72f50b17ff18fdd69883ac1003dfad6d

Sharing

Copy URL

Twitter E-mail

General

Target

72f50b17ff18fdd69883ac1003dfad6d
Size

336KB
MD5

72f50b17ff18fdd69883ac1003dfad6d
SHA1

c9f8d7c71e484cd53f4cc1e8796c5d4be1b73a33
SHA256

850917aacaec13b4209a8a2ca63a412ef2642ba3beedc9a94f10101fc1821f63
SHA512

e604505ac1c59a0e69ce65546ecee7b6da90ede619f41275f5d086992597f1eab7595b04923fc8ae37a3bcf4d98630c236c80eafd00d5ef0722580727d546a33
SSDEEP

6144:kQT6xhmfrhX4NyhWlgvZgDDjlaie6njLvhxbuqdJGWqhOyFpRE4h3BOgJCssOAFt:k3fmlulgMNayrhxbTOhO6nE4h0pOG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72f50b17ff18fdd69883ac1003dfad6d

Files

72f50b17ff18fdd69883ac1003dfad6d
.exe windows:4 windows x86 arch:x86

a3cbcad9ff0e1a7f96d658781403da34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
LCMapStringA
TlsFree
GetCurrentProcess
CreateMutexW
GetSystemTime
GetCurrentProcessId
WaitForSingleObjectEx
IsBadWritePtr
lstrcmp
EnumCalendarInfoExA
GetSystemDefaultLangID
GetConsoleMode
VirtualProtectEx
FreeEnvironmentStringsA
GetDiskFreeSpaceExA
GetStringTypeA
WaitForSingleObject
GetStartupInfoA
DeleteCriticalSection
HeapReAlloc
RemoveDirectoryW
GetTickCount
GetShortPathNameW
HeapAlloc
GetEnvironmentStringsA
GetModuleHandleA
CreateSemaphoreA
GetModuleFileNameA
CommConfigDialogW
CreateMutexA
GetLastError
WriteConsoleOutputAttribute
FlushConsoleInputBuffer
GetPrivateProfileSectionW
lstrcpynW
CloseHandle
RtlUnwind
GetSystemInfo
TlsAlloc
GetACP
GetStdHandle
VirtualAlloc
ReadConsoleOutputCharacterW
GetCommandLineA
GlobalReAlloc
MultiByteToWideChar
InterlockedIncrement
TlsSetValue
LockFile
HeapFree
SleepEx
SetHandleCount
HeapCreate
LoadLibraryA
InterlockedExchange
SetLocaleInfoA
LocalHandle
GetStringTypeW
FindResourceExA
GetShortPathNameA
SetFilePointer
InterlockedDecrement
GetCommandLineW
GetAtomNameA
ExitProcess
GetCurrentThread
LCMapStringW
GetProcAddress
CompareStringW
HeapDestroy
OpenMutexA
CompareStringA
GetEnvironmentStrings
GetLocaleInfoW
VirtualFree
EnumResourceNamesA
GetSystemTimeAsFileTime
TerminateProcess
MapViewOfFile
GetTimeZoneInformation
SetEnvironmentVariableA
GetSystemDirectoryA
lstrcpy
InitializeCriticalSection
GetVersion
FreeEnvironmentStringsW
EnterCriticalSection
ReadConsoleOutputW
VirtualQuery
GetCurrentThreadId
WideCharToMultiByte
CreateNamedPipeA
UnhandledExceptionFilter
QueryPerformanceCounter
ResumeThread
FindNextFileA
GetStartupInfoW
LocalFree
WriteFile
SetLastError
GetFullPathNameA
GetCPInfo
TlsGetValue
DeleteAtom
GetThreadSelectorEntry
GetEnvironmentStringsW
GetLocalTime
LeaveCriticalSection
FoldStringA
VirtualQueryEx
SetConsoleScreenBufferSize
ReadFile
SetStdHandle
GetFileType
FlushFileBuffers
GetFullPathNameW
AddAtomA

advapi32

CryptCreateHash
LookupAccountNameA
InitiateSystemShutdownA
RegDeleteKeyA
CryptGetHashParam
RegNotifyChangeKeyValue
CryptSetProviderExW
RegCloseKey
CryptGetDefaultProviderA
RegDeleteValueW
RegEnumKeyA
RegOpenKeyW
RegQueryMultipleValuesW
LookupSecurityDescriptorPartsW
CryptGetProvParam
RevertToSelf
CryptGenRandom
CryptReleaseContext
CryptSetHashParam
RegLoadKeyA

user32

CallMsgFilterW
CreateWindowStationA
CharNextExA
SetForegroundWindow
GetKeyState
GetClassNameA
SetDebugErrorLevel
SetWinEventHook
GetAltTabInfo
SetWindowWord
GetTabbedTextExtentW
DdeCreateStringHandleW
GrayStringA
GetUserObjectInformationA
SetCaretBlinkTime
GetMessageW
TrackMouseEvent
IsCharAlphaNumericW
DlgDirSelectExW
SetShellWindow
SetWindowRgn
GetClipboardOwner
DrawCaption
GetMenuStringA
IsDialogMessageA
SetWindowContextHelpId
RegisterClassExA
LoadMenuIndirectW
SetCapture
ScrollWindow
SetMenuDefaultItem
GetNextDlgGroupItem
CallWindowProcA
wvsprintfA
MessageBoxW
CharUpperBuffA
CreateIconIndirect
SetScrollPos
PeekMessageW
DdeCreateStringHandleA
OemToCharBuffW
CreateDesktopW
GetKeyboardType
DdeSetQualityOfService
GetProcessWindowStation
EndMenu
LoadMenuA
GetInputDesktop
VkKeyScanW
UnpackDDElParam
GetClipboardFormatNameA
CreateDesktopA
AdjustWindowRectEx
TranslateAcceleratorW
MsgWaitForMultipleObjectsEx
GetMenuDefaultItem
EnumWindowStationsW
EnumDisplayDevicesW
GetCursorPos
RealGetWindowClass
ExitWindowsEx
SetWindowTextA
LockWindowUpdate
SetUserObjectInformationA
InternalGetWindowText
DestroyCaret
EnumWindows
DrawStateA
RemoveMenu
DdeQueryNextServer
SetClipboardData
GetDlgItemTextA
RegisterClassExW
DdeKeepStringHandle
SendMessageTimeoutA
EnumDesktopWindows
ClientToScreen
RegisterClipboardFormatW
DlgDirListComboBoxW
GetDesktopWindow
CharPrevW
IsDialogMessageW
ValidateRect
PostMessageW
RegisterClassA
CreateIconFromResource
MessageBoxExA
GetPriorityClipboardFormat
GetClipboardData
GetMenuItemInfoA
IsWindow
DdeAccessData
SetLastErrorEx
SetScrollRange
CharUpperW
DdeGetLastError
SetProcessWindowStation
SendIMEMessageExA
ScreenToClient
FillRect
RegisterClassW

comctl32

ImageList_LoadImageW
InitCommonControlsEx
ImageList_AddIcon
ImageList_GetDragImage
ImageList_Duplicate
ImageList_GetImageInfo
CreateStatusWindowW
CreatePropertySheetPage
_TrackMouseEvent
ImageList_Destroy
ImageList_SetImageCount

wininet

FtpPutFileEx
UnlockUrlCacheEntryFileA
UrlZonesDetach
InternetGetCookieW
DeleteUrlCacheContainerW
InternetShowSecurityInfoByURL
CommitUrlCacheEntryA
InternetLockRequestFile

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3cbcad9ff0e1a7f96d658781403da34

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

wininet

Sections

.text Size: 148KB - Virtual size: 144KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 92KB - Virtual size: 111KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 148KB - Virtual size: 144KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 92KB - Virtual size: 111KB

.rsrc
Size: 20KB - Virtual size: 18KB