7624606baba4796cb5e12b53a5869543

Sharing

Copy URL Twitter E-mail

General

Target

7624606baba4796cb5e12b53a5869543
Size

146KB
MD5

7624606baba4796cb5e12b53a5869543
SHA1

b1ce50772f6b08925dc4db5e3083a9499dc4b0ed
SHA256

40f47e58bb1bc875e24986b3935de50d2fe06432ce76fddf90c94629c64ecf3d
SHA512

d81945e66bc0e6f7ff54d02d41a9d77355ef3368f148bc31a2a8e43efad5b4d33217ad50777cab699f1cf68c8a25919d7159dd13a335737082061079863512da
SSDEEP

3072:bkRo6/fVPg4nIYm0ikeGBkbFEsAZKetIJnUjLncxypUO:bf6/fJgmIVuYhBwRIJUjDpJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7624606baba4796cb5e12b53a5869543

Files

7624606baba4796cb5e12b53a5869543
.exe windows:4 windows x86 arch:x86

a05e050c40abc04779a9032dedd5a2db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
FindFirstFileW
FindNextFileW
FindClose
GetEnvironmentVariableA
CreateMutexA
ReleaseMutex
OpenMutexA
TerminateProcess
DuplicateHandle
RtlUnwind
CreateFileA
ReadFile
CloseHandle
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CreateProcessA
TlsAlloc
TlsGetValue
TlsFree
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetCPInfo
LocalAlloc
QueryPerformanceCounter
GetDriveTypeA
WriteFile
GetStartupInfoA
GetShortPathNameA
FindResourceA
FindResourceW
LoadResource
SizeofResource
LockResource
FreeResource
GlobalUnlock
Sleep
SetHandleCount
FlushFileBuffers
ExitProcess
LocalFileTimeToFileTime
InterlockedIncrement
FindFirstFileA
FindNextFileA
CreateEventA
SetEvent
ResetEvent
GetFileSize
InterlockedExchange
TlsSetValue
CreateThread
GetCurrentThreadId
ResumeThread
SetThreadPriority
ExitThread
GetVersionExA
GetModuleHandleA
GetCommandLineW
FormatMessageA
GetDateFormatA
UnmapViewOfFile
MapViewOfFile
CreateFileW
VirtualQuery
IsBadWritePtr
GetCurrentThread
SetFileAttributesW
GetFileAttributesA
GetStringTypeW
RemoveDirectoryA
CompareStringA
lstrlenA
FreeEnvironmentStringsW
SetEndOfFile
CreateFileMappingA
GetStartupInfoW
SetEnvironmentVariableA
GetUserDefaultLangID
SetUnhandledExceptionFilter
lstrcmpiW
FileTimeToDosDateTime
InterlockedCompareExchange
GetTempPathW
lstrcmpA
LoadLibraryA
LoadLibraryW
GetProcAddress
GetLocaleInfoA
GetACP
GetVersion
GetFileType
GetTimeZoneInformation
GetLocaleInfoW
WriteConsoleA
OpenProcess
LoadLibraryExA
TerminateThread
SetThreadLocale
DeviceIoControl
SetFilePointer
GetStdHandle
InterlockedDecrement
MulDiv
GetFullPathNameA
GetConsoleOutputCP
lstrcmpiA
GetCurrentProcess
DisableThreadLibraryCalls
GetExitCodeThread
FileTimeToSystemTime
SetLastError
SetFileAttributesA
GetTempPathA
GetStringTypeExA
VirtualAlloc

