97d111962e5b964a7b4dbf0de1794c1f

Sharing

Copy URL Twitter E-mail

General

Target

97d111962e5b964a7b4dbf0de1794c1f
Size

537KB
MD5

97d111962e5b964a7b4dbf0de1794c1f
SHA1

e2939dffab7bff152cd07f5d2bbd12597330d43a
SHA256

348a7b801cb758f5b6bd00164f7ad52c7d0c79e9077917892ce95a0fe47625e8
SHA512

0f8d3a8acf7c46546a7b585b5c8f7a42b4bd91b8ace12b20cf4ccda918d636490aac64d01332c4ab29baa228952e142dc817bffeab9adbd83c05149de98753d5
SSDEEP

12288:cegJhS1p3iKGSJWbaFLKs/P5BZUe4kzz0AvE:6JhS19iJSJWbak6P5BOVk/tv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97d111962e5b964a7b4dbf0de1794c1f

Files

97d111962e5b964a7b4dbf0de1794c1f
.exe windows:4 windows x86 arch:x86

f31c0cceb53cfa54c8288d98f0902a75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractAssociatedIconExW
SHGetPathFromIDListA
SHGetDataFromIDListW
ExtractAssociatedIconExA

user32

SetCaretPos
RegisterClassA
LoadCursorW
GetDlgItem
DdeCreateStringHandleA
GetSysColorBrush
CloseDesktop
CallNextHookEx
GetWindow
DrawAnimatedRects
DrawTextW
InvertRect
GetDlgItemTextW
VkKeyScanExA
CopyAcceleratorTableA
GetKeyboardState
DispatchMessageA
DlgDirListA
EnumClipboardFormats
RemoveMenu
DlgDirListW
DdeInitializeW
WinHelpA
GetKBCodePage
SetUserObjectInformationA
RegisterClassExA
PostMessageW

comdlg32

GetFileTitleA

kernel32

GetCurrentThread
GetLastError
InterlockedDecrement
LoadLibraryA
SetFilePointer
GetTickCount
SetStdHandle
LCMapStringA
IsDebuggerPresent
GetCurrentThreadId
GetEnvironmentStrings
GetUserDefaultLCID
TlsGetValue
LeaveCriticalSection
GetStringTypeA
WriteConsoleW
IsValidCodePage
InterlockedIncrement
InitializeCriticalSection
IsValidLocale
QueryPerformanceCounter
WideCharToMultiByte
FoldStringW
GetModuleFileNameA
GetEnvironmentStringsW
FreeLibraryAndExitThread
EnumSystemLocalesA
GetConsoleOutputCP
FreeEnvironmentStringsW
RtlUnwind
HeapCreate
SetLastError
WriteConsoleA
SetConsoleTitleW
GetLocaleInfoA
HeapFree
CompareStringW
GetSystemTimeAsFileTime
HeapDestroy
FlushFileBuffers
TlsSetValue
GetStringTypeW
TlsAlloc
ExitProcess
Sleep
MultiByteToWideChar
InterlockedExchange
TerminateProcess
GetConsoleMode
FreeEnvironmentStringsA
LocalCompact
ReadConsoleOutputCharacterA
LockFile
SetUnhandledExceptionFilter
CreateMutexA
GetCommandLineA
GetMailslotInfo
GetDateFormatA
VirtualQuery
ReleaseSemaphore
UnhandledExceptionFilter
SetHandleCount
CreateRemoteThread
ExpandEnvironmentStringsA
HeapReAlloc
GetLocaleInfoW
GetFileType
EnterCriticalSection
GetVersionExA
SetEnvironmentVariableA
ReadFile
EnumCalendarInfoExW
GetProcAddress
TlsFree
GetConsoleCP
GetACP
GetModuleHandleA
EnumSystemLocalesW
GetStartupInfoA
GetTimeZoneInformation
GetCPInfo
CompareStringA
GetOEMCP
SetConsoleCtrlHandler
GetProcessHeap
CloseHandle
FreeLibrary
DeleteCriticalSection
WriteFile
GetLongPathNameW
ReadConsoleOutputAttribute
EnumTimeFormatsA
VirtualFree
CreateFileA
GetStdHandle
GetCurrentProcess
HeapAlloc
LCMapStringW
GetTimeFormatA
HeapSize
OpenMutexA
GetCurrentProcessId
VirtualAlloc

advapi32

RegReplaceKeyW
LookupPrivilegeNameA
StartServiceW
RegCreateKeyExW
RegQueryInfoKeyA
LookupSecurityDescriptorPartsA
RegConnectRegistryA
RegLoadKeyW

comctl32

InitCommonControlsEx

Sections

.text
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f31c0cceb53cfa54c8288d98f0902a75

Headers

File Characteristics

Imports

shell32

user32

comdlg32

kernel32

advapi32

comctl32

Sections

.text Size: 195KB - Virtual size: 194KB

.rdata Size: 10KB - Virtual size: 23KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 195KB - Virtual size: 194KB

.rdata
Size: 10KB - Virtual size: 23KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 14KB - Virtual size: 13KB