58e0a554144f2b2b5f26901abb7165f5

Sharing

Copy URL Twitter E-mail

General

Target

58e0a554144f2b2b5f26901abb7165f5
Size

532KB
MD5

58e0a554144f2b2b5f26901abb7165f5
SHA1

db02f0578a2f97a89b603bfe6d87b8337dbe37bc
SHA256

9676657958d6124caec48aa08b8f096fbcf1d73e2e3cbfa00887106c905eada1
SHA512

f05eb04bce909a2ee093d8468b0fa3b697f7d4fc97cbc27a1a6fbe06f9d44923ded89cf1283ab1bb0a8939c188789f6df54258cf9d55aa2f752f8aa10f4b3c7c
SSDEEP

12288:X6CeaVmmDDxVmjoc+XRDIV8YkPgabhlDyML1idxNHvNP6iX17m:X7VmmDDxkocYR5YkPgW/yM5ihNP6yS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58e0a554144f2b2b5f26901abb7165f5

Files

58e0a554144f2b2b5f26901abb7165f5
.exe windows:4 windows x86 arch:x86

9f75a57ed686a21fb4a6d8336354116a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetFileTitleW
ChooseColorW
GetOpenFileNameA
PageSetupDlgW
ReplaceTextW
ChooseFontW
GetSaveFileNameW
PageSetupDlgA
LoadAlterBitmap
GetFileTitleA
GetOpenFileNameW

shell32

DragFinish
SHGetFileInfoW
DuplicateIcon
SheChangeDirA
ShellExecuteA
SHFileOperationA
SHGetPathFromIDList
ShellExecuteExA
SHAppBarMessage
SHFileOperation
SHFileOperationW
SHEmptyRecycleBinW
ExtractIconW

wininet

GetUrlCacheEntryInfoW
InternetUnlockRequestFile
HttpSendRequestA
GopherOpenFileW
FtpFindFirstFileA
InternetGetLastResponseInfoW
FindNextUrlCacheGroup
InternetSetDialState
DeleteUrlCacheContainerW
GetUrlCacheHeaderData
SetUrlCacheConfigInfoW
InternetGetConnectedStateEx
IncrementUrlCacheHeaderData
InternetTimeFromSystemTimeA
InternetSetCookieA
ShowClientAuthCerts
InternetAutodial
InternetTimeToSystemTimeA
GetUrlCacheEntryInfoExA
InternetInitializeAutoProxyDll
InternetCombineUrlA
HttpEndRequestA

gdi32

GetCharABCWidthsFloatA
UpdateICMRegKeyA
DeviceCapabilitiesExA
GetEnhMetaFileHeader
AddFontResourceA
SetWindowExtEx
GetTextExtentPointA
GetWindowExtEx
SetROP2

kernel32

SetEnvironmentVariableA
HeapReAlloc
GetModuleFileNameA
GetTickCount
RtlUnwind
IsDebuggerPresent
IsValidLocale
GetCurrentThread
GetFileType
HeapSize
EnumSystemLocalesA
InitializeCriticalSection
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetThreadPriority
TlsFree
TlsSetValue
TlsAlloc
CreateWaitableTimerW
HeapDestroy
GetLocaleInfoA
CreateToolhelp32Snapshot
GetConsoleTitleW
GetCurrentProcessId
GetWindowsDirectoryW
GetCommandLineW
GetStdHandle
LCMapStringW
GetDateFormatA
GetLocaleInfoW
LoadLibraryA
FreeEnvironmentStringsA
InterlockedDecrement
IsValidCodePage
GetStartupInfoA
OpenSemaphoreA
GetModuleHandleA
WriteFile
GetCommandLineA
LeaveCriticalSection
GetEnvironmentStringsW
GetLastError
GetStringTypeW
TryEnterCriticalSection
SetConsoleCtrlHandler
SetSystemTime
CompareStringW
VirtualAlloc
InterlockedExchange
CreateMutexW
GetProcessHeaps
HeapFree
HeapAlloc
GetStartupInfoW
OpenProcess
FreeEnvironmentStringsW
WideCharToMultiByte
GetProcessHeap
TerminateProcess
VirtualFree
ExpandEnvironmentStringsA
VirtualQuery
CompareStringA
GlobalAddAtomA
SetHandleCount
FindAtomA
CommConfigDialogW
HeapCreate
GetOEMCP
GetACP
InterlockedIncrement
SetLastError
GetTimeFormatA
LCMapStringA
GetStringTypeA
GetVersionExA
RemoveDirectoryW
GetLogicalDrives
GetUserDefaultLCID
GetPriorityClass
GetCurrentProcess
GetCurrentThreadId
EnterCriticalSection
GetCPInfo
GetTimeZoneInformation
ExitProcess
GetProcAddress
TlsGetValue
QueryPerformanceCounter
Sleep
DeleteCriticalSection
GetSystemTimeAsFileTime
MultiByteToWideChar
GetEnvironmentStrings
GetModuleFileNameW
FreeLibrary
VirtualAllocEx
WaitForSingleObject

Sections

.text
Size: 239KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f75a57ed686a21fb4a6d8336354116a

Headers

File Characteristics

Imports

comdlg32

shell32

wininet

gdi32

kernel32

Sections

.text Size: 239KB - Virtual size: 238KB

.data Size: 281KB - Virtual size: 280KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 239KB - Virtual size: 238KB

.data
Size: 281KB - Virtual size: 280KB

.rsrc
Size: 11KB - Virtual size: 11KB