72ba50d5a708921cced951411f9b075a

Sharing

Copy URL

Twitter E-mail

General

Target

72ba50d5a708921cced951411f9b075a
Size

209KB
MD5

72ba50d5a708921cced951411f9b075a
SHA1

1e22e6a9237ad1456cb39324c67887a0835c7788
SHA256

77f9f22e105461df2ff40349bdad84e6ec262ae229260e322b632157c1df6a32
SHA512

3157cecd99f4995d70157f5c59ff009cec3dcfa5aee1e66919930d538b66753f429907d8e6ffedd6db4a77dfea0c6f52cd043762a10b742535033fce8a0583d0
SSDEEP

3072:x+3DQfZzcHUo1/QwyTLFmLCTnh8Puz9EEthax0hPYlZZldOSMDD:xsQfZzggTvz+u5EEthauP47OSMX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72ba50d5a708921cced951411f9b075a

Files

72ba50d5a708921cced951411f9b075a
.dll windows:4 windows x86 arch:x86

5a0b5ac2a25aa31e8559749d712496b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadConsoleW
DeleteFileW
GetComputerNameA
ReadFile
Sleep
GetConsoleMode
CreateDirectoryA
ExitThread
GetFileTime
WriteFile
ReadConsoleA
GetStdHandle
DeleteAtom
CreateThread
GetFileSize
ReadFile
CreateThread
WriteFile
GetLastError
CopyFileW
CopyFileExW
OpenFileMappingA
FindFirstFileA
GlobalFree
CopyFileExA
ReadConsoleA
GetComputerNameA
CopyFileA
GetFileTime
GetLastError
GetComputerNameA
ReadFile
CopyFileExW
GetCommandLineA
CopyFileW
CreateProcessA
Sleep
CopyFileA
CreateThread
FindFirstFileA
ExitThread
GetFileTime
CopyFileExA
ReadConsoleA
GetConsoleMode
CopyFileExW
GetLastError
CopyFileW
ReadFile
DeleteFileA
WriteFile
ReadConsoleW
ExitThread
GetCPInfo
CopyFileExA
DeleteFileW
OpenFile
FindAtomA
CreateDirectoryA
GetFileTime
CopyFileA
GlobalFree
FindFirstFileA
GetLastError
CreateProcessA
CopyFileW
CopyFileA
GetStdHandle
ExitThread
CopyFileExA
DeleteFileW
CopyFileExW
GetCommandLineA

user32

CloseWindow
GetCursor
CreateIcon
CopyIcon
LoadMenuA
DrawTextA
AppendMenuW
CopyRect
CalcMenuBar
GetDlgItem
LoadCursorA
GetWindowTextA
GetCursor
IsWindow
CreateIcon
GetFocus
GetWindowTextLengthA
GetMenu
CopyIcon
LoadCursorA
CloseWindow
EndDialog
AlignRects
GetWindowTextLengthA
CopyImage
IsMenu
DialogBoxParamW
EndDialog
DrawTextW
GetWindow
CopyRect
AppendMenuW
IsWindow
DrawIcon
DialogBoxParamA
DrawTextA
CreateIcon
AppendMenuA
GetDlgItem
GetCursor

advapi32

RegGetKeySecurity
RegCreateKeyExA
RegCloseKey
RegQueryValueW
RegFlushKey
RegEnumKeyA
RegLoadKeyW
RegQueryInfoKeyW
RegDeleteValueW
RegQueryInfoKeyA
RegQueryValueA
RegDeleteKeyA
RegEnumKeyExA
RegDeleteKeyW
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegFlushKey
RegQueryInfoKeyW
RegQueryValueW
RegEnumKeyExA
RegCreateKeyW
RegDeleteKeyA
RegDeleteValueA
RegLoadKeyA
RegQueryValueA

Sections

.tls
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b3671
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 307B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a0b5ac2a25aa31e8559749d712496b5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.tls Size: 11KB - Virtual size: 10KB

.data Size: - Virtual size: 1KB

.bss Size: 188KB - Virtual size: 188KB

.b3671 Size: 5KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 307B

.rsrc Size: 2KB - Virtual size: 235KB

.tls
Size: 11KB - Virtual size: 10KB

.data
Size: - Virtual size: 1KB

.bss
Size: 188KB - Virtual size: 188KB

.b3671
Size: 5KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 307B

.rsrc
Size: 2KB - Virtual size: 235KB