70e5c9b540c9365f93d88c64196138ca

Sharing

Copy URL Twitter E-mail

General

Target

70e5c9b540c9365f93d88c64196138ca
Size

205KB
MD5

70e5c9b540c9365f93d88c64196138ca
SHA1

a34f8f5434ea0883e388e40cd4a6d2fa5c548421
SHA256

4f59b49c971773083bea4206e6a2d60603a544f7e70902f01d14b1a23758e981
SHA512

87cc6ec6dd27b901defc8f038c1532a4e67c904ecc2339b7b68a22e2519e4898b834a45741df3889769633f33513ac62a6705412e596380f514b229d68b9fa6a
SSDEEP

6144:Gd5i/mGgduj4c/5N+NpV4tQ9altfYwfKZ:G7i/mGFN+nVglBk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70e5c9b540c9365f93d88c64196138ca

Files

70e5c9b540c9365f93d88c64196138ca
.exe windows:1 windows x86 arch:x86

353c5a7150c6024bf63ab21822d4e9d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetStdHandle
VirtualFree
lstrcmpiA
GetStdHandle
GetLocaleInfoA
GetCurrentThread
GlobalAlloc
GetCurrentProcessId
QueryPerformanceFrequency
LeaveCriticalSection
IsDebuggerPresent
Module32First
GetComputerNameW
GetStringTypeA
GetConsoleOutputCP
LoadLibraryA
FindResourceA
HeapCreate
GetSystemDirectoryA
WriteConsoleW
TlsSetValue
GlobalLock
lstrcmpA
RtlUnwind
GlobalMemoryStatus
lstrlenW
GetCurrentThreadId
Module32Next
GetEnvironmentStrings
CreateFileMappingA
EnterCriticalSection
VirtualAlloc
CreateThread
GetProcessHeap
ExitThread
QueryPerformanceCounter
GetFileTime
lstrcpyA
WriteConsoleA
GetFileType
FindFirstFileA
UnmapViewOfFile
HeapReAlloc
DeleteCriticalSection
GetFileAttributesA
ExitProcess
GetThreadContext
SetEndOfFile
GetStringTypeW
GetCurrentDirectoryA
lstrcatA
GetTickCount
GetVersion
GetOEMCP
FreeEnvironmentStringsA
IsBadReadPtr
VirtualQueryEx
HeapFree
SetLastError
SetPriorityClass
FlushFileBuffers
GetProcessAffinityMask
IsBadStringPtrA
Sleep
GlobalReAlloc
DuplicateHandle
GlobalUnlock
GetEnvironmentVariableA
HeapAlloc
GetModuleHandleW
GetConsoleMode
LCMapStringW
WideCharToMultiByte
SetHandleCount
OpenEventA
InterlockedExchange
LocalFree
WaitForSingleObject
GetConsoleCP
FreeEnvironmentStringsW
CloseHandle
ResetEvent
SetEnvironmentVariableA
CreateToolhelp32Snapshot
GetACP
SetProcessWorkingSetSize
GetModuleHandleA
PulseEvent
SearchPathA
WaitForMultipleObjects
GetCPInfo
SetEvent
OpenProcess
ResumeThread
ReadFile
DeleteFileA
CreateProcessA
SetErrorMode
SetUnhandledExceptionFilter
lstrlenA
GetStartupInfoA
CreateEventA
GetCurrentProcess

user32

DefFrameProcA
GetSystemMetrics
FindWindowExA
FillRect
SetCapture
GetFocus
TrackPopupMenu
RedrawWindow
DrawMenuBar
TrackPopupMenuEx
DialogBoxIndirectParamA
PostQuitMessage
DefMDIChildProcA
IsIconic
CheckMenuItem
InvalidateRgn
CheckMenuRadioItem
GetWindowPlacement
GetParent
ScrollWindowEx
GetWindowRect
GetDlgItemTextA
IsDlgButtonChecked
GetMessageA
CreateDialogParamA
DeferWindowPos
DialogBoxParamA
GetUpdateRgn
GetSysColor
GetScrollInfo
DrawTextA
UpdateWindow
ChildWindowFromPoint
InsertMenuA
ModifyMenuA
AppendMenuA
ShowWindow
ReleaseCapture
GetUserObjectSecurity
OffsetRect
RegisterClassA
SetClassLongA
CreatePopupMenu
WindowFromPoint
CloseClipboard
OpenClipboard
GetClassLongA
LoadImageA
GetKeyState
LoadStringA
CreateWindowExA
IntersectRect
MsgWaitForMultipleObjects
GetDoubleClickTime
SetDlgItemTextA
InvalidateRect
LoadMenuA
EndDialog
CheckRadioButton
GetCursorPos
TranslateMessage
SetCursor
GetDlgCtrlID
CallWindowProcA
GetClassNameA
BeginDeferWindowPos
ReleaseDC
GetSubMenu
CopyRect
SetTimer
SetWindowPlacement
SetUserObjectSecurity
LoadAcceleratorsA
GetMenuItemID
EndPaint
FrameRect
InflateRect
EndDeferWindowPos
PeekMessageA
EnumChildWindows
ClientToScreen
DestroyWindow
DrawEdge
EmptyClipboard
UnionRect
ScreenToClient
GetDC
GetCapture
SetWindowTextA
RegisterWindowMessageA
IsZoomed
CreateIconIndirect
GetMenuItemCount
IsDialogMessageA
SetMenuItemInfoA
LoadIconA
BeginPaint
GetWindowLongA
MessageBoxA

msvcrt

exit
_adjust_fdiv
__getmainargs
_except_handler3
__p__commode
memcpy
__set_app_type
_acmdln
_XcptFilter
__p__fmode
_initterm
_exit
_controlfp
__setusermatherr

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

353c5a7150c6024bf63ab21822d4e9d6

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 180KB - Virtual size: 180KB

.data Size: 512B - Virtual size: 28KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 180KB - Virtual size: 180KB

.data
Size: 512B - Virtual size: 28KB

.rsrc
Size: 512B - Virtual size: 164B