588fdf513aa61eb17cc7740036ed88e6

Sharing

Copy URL Twitter E-mail

General

Target

588fdf513aa61eb17cc7740036ed88e6
Size

63KB
MD5

588fdf513aa61eb17cc7740036ed88e6
SHA1

052c21b4843a7dec5ee98ed4c156607f650616e7
SHA256

00ce25b895ac4c0b6e46f159cf9784b64ad7c81b20fd8923a7a339a8392acfc1
SHA512

ce624861d04c8a837334ef36c7a13a71c8bd8290c09cb02bdc4dc5a9218d15a06c9d7e5f69225cda240637d097d60812438cfa9a73beef6fd7a38040cc0757c7
SSDEEP

1536:fDnnLOnsN6ZkYLhEH871VcKHHSYv3ogbldZGEFp:fDLOsN6ZkghR71XHSYfrbldZGEp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
588fdf513aa61eb17cc7740036ed88e6

Files

588fdf513aa61eb17cc7740036ed88e6
.exe windows:4 windows x86 arch:x86

be8585d09e0386e0ceee9d01ef3b2bb4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasesA
FlushFileBuffers
GetCommMask
OutputDebugStringA
GetFileAttributesExW
ReadConsoleInputW
WaitNamedPipeA
FileTimeToDosDateTime
FindClose
LCMapStringW
EnumUILanguagesA
WriteConsoleOutputW
BuildCommDCBAndTimeoutsA
FindNextVolumeW
GetTimeFormatW
WriteConsoleOutputCharacterW
HeapSize
GlobalUnlock
DeleteTimerQueueTimer
GlobalAddAtomA
GetPriorityClass
CreateWaitableTimerA
GetSystemInfo
SetConsoleCtrlHandler
BuildCommDCBW
FindResourceExW
SetCurrentDirectoryA
ReadConsoleA
TerminateJobObject
lstrcpynA
CreateProcessW
WaitForMultipleObjectsEx
GetConsoleAliasesLengthW
GetStringTypeA
GetConsoleAliasW
UnlockFileEx
CreateDirectoryW
GetNumberOfConsoleInputEvents
GetAtomNameA
GetPrivateProfileIntW
EnumDateFormatsW
VirtualAlloc
FileTimeToLocalFileTime
RequestWakeupLatency
AddAtomA
GetCurrentConsoleFont
GetCurrentDirectoryA
lstrcmpi
FindResourceA
GetCommTimeouts
GetThreadPriority
EnumCalendarInfoA
GetConsoleAliasExesLengthA
ReadConsoleW
GetCalendarInfoW
WritePrivateProfileStringW
GetFileAttributesW
SetConsoleCursorInfo
SetMailslotInfo
WriteProfileSectionW
GetDiskFreeSpaceExA
LoadLibraryExW
FatalExit
SetTimeZoneInformation
DnsHostnameToComputerNameA
EnumSystemLanguageGroupsW
FindAtomW
PeekConsoleInputW
SetUnhandledExceptionFilter
ResetWriteWatch
SetNamedPipeHandleState
GetProcessHeap
GlobalLock
IsDBCSLeadByte
_llseek
GetNumberOfConsoleMouseButtons
lstrcpyA
GetProcessVersion
EnumCalendarInfoExA
SetStdHandle
QueueUserWorkItem
GetNumberFormatW
HeapUnlock
SetComputerNameW
GetStartupInfoW
GetTempFileNameW
SetEnvironmentVariableA
lstrlen
GetExitCodeProcess
CreateMutexW
FatalAppExitW
CreatePipe
SetProcessPriorityBoost
GlobalWire
WriteProcessMemory
GetTempPathW
GlobalMemoryStatus
GetUserDefaultLCID
WideCharToMultiByte
GetPrivateProfileSectionA
GetWindowsDirectoryA
lstrlenA
CreateFileA
LoadLibraryA
GetProcAddress

