77ede631e1ba40f67c3921f41b4cde14

Sharing

Copy URL Twitter E-mail

General

Target

77ede631e1ba40f67c3921f41b4cde14
Size

404KB
MD5

77ede631e1ba40f67c3921f41b4cde14
SHA1

51941ebf81213cf29a20e0541a993939d04c7d2e
SHA256

8cc790fceac91ce3c763115f1a14f5229176a2294e7478488f1841dcf3079774
SHA512

a6d4c250a9b89cc7df0a87a58b1d3c0aad9fe558a2f01ab8f6d6ae5eb5da8a60b12492899436fb55f1ba2bdef2682e4d5cf1bf81625ff9f3674ed833ef11eda4
SSDEEP

3072:ZonY9ZkhMR+mBFfOFXODpYNnvUWDSKxFsCRRtRxLEXHl6dm6PGb8TDlqPx6IntA1:iYbkeR+m38YwVmaGYk0InUG7qfw6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77ede631e1ba40f67c3921f41b4cde14

Files

77ede631e1ba40f67c3921f41b4cde14
.exe windows:4 windows x86 arch:x86

9763e1a23625533f17da19adb326eea7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
VirtualLock
MulDiv
GetVersion
DeleteFileA
SetPriorityClass
GetThreadPriority
LocalFileTimeToFileTime
RemoveDirectoryA
SetProcessPriorityBoost
UnlockFileEx
AddAtomA
ExitProcess
CopyFileExA
GetVersionExA
BuildCommDCBAndTimeoutsA
FreeConsole
GetExitCodeThread
GetFileTime
OpenWaitableTimerA
GetLocaleInfoA
RequestDeviceWakeup
GetNumberOfConsoleMouseButtons
DeleteTimerQueue
QueueUserWorkItem
SetHandleInformation
SizeofResource
VerifyVersionInfoA
WaitForMultipleObjects
GetDriveTypeA
GetVersionExA
GetExpandedNameA
OpenJobObjectA
GetConsoleFontSize
GetProcessHeap
OpenFileMappingA
SetUnhandledExceptionFilter
CancelWaitableTimer
OpenProcess
GetProcessVersion
SetConsoleHardwareState
GetProcessWorkingSetSize
IsBadStringPtrA
GetTickCount
AllocConsole
GetFullPathNameA
SetSystemPowerState
GetThreadLocale
SetFilePointerEx
VirtualProtectEx
GetUserGeoID
SetCommTimeouts
GetConsoleCursorInfo
GetDefaultCommConfigA
WriteConsoleOutputCharacterW
BeginUpdateResourceA
GetCalendarInfoA
WriteProfileStringA
LockFileEx
LocalLock
LocalFlags
SetCommMask
Process32Next
FreeResource
SetConsoleTitleA
RemoveDirectoryA
LocalShrink
_lwrite
GetDriveTypeA
ReleaseSemaphore
ChangeTimerQueueTimer
GetComputerNameA
GetEnvironmentVariableA
GetDevicePowerState
FindClose
GetShortPathNameA
VirtualAlloc
QueueUserAPC
SetCommState
IsValidCodePage
SetThreadPriority
ReplaceFile
GetAtomNameA
CreatePipe
MapUserPhysicalPages
IsBadHugeWritePtr
GetCommandLineA
CreateDirectoryA
WriteProcessMemory
CreateThread
GetMailslotInfo
GetDevicePowerState
ChangeTimerQueueTimer
FreeResource
SetSystemPowerState
GetPrivateProfileSectionNamesA
OpenJobObjectA
Process32First
SetVolumeMountPointA
GetSystemTimes
ClearCommError
OpenEventA
UnregisterWaitEx
GetFileSize
GetConsoleInputExeNameA
GetCurrentProcess
GetNumberOfConsoleInputEvents
ShowConsoleCursor
GetCurrentThreadId
IsValidCodePage
FreeResource
GetConsoleOutputCP
EnumSystemLocalesA
ReadConsoleA
SetLastConsoleEventActive
OpenJobObjectA
GetConsoleCursorMode
GetWindowsDirectoryA
ReleaseMutex
ReleaseMutex
GetConsoleTitleA
GetFullPathNameA
GetConsoleCursorInfo
FindResourceExA
GetVolumeNameForVolumeMountPointA
GlobalUnWire
WriteConsoleInputA
SetMailslotInfo
SetTapePosition
GetVolumeNameForVolumeMountPointA
GetCompressedFileSizeA
ClearCommError
FlushConsoleInputBuffer
GetTickCount
QueryInformationJobObject
GlobalUnlock
CommConfigDialogA
GetConsoleMode
GetLongPathNameA
GetLogicalDrives
LockResource
EnumSystemLocalesA
GetSystemTime
LZOpenFileA
SetComputerNameExA
ReplaceFileA
GetDevicePowerState
GlobalDeleteAtom
CommConfigDialogA
GetSystemDirectoryA
SetFileTime
CreateTimerQueueTimer
GetVersion
ClearCommBreak
GetModuleHandleA
VirtualProtectEx
GetThreadPriorityBoost
GetFileAttributesExA
DisconnectNamedPipe
FormatMessageA
LocalReAlloc
GetCommandLineA
UnregisterConsoleIME
GetPrivateProfileSectionA
IsDebuggerPresent
GlobalAddAtomA
RegisterWaitForSingleObject
GetCurrencyFormatA
GetFileSizeEx
WaitForDebugEvent
GetThreadPriorityBoost
EndUpdateResourceA
GetCurrentDirectoryA
UpdateResourceA
GetNamedPipeHandleStateA
GetVersionExA
FindCloseChangeNotification
lstrcmpiA
ReadConsoleOutputCharacterA
WriteConsoleInputA
SetCurrentDirectoryA

user32

IsClipboardFormatAvailable
HideCaret
ScreenToClient
DialogBoxParamA
DlgDirSelectComboBoxExA
GetCapture
GetRawInputData
IsCharUpperA
BroadcastSystemMessageExW
GetDC
GetMenuItemID
GetQueueStatus
DispatchMessageA
DrawTextExA
AllowSetForegroundWindow
LoadAcceleratorsA
GetMenuCheckMarkDimensions
RegisterDeviceNotificationA
LoadStringA
SetMenuItemInfoA
CreateWindowStationW
CreateDialogIndirectParamA
GetIconInfo
SetActiveWindow
IsCharAlphaNumericW
GetScrollInfo
CallWindowProcA
DefWindowProcA
OpenWindowStationA
IsCharUpperA
SetShellWindow
LoadMenuA
GetClassInfoExW
GetInternalWindowPos
GetInternalWindowPos
IsHungAppWindow
GetThreadDesktop
GetUserObjectSecurity
GetWindowRgnBox
SendMessageCallbackA
BuildReasonArray
BroadcastSystemMessageExA
SetWindowStationUser
GetWindowContextHelpId
SendDlgItemMessageA
SetWindowsHookExW
IsCharLowerA
SetWindowPlacement
SetRectEmpty
GetNextDlgGroupItem
GetMenuCheckMarkDimensions
GetRegisteredRawInputDevices
IsCharUpperA
DefFrameProcA
CreateDialogParamA
SetScrollInfo
CopyRect
GetThreadDesktop
GetMenuCheckMarkDimensions
OemToCharA
IsDialogMessage
GetPropA
ChildWindowFromPointEx
PeekMessageA
CreateWindowExA
GetWindowTextA
DeregisterShellHookWindow
RealGetWindowClassA
QuerySendMessage
TranslateMDISysAccel
ScreenToClient
PaintDesktop
GetDlgItemTextA
TrackPopupMenu
CharLowerBuffA
CallMsgFilterA
GetProcessDefaultLayout
SetMenu
GetScrollBarInfo
GetProcessDefaultLayout
CharLowerBuffA
SetWindowsHookA
GetScrollRange

ws2_32

closesocket

Exports

Exports

CreateVlbofghgp
CloseDvhitfgenaw
GetMinywaypp
BeginYchgmolxflf
Wpbdvhgv
Flksibh

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 669KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 272KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9763e1a23625533f17da19adb326eea7

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 48KB - Virtual size: 669KB

.idata Size: 272KB - Virtual size: 269KB

.rsrc Size: 80KB - Virtual size: 78KB

.itext
Size: - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 669KB

.idata
Size: 272KB - Virtual size: 269KB

.rsrc
Size: 80KB - Virtual size: 78KB