95f426bc2ff05c40e8cf3e67254222a1

Sharing

Copy URL

Twitter E-mail

General

Target

95f426bc2ff05c40e8cf3e67254222a1
Size

504KB
MD5

95f426bc2ff05c40e8cf3e67254222a1
SHA1

adb75c9dcabe0e35c609246a419b1cd8f577a15c
SHA256

0e276c2eb893b99844c91ae0a29e7c9b95b36d8ea7d3908734e35c9bdde04ace
SHA512

af89546c5cc05872cec0221430c885f75227c5288fe6b38e31bf4df7ad6272f3ff4f3a856d11717f3876b5525a51f046937859223e3bf516f07f1f751b348228
SSDEEP

12288:dxTpcr2Jl5zjL9S2RLh3EmUdyuUpoNjZvUitMtI:dxTpoq5SO3LkoijtMtI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95f426bc2ff05c40e8cf3e67254222a1

Files

95f426bc2ff05c40e8cf3e67254222a1
.exe windows:4 windows x86 arch:x86

aec70d63080b74b14ccee78d6eacb3ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wvsprintfW
FindWindowExW
OemKeyScan
InSendMessage
RegisterClassExA
DdeCmpStringHandles