890a86ad4912402233e1c5aa07c36350

Sharing

Copy URL Twitter E-mail

General

Target

890a86ad4912402233e1c5aa07c36350
Size

270KB
MD5

890a86ad4912402233e1c5aa07c36350
SHA1

a956ba4ece8d26cc97f00b3e95d99a80e780f869
SHA256

14b4b5f1adde31e54c187ff75fb93e85ff7e83c452e5d7b54f7ebdc990c45a11
SHA512

49d8ff8a20f3b195fc1aaad02a79403c75bdfb1b8600c2d86383f4f6ab81c32b074f6593bcf738f52e05c99a6f949caded0b7b5a06966d4f7496ee7f1fecb01b
SSDEEP

6144:wSF3Rtw/ruQimAQdxgfm2Q8R1Dh35gA2VJ2tkT/8Pel:wS1Rtw/rliVQsfBQ8Rp15gf8t0/8ml

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
890a86ad4912402233e1c5aa07c36350

Files

890a86ad4912402233e1c5aa07c36350
.exe windows:4 windows x86 arch:x86

c4cab1efee65acb48458f649628cbda2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetDriveTypeA
FindClose
GetPrivateProfileStringA
GetModuleFileNameA
GetShortPathNameA
GetVersionExA
MoveFileExA
WritePrivateProfileStringA
GetTempPathA
GetFullPathNameA
SetFileTime
GetWindowsDirectoryA
lstrlenA
GlobalHandle
lstrcatA
LocalAlloc
WinExec
GetDiskFreeSpaceA
FindFirstFileA
GlobalAlloc
WriteFile
GlobalUnlock
GlobalFree
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
TerminateProcess
ExitProcess
GetLastError
MoveFileA
CloseHandle
DeleteFileA
RaiseException
LocalFree
SetFileAttributesA
SetFilePointer
GetCurrentDirectoryA
SetEnvironmentVariableA
SetCurrentDirectoryA
HeapFree
HeapAlloc
CreateDirectoryA
HeapSize
RtlUnwind
HeapCompact
ReadFile
IsBadReadPtr
CreateFileA
GetStringTypeA
LoadLibraryA
GlobalLock
GetFileAttributesA
GetStringTypeW
IsBadCodePtr
GetProcAddress

user32

DestroyWindow
SetWindowPos
SendMessageA
GetSysColor
GetWindow
GetDlgItem
ScreenToClient
GetWindowRect
BeginPaint
EndPaint
FillRect
ReleaseDC
GetClientRect
SetWindowLongA
GetDC
SetDlgItemTextA
wsprintfA
SetWindowTextA
GetSystemMetrics
GetParent
PostMessageA
GetDlgItemTextA
OemToCharA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassA
FindWindowA
GetLastActivePopup
BringWindowToTop
AdjustWindowRectEx
UpdateWindow
IsIconic
RedrawWindow
PostQuitMessage
DefWindowProcA
ShowWindow
KillTimer
SetTimer
SetFocus
DialogBoxIndirectParamA
EndDialog
EnableWindow
MessageBoxA
CreateDialogIndirectParamA
IsDialogMessageA
GetMessageA
TranslateMessage
DispatchMessageA
RegisterWindowMessageA

gdi32

CreateFontIndirectA
GetSystemPaletteEntries
CreateSolidBrush
DeleteObject
GetStockObject
ExtTextOutA
SetBkColor
GetObjectA
GetDeviceCaps
StretchDIBits
CreatePalette
SelectPalette
IntersectClipRect
RealizePalette
SetTextColor
SetBkMode
TextOutA
SelectObject
DeleteDC
CreateDIBPatternBrush
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt

comdlg32

GetSaveFileNameA

advapi32

RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey

shell32

ShellExecuteA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerFindFileA

comctl32

ord17

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4cab1efee65acb48458f649628cbda2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

version

comctl32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 1KB