5ad8a2cc537cf34733646390d869af72

Sharing

Copy URL

Twitter E-mail

General

Target

5ad8a2cc537cf34733646390d869af72
Size

576KB
MD5

5ad8a2cc537cf34733646390d869af72
SHA1

dd68d95261f6c071953a1d1415f84dc92650e20d
SHA256

910ab10def9c56689d052cc8cb01ab9a22c1176f34d8e48d6d7b3c9b71882a5c
SHA512

b44b79531836050dd70bcf87d9e6b863c802cee5211cfe9988a3b54a4e3a31c822186843e35c989ca040775a83793ea610a1bf945848b2269627cca678b308a2
SSDEEP

12288:FogNnQE7JOiDeG69fYH9/ShZrfpiWfaek7xb5W8/nBztFY+ELq:FogNnH7leG6ZYd/I/iKaeo9z/d4+ELq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ad8a2cc537cf34733646390d869af72

Files

5ad8a2cc537cf34733646390d869af72
.exe windows:4 windows x86 arch:x86

db33ea246dbc679315ca6e31c05c674c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA
FindTextW

comctl32

ImageList_SetFilter
ImageList_Create
ImageList_Read
ImageList_SetBkColor
DrawInsert
CreatePropertySheetPage
ImageList_SetIconSize
InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_DragMove
CreateToolbarEx
DestroyPropertySheetPage
ImageList_GetBkColor
ImageList_DragLeave

kernel32

RtlUnwind
GetModuleHandleA
LCMapStringW
VirtualAlloc
GetStartupInfoA
GetEnvironmentStrings
GetTickCount
GetCurrentThread
CreateNamedPipeW
TlsGetValue
IsDebuggerPresent
GetLogicalDriveStringsW
GetVersion
TlsFree
VirtualFree
GetStdHandle
TlsAlloc
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
InitializeCriticalSection
lstrcatA
ReadConsoleW
ExitProcess
GetCommandLineA
IsBadWritePtr
GlobalAddAtomW
DeleteCriticalSection
SetEnvironmentVariableA
GetCommandLineW
QueryPerformanceCounter
GetEnvironmentStringsA
GetLastError
TerminateProcess
GetProcessHeaps
HeapDestroy
GetStartupInfoW
lstrcpy
OpenProcess
GetModuleFileNameW
GetStringTypeW
WideCharToMultiByte
SystemTimeToTzSpecificLocalTime
FreeLibrary
GetEnvironmentStringsW
GetTimeFormatA
LoadLibraryA
GlobalDeleteAtom
GetModuleFileNameA
lstrcmpi
HeapFree
GetProcAddress
SetLocaleInfoA
OpenMutexA
UnhandledExceptionFilter
SetFilePointer
HeapAlloc
ReadFile
LCMapStringA
HeapCreate
InterlockedExchange
GetStringTypeA
GetCalendarInfoA
GetFileType
GetTimeZoneInformation
GetLocalTime
SetHandleCount
MultiByteToWideChar
CloseHandle
UnlockFile
HeapReAlloc
VirtualQuery
InterlockedDecrement
GetSystemDefaultLangID
GetProfileIntW
EnterCriticalSection
CreateMutexA
LeaveCriticalSection
lstrlenW
WriteFile
GetVolumeInformationW
GetCurrentProcess
TlsSetValue
CompareStringA
GlobalFlags
GetAtomNameA
GetCPInfo
SetLastError
InterlockedIncrement
FoldStringA
GetNumberFormatW
FreeEnvironmentStringsA
FlushFileBuffers
GetCurrentProcessId
LocalLock
CompareStringW
GetSystemTime
GetCurrentThreadId
SetStdHandle

advapi32

CryptGetKeyParam
RegQueryMultipleValuesW
CryptReleaseContext
DuplicateTokenEx
CryptSignHashW
LookupPrivilegeNameA
RegDeleteValueA
RegQueryValueA
RegEnumValueW
CryptSetHashParam
RegEnumValueA
LookupAccountNameW
CryptAcquireContextW
CryptGenRandom

shell32

SHLoadInProc

wininet

InternetOpenW
InternetConnectW
GopherGetAttributeA

user32

SetMenuInfo
SetMenuDefaultItem
GetSystemMenu
RemovePropW
SetRectEmpty
SetWindowLongA
GetWindowWord
MapVirtualKeyExW
GetKeyboardState
DialogBoxParamW
TileChildWindows
GetMenuStringA
GetClipboardSequenceNumber
GetIconInfo
DragDetect
SetDlgItemTextW
SetClassWord
CharNextW
LoadStringA
EnumChildWindows
TranslateMDISysAccel
DdeFreeDataHandle
EnumPropsA
RegisterClassExA
GetSysColorBrush
DefMDIChildProcW
DrawTextExA
CharToOemA
GetComboBoxInfo
GetWindowRgn
GetTitleBarInfo
CharNextExA
ExcludeUpdateRgn
EnumDisplayDevicesA
SetWindowWord
EndMenu
SetParent
AppendMenuA
CreateMDIWindowW
CharLowerBuffW
GetUpdateRgn
TileWindows
UnionRect
CharToOemBuffW
DdeCreateStringHandleW
SetMessageExtraInfo
OpenIcon
GetTabbedTextExtentW
SetWindowsHookExA
VkKeyScanExW
OpenWindowStationA
GetMenuBarInfo
FindWindowExW
ScrollDC
SetMenuItemInfoW
GetInputDesktop
LockWindowUpdate
wsprintfA
GetForegroundWindow
MapVirtualKeyA
CloseClipboard
IsCharUpperW
CountClipboardFormats
ActivateKeyboardLayout
CloseWindowStation
GetWindowPlacement
FreeDDElParam
ChildWindowFromPointEx
ChildWindowFromPoint
SetMenuItemInfoA
MessageBoxIndirectA
InsertMenuItemW
InternalGetWindowText
EndPaint
LoadCursorW
RegisterHotKey
DestroyWindow
ChangeDisplaySettingsExA
DlgDirSelectComboBoxExW
RegisterClassA
CheckRadioButton
GetSystemMetrics
SetMenu
DlgDirListComboBoxA
CallMsgFilterW
ArrangeIconicWindows
GetDlgCtrlID
OemToCharA
SetMenuContextHelpId
CloseDesktop
CreateMDIWindowA
HideCaret
GetWindow
BroadcastSystemMessage
GetMenuState

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db33ea246dbc679315ca6e31c05c674c

Headers

File Characteristics

Imports

comdlg32

comctl32

kernel32

advapi32

shell32

wininet

user32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 256KB - Virtual size: 255KB

.data Size: 104KB - Virtual size: 112KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 256KB - Virtual size: 255KB

.data
Size: 104KB - Virtual size: 112KB

.rsrc
Size: 44KB - Virtual size: 40KB