild
SetWindowTextA
GetParent
SetRect
CopyRect
GetQueueStatus
SetFocus
DestroyWindow
GetActiveWindow
RegisterClassExA
SetParent
MsgWaitForMultipleObjects
GetClassNameA
ReleaseDC
DefWindowProcA
PeekMessageA
CreateWindowExA
CreateAcceleratorTableA
MoveWindow
RedrawWindow
LoadCursorA
GetDlgItem
FillRect
GetDC
GetSysColor
KillTimer
SendMessageTimeoutA
GetWindowRect
EqualRect
InvalidateRgn
UnregisterClassA
CharNextA
SetWindowPos

advapi32

RegDeleteValueA
RegEnumKeyExA
CryptDestroyKey
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
CryptDestroyHash
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptImportKey
CryptEncrypt
RegCloseKey
CryptAcquireContextA
RegQueryValueExA
RegEnumValueA
CryptHashData
RegCreateKeyExA
RegDeleteKeyA

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07942ebd6d53518bd38476e6f5e5f86b

Headers

File Characteristics

Imports

kernel32

gdi32

shell32

shlwapi

setupapi

wininet

ole32

user32

advapi32

Sections

.text Size: 109KB - Virtual size: 109KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 76KB - Virtual size: 75KB

.tls Size: 1024B - Virtual size: 64KB

.text
Size: 109KB - Virtual size: 109KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 76KB - Virtual size: 75KB

.tls
Size: 1024B - Virtual size: 64KB