user32

GetMessageExtraInfo
GetMessagePos
LoadBitmapW
GetTitleBarInfo
IsWindowEnabled
VkKeyScanA
ChildWindowFromPoint
GetScrollBarInfo
SetMenuItemBitmaps
DdeCreateStringHandleA
GetWindowModuleFileName
GetClipboardFormatNameA
ToUnicode
SwitchToThisWindow
DefFrameProcA
GetKeyboardLayoutNameW
GetMenuStringW
OemKeyScan
GetPriorityClipboardFormat
AppendMenuA
TranslateMessage
CreateDialogParamW
ChildWindowFromPointEx
GetUpdateRect
ReplyMessage
DdeQueryStringA
IsCharLowerW
SetProcessWindowStation
MessageBoxExW
SetWindowLongA
TabbedTextOutW
ExitWindowsEx
wvsprintfA
DrawEdge
SendDlgItemMessageA
WinHelpA
SetClassWord
GetDesktopWindow
AdjustWindowRectEx
GetClipboardViewer
OemToCharBuffA
GetWindowPlacement
DrawFrameControl
DrawAnimatedRects
DestroyIcon
SetWindowsHookW
IsChild
SetWinEventHook
wsprintfA
SetWindowPos
ModifyMenuA
GetWindowLongA
RealChildWindowFromPoint
OpenInputDesktop
MonitorFromPoint
ReuseDDElParam
TranslateAcceleratorA
CharUpperBuffW
GetKeyNameTextW
FindWindowExA
DlgDirSelectComboBoxExA
DestroyAcceleratorTable
InsertMenuItemA
GetAltTabInfo
SetMenuDefaultItem
CheckMenuItem
GetSysColor
GetScrollPos
RegisterClassW
LoadMenuW
CharPrevA
BeginDeferWindowPos
GetGuiResources
ChangeClipboardChain
SetMenuItemInfoW
DialogBoxIndirectParamW
SendIMEMessageExW
SetShellWindow
LoadMenuIndirectA
MapWindowPoints
GetKeyState
LoadAcceleratorsA
EnumDisplaySettingsW
ToAsciiEx
SetUserObjectInformationW
InvertRect
EnumPropsExA
LoadMenuA
GetMenuItemCount
CharNextExA
GetClassWord
ShowCursor
DeregisterShellHookWindow
PostQuitMessage
PtInRect
EnumClipboardFormats
GetMonitorInfoW
DdeQueryConvInfo
GetMessageTime
CreateDesktopA
SetThreadDesktop
GetClassInfoW
GetKeyboardState
ReleaseCapture
DispatchMessageA
TranslateAccelerator
GetClipboardOwner
GetClassInfoExW
CreateDialogIndirectParamW
DrawIconEx
CharToOemBuffA
SetWindowsHookExA
EnumWindows
SetLayeredWindowAttributes
WaitMessage
SetDlgItemInt
SetFocus
IsCharAlphaW
GetKBCodePage
SendNotifyMessageW
BeginPaint
ModifyMenuW
IsClipboardFormatAvailable
SetWindowLongW
DdeEnableCallback
SendDlgItemMessageW
GetMonitorInfoA
InSendMessageEx
EnableWindow
GetScrollInfo
EnableScrollBar
DefDlgProcW
CreateMDIWindowW
EndTask
IsIconic
IsCharAlphaA
IsWindowUnicode
DialogBoxParamA
CharLowerA
KillTimer
OemToCharBuffW
SetClipboardData
PeekMessageW
SetMessageExtraInfo
MsgWaitForMultipleObjects
LoadIconA
GetQueueStatus
CharToOemA
UnloadKeyboardLayout
SendMessageTimeoutW
GetKeyboardLayout
MessageBoxA
SetSysColors
RegisterClipboardFormatW
GetClassLongW
EqualRect
SetParent
DeferWindowPos
EnumDisplaySettingsA
wsprintfW
CharToOemW
RegisterClassA
IsDlgButtonChecked

advapi32

RegOpenKeyExA

shlwapi

SHRegGetUSValueW
StrRetToStrW
StrRChrIA
AssocCreate
PathIsContentTypeW
PathMakePrettyA
StrFormatByteSizeW
UrlIsOpaqueW
PathIsSameRootA
PathIsUNCW
StrNCatW
UrlUnescapeW
PathRemoveBackslashW
PathUnExpandEnvStringsW
StrCmpNA
SHSetValueA
AssocQueryKeyW
SHGetValueA
PathIsUNCServerShareA
SHRegEnumUSValueW
StrFormatKBSizeW
UrlGetLocationW
ChrCmpIA
StrChrIA
SHStrDupA
UrlEscapeA
PathIsLFNFileSpecW
StrChrIW
SHRegWriteUSValueW
PathRemoveArgsA
PathAddExtensionA
UrlUnescapeA
PathIsUNCServerShareW
SHEnumKeyExA
ColorRGBToHLS
PathIsRelativeA
PathMakePrettyW
PathIsSameRootW
StrCatBuffA
SHRegDeleteEmptyUSKeyA
StrSpnA
PathStripPathA
PathBuildRootW
AssocQueryStringByKeyW
PathRemoveFileSpecW
PathParseIconLocationW
UrlIsNoHistoryW
PathRemoveExtensionA
PathIsSystemFolderW
UrlGetPartW
SHRegGetBoolUSValueW
SHRegSetUSValueA
SHEnumKeyExW
PathCanonicalizeW
PathRemoveBlanksW
PathAppendA
PathAppendW
SHSkipJunction
PathCreateFromUrlA
SHDeleteValueW
PathFindExtensionA
PathRenameExtensionW
SHDeleteEmptyKeyA
PathAddBackslashW
HashData
PathCompactPathExW
StrRetToBufA
StrNCatA
SHQueryInfoKeyW
PathQuoteSpacesW
PathUnquoteSpacesA
SHRegDuplicateHKey
SHQueryValueExA
ChrCmpIW
StrRetToStrA
PathGetArgsW
PathIsDirectoryEmptyW
PathStripPathW
UrlHashW
PathQuoteSpacesA
StrDupA
StrCSpnIA
StrRStrIA
PathSetDlgItemPathA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.d3
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d2
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d1
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be8585d09e0386e0ceee9d01ef3b2bb4

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shlwapi

Sections

.text Size: 4KB - Virtual size: 4KB

.d3 Size: 512B - Virtual size: 512B

.d2 Size: 1024B - Virtual size: 1024B

.d1 Size: 41KB - Virtual size: 41KB

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.d3
Size: 512B - Virtual size: 512B

.d2
Size: 1024B - Virtual size: 1024B

.d1
Size: 41KB - Virtual size: 41KB

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB