78062dece5a68b52e137e2846a68069b

Sharing

Copy URL Twitter E-mail

General

Target

78062dece5a68b52e137e2846a68069b
Size

554KB
MD5

78062dece5a68b52e137e2846a68069b
SHA1

20fabf5eeece72e93eeeca42825babfc630739ee
SHA256

0a0d31f8218a820b5838db7a60c2579ec193cce99c751b42a5ce890f3e9a8b7d
SHA512

e652bb25a64450219e078c3436ecc390b732e1215ba34a24c6b1534cf096ad73b07655ade9f127a711c317b7781133bdfa5b4c8181749a4300aaf76afe540eec
SSDEEP

12288:wgF6d6Ds7tL2Hhrh7l7LycsDVHUwLLaAokBP/:H6dIs7xchrh7kDZUWLa+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78062dece5a68b52e137e2846a68069b

Files

78062dece5a68b52e137e2846a68069b
.exe windows:4 windows x86 arch:x86

cd83c47432e8ce912250599d6cfa6645

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
CloseHandle
GetACP
lstrcmpW
lstrcpyW
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetWindowsDirectoryW
GetCurrentDirectoryW
lstrcpynW
GetSystemDirectoryW
lstrcmpiW
CompareStringW
lstrcatW
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
CreateFileW
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetVersion
GetStartupInfoA
GetModuleHandleA
RtlUnwind
MulDiv
lstrlenW
ExitProcess
Sleep
FormatMessageA
GetProfileIntA
FreeLibrary
LoadLibraryExW
LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetProfileStringA
GetCPInfo
ExpandEnvironmentStringsW
LoadLibraryW
GetCommandLineW
ReadConsoleW
GetSystemTime
MultiByteToWideChar
GetThreadLocale
GetTimeFormatW
GetConsoleOutputCP
LocalFree
WriteConsoleW
WriteFile
GetStdHandle
GetFileType
GetConsoleMode
FormatMessageW
WideCharToMultiByte
VirtualProtect
GetCommandLineA

user32

DestroyIcon
SetDlgItemTextW
SetCaretBlinkTime
ShowWindow
KillTimer
SetTimer
SystemParametersInfoW
SendDlgItemMessageW
SetWindowLongW
GetCaretBlinkTime
GetDlgItem
GetParent
WinHelpW
wsprintfW
GetWindowLongW
LoadStringW
SetWindowPos
OffsetRect
CopyRect
GetWindowRect
CheckDlgButton
EndDialog
EnableWindow
SetDoubleClickTime
SwapMouseButton
MapWindowPoints
PtInRect
LoadImageW
IsDlgButtonChecked
ReleaseDC
GetDC
DestroyCursor
ShowCursor
SetDlgItemInt
CheckRadioButton
GetDlgItemInt
DialogBoxParamW
GetWindowTextW
GetFocus
GetSystemMetrics
DrawTextW
SetCursor
CharToOemA
TranslateAcceleratorW
PostMessageW
LoadCursorW
RegisterClassW
SetScrollInfo
ScrollWindowEx
SetRect
LoadIconW
DispatchMessageW
GetSysColorBrush
MessageBeep
InvalidateRect
DefWindowProcW
SendMessageW
BeginPaint
GetClientRect
EndPaint
TranslateMessage
DestroyWindow
PostQuitMessage
CharNextW
CreateWindowExW
GetDesktopWindow
MessageBoxW
GetSysColor

advapi32

RegQueryValueExW
RegCloseKey
RegSetValueExA
RegEnumValueA
QueryServiceStatus
RegCreateKeyW
RegSetValueExW
RegOpenKeyW
RegDeleteValueW
RegQueryValueW
RegEnumValueW
RegSetValueW
RegOpenKeyExW

gdi32

ExtTextOutW
StartDocW
StartPage
EndPage
EndDoc
SetTextAlign
GetTextExtentPoint32W
GetTextMetricsW
MoveToEx
LineTo
GetFontResourceInfoW
GetFontData
GetDeviceCaps
DeleteDC
DeleteObject
SelectObject
CreateFontIndirectW
TranslateCharsetInfo
CreateCompatibleDC
GetStockObject
GetLayout
BitBlt
SetDIBColorTable
GetObjectW
RemoveFontResourceW

ole32

CoUninitialize

Sections

.text
Size: 533KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 498KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd83c47432e8ce912250599d6cfa6645

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

Sections

.text Size: 533KB - Virtual size: 533KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 498KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 533KB - Virtual size: 533KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 498KB

.rsrc
Size: 1KB - Virtual size: 1KB