57c9208f2ff922e1566cdccb3ac01ccd

Sharing

Copy URL Twitter E-mail

General

Target

57c9208f2ff922e1566cdccb3ac01ccd
Size

426KB
MD5

57c9208f2ff922e1566cdccb3ac01ccd
SHA1

af388037367fcc6dea09d308b8f0ac98c0f8f473
SHA256

b6a5300024506f3945743e29eab58ff86d1f6554074ce4966ebcc3d71e99e920
SHA512

9b5b9913434c6d9ec41433d6e332244b42dfd6a25ad78f583c9672ba8a78704b5af51d115856b561d225eb3842accf55df5f745a59d6096e73aa80d05feeae30
SSDEEP

12288:+/4sJIozc3w++6kEuFeta0kgGZ1L8pkQSvVA7x0WS:+/4sJ7z6PbHkg61L8pBFx0j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57c9208f2ff922e1566cdccb3ac01ccd

Files

57c9208f2ff922e1566cdccb3ac01ccd
.exe windows:4 windows x86 arch:x86

1ec377c53a004b2464821cd8c5bd6782

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
HeapCreate
FoldStringW
SetConsoleWindowInfo
GetOEMCP
GlobalGetAtomNameA
HeapAlloc
LoadLibraryA
CompareStringA
WriteFile
TlsGetValue
GetPrivateProfileStructW
UnhandledExceptionFilter
DeleteCriticalSection
InterlockedExchange
TlsSetValue
GetVolumeInformationW
GetStringTypeA
GetStringTypeW
SetLocaleInfoW
GetCommandLineA
GetACP
GetVersion
GetCPInfo
SetHandleCount
IsBadWritePtr
GetFileType
GetStdHandle
GetProcAddress
EnumSystemLocalesA
GetStartupInfoA
HeapFree
ReadConsoleW
FreeEnvironmentStringsW
CreateSemaphoreA
LCMapStringA
VirtualQuery
WideCharToMultiByte
LCMapStringW
GetSystemTimeAsFileTime
WriteConsoleOutputAttribute
LeaveCriticalSection
GetLogicalDriveStringsW
GetLastError
HeapReAlloc
VirtualFree
ExitProcess
DuplicateHandle
FindResourceA
VirtualAlloc
TerminateProcess
QueryPerformanceCounter
GetCurrentProcess
TlsAlloc
GetModuleHandleA
GetEnvironmentStrings
MultiByteToWideChar
SetLastError
GetCurrentThreadId
RtlUnwind
HeapDestroy
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetCurrentProcessId
GetModuleFileNameA
TlsFree
EnterCriticalSection
SetLocalTime
GetTickCount
InitializeCriticalSection
UnlockFileEx
GetCurrentThread

user32

SetActiveWindow
DrawTextExA
SetDoubleClickTime
GetMessageW
DdeConnect
GetClipboardViewer
CloseWindow
GetMenuContextHelpId
InflateRect
SendDlgItemMessageW
GetClassInfoExW
CreateDialogParamA
IsZoomed
GetClipboardSequenceNumber
WaitForInputIdle
IsWindowEnabled

wininet

SetUrlCacheEntryGroupW

gdi32

SetStretchBltMode
EnumFontFamiliesExA
SetMetaRgn
GetCharWidthA
GetStretchBltMode
SetMiterLimit
LineDDA
CreatePalette
CreateColorSpaceW
GetViewportOrgEx
CreateEllipticRgnIndirect
GetNearestPaletteIndex
AddFontResourceA
WidenPath
GetClipBox
GetPaletteEntries
GetStockObject
PtVisible
TextOutA
SelectClipPath
GetTextExtentPoint32W
GetTextAlign
GetCharWidth32A
PlgBlt
SetMagicColors

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ec377c53a004b2464821cd8c5bd6782

Headers

File Characteristics

Imports

kernel32

user32

wininet

gdi32

Sections

.text Size: 148KB - Virtual size: 147KB

.data Size: 267KB - Virtual size: 267KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 148KB - Virtual size: 147KB

.data
Size: 267KB - Virtual size: 267KB

.rsrc
Size: 9KB - Virtual size: 9KB