717382e451b01d78579c3344cddf591a

Sharing

Copy URL Twitter E-mail

General

Target

717382e451b01d78579c3344cddf591a
Size

543KB
MD5

717382e451b01d78579c3344cddf591a
SHA1

27989ea20cce75006b965a78ed4f858c05f28a56
SHA256

20e8a2f265bb00dfded00c7db903b67420b4e17f6c0ed4165d6af7c8ae8bcd09
SHA512

65356c33a686d4606b786f019d2e2edf5f055418a8cf029a740a063aa089dab725e9058759f9bf3b22e6563ac6a85f4a49c3dc445b6064e4b3af8acbbce08bec
SSDEEP

12288:qf7BhYneQnW36w+OeQmONnVjFzfXLQPPPxm8e8oalXIM9bhDcf:K4nPX8NElXhRV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
717382e451b01d78579c3344cddf591a

Files

717382e451b01d78579c3344cddf591a
.exe windows:5 windows x86 arch:x86

77b7bb3c7c81643724779e87ccfeae54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCurrentDirectoryA
GetCommandLineW
GetCurrentProcessId
SizeofResource
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
GetSystemInfo
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GetProcAddress
DuplicateHandle
FindFirstFileW
CreateFileMappingA
CompareStringA
InterlockedIncrement
LoadLibraryW
FindFirstFileA
CompareStringW
GetProcessHeap
WaitForMultipleObjects
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
lstrcmpiW
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
GetCurrentThreadId
SetEndOfFile
GetACP
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
TlsGetValue
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
GetExitCodeProcess
LocalFree
FreeLibrary
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
GetTempPathA
SetStdHandle
FreeEnvironmentStringsW
LoadLibraryExW
ExpandEnvironmentStringsA
LocalAlloc
GetLocaleInfoA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetLocalTime
GetFileAttributesW
HeapDestroy
GetDriveTypeA
LockResource
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetEnvironmentVariableA
RtlUnwind
GlobalLock
GetVersion
InterlockedExchange
GetEnvironmentStrings
CreateProcessA
WideCharToMultiByte
UnmapViewOfFile
VirtualFree
Sleep
VirtualAlloc
GetConsoleMode
GetOEMCP

advapi32

RegOpenKeyExW
OpenProcessToken
RegQueryValueExA
RegCloseKey
RegSetValueExW
RegOpenKeyExA
GetTokenInformation

user32

GetFocus
GetCursorPos
GetDesktopWindow
GetDlgItem
SetWindowLongA
GetWindowRect
GetSystemMetrics
MapWindowPoints
DefWindowProcA
BeginPaint
SetFocus
PtInRect
CreateWindowExA
GetWindowLongA
RegisterClassA
LoadStringA
TranslateMessage
MoveWindow
PeekMessageA
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
SendMessageA
GetDC
SetForegroundWindow
DispatchMessageA
PostQuitMessage
InvalidateRect
GetClientRect
ReleaseDC
SetCursor
MessageBoxA
GetSysColor
SetWindowPos
IsWindowVisible

gdi32

GetDeviceCaps
SetBkMode
SelectObject

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize

oleaut32

SysFreeString
SysAllocString
SysAllocStringLen

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 518KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77b7bb3c7c81643724779e87ccfeae54

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

version

ole32

oleaut32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 518KB - Virtual size: 518KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 518KB - Virtual size: 518KB

.rsrc
Size: 2KB - Virtual size: 1KB