msvcrt

fread
_osver
__CxxFrameHandler
_purecall
fwrite
sprintf
atof
fflush
_close
_except_handler3
ceil
_ismbblead
fsetpos
swscanf
_getpid
floor
localtime
_pctype
strrchr
strncpy
_isctype
fgetpos
atexit
malloc
strlen
__dllonexit
pow
__p__environ
_strlwr
_ftol
clock
_get_osfhandle
strchr
qsort
isspace
vsprintf
_filelengthi64
getenv
clearerr
_stricmp
__badioinfo
isxdigit
wcsncmp
wcscat
_strnicmp
_wtoi
strtoul
strncmp
_setjmp
__pioinfo
_getch
_setmode
isleadbyte
__p__fmode
time
_isatty
__p__commode
_fstat
__getmainargs
wcscspn
free
setlocale
strstr
atoi
memchr
_iob
gmtime
exit
memcmp
_read
iswdigit
puts
perror
fseek
strncat
iswctype
realloc
_snwprintf
_vsnprintf
_wcslwr
_mbscmp
_CIsqrt
strtok
_assert
_XcptFilter
_strcmpi
_mbsrchr
strcmp
_fileno
strcpy
_wcsicmp
_open_osfhandle
_pipe
wcslen
_umask
__setusermatherr
putchar
_snprintf
log
wcstoul
isdigit
_acmdln
sin
_unlink
rewind
__initenv
_flsbuf
_itow
_c_exit
memmove
strcspn
__lc_codepage
_lseek
_putenv
_adjust_fdiv
printf
_beginthreadex
towupper
localeconv
_fullpath
wcstol
_mkdir
_open
strcat
wctomb
_unlock
strpbrk
__p___initenv
_wtol
_utime
abort
_controlfp
_wcsnicmp
wcstombs
sscanf
strspn
_wcsupr
_onexit
rename
_chmod
fopen
fclose
_filbuf
bsearch
sqrt
wcsrchr
_dup
_wfopen
fgets
_strdup
_write
_vsnwprintf
_cexit
iswspace
atol
_dup2
_initterm
_stat
wcsstr
memset
toupper
remove
_ultoa
strtol
wcsncpy
srand
_CIpow
_exit
__set_app_type
ctime
__mb_cur_max
longjmp
_amsg_exit
_itoa
fputs
swprintf
_kbhit
fgetc
ftell
rand
cos
tolower
_getcwd
strerror
signal
_lseeki64
wcschr
memcpy
ungetc
_errno
_setjmp3

user32

GetDCEx
TrackPopupMenu
ClientToScreen
TranslateMessage
SetScrollPos
GetClassNameA
FillRect
GetScrollPos
GetMenuItemCount
ShowOwnedPopups
CreatePopupMenu
GetTopWindow
CallNextHookEx
GetWindowPlacement
SendMessageA
SystemParametersInfoA
EnableMenuItem
InsertMenuItemA
IsWindowEnabled
GetWindowRect
SetScrollRange
DestroyIcon
GetDlgItem
SetWindowsHookExA
GetMessageA
SetTimer
GetCursorPos
IntersectRect
MessageBoxA
EndDialog
LoadCursorA
GetMenuItemID
GetWindowLongA
IsIconic
CallWindowProcA
GetScrollInfo
DispatchMessageA
GetWindow
RegisterClipboardFormatA
GetMenu
GetDC
GetSystemMetrics
AdjustWindowRectEx
SetRect
SendDlgItemMessageA
GetForegroundWindow
ReleaseDC
CreateMenu
EmptyClipboard
PtInRect
EqualRect
GetParent
SetClipboardData
GetWindowDC
WinHelpA
LoadStringA
GetSysColorBrush
DeleteMenu
UnhookWindowsHookEx
LoadBitmapA
CreateWindowExA
SetWindowLongA
GetKeyboardType
DrawEdge
DrawTextA
SetForegroundWindow
GetMenuState
GetMenuStringA
IsRectEmpty
GetActiveWindow
CheckMenuItem
CharNextA
GetScrollRange
wsprintfA
CloseClipboard
GetLastActivePopup
FindWindowA
SetWindowPlacement
OffsetRect
EnumWindows
MapWindowPoints
IsDialogMessageA
DrawFrameControl
GetWindowTextA
GetCapture
KillTimer
GetDesktopWindow
RegisterClassA
IsChild
CharLowerA
ScreenToClient
IsZoomed
RegisterWindowMessageA
GetSysColor
MessageBeep
FrameRect
GetClassInfoA
UnregisterClassA
PeekMessageA
IsWindow
RedrawWindow
GetIconInfo
GetClientRect
SetScrollInfo
BeginPaint
UpdateWindow
GetFocus
OpenClipboard
DrawMenuBar
PostMessageA
SetWindowPos
ShowWindow
RemoveMenu
SetPropA
WaitMessage
SetWindowTextA
ShowCursor
DestroyWindow
DrawIcon
ScrollWindow
ReleaseCapture
InflateRect
SetFocus
WindowFromPoint
EnableWindow
DialogBoxParamA
InvalidateRect
DefWindowProcA
SetActiveWindow
GetKeyState
DrawIconEx
SetClassLongA
GetSystemMenu
PostQuitMessage
EnumThreadWindows
LoadIconA
GetMessagePos
DestroyCursor
GetPropA
RemovePropA

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a05e050c40abc04779a9032dedd5a2db

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 1024B - Virtual size: 4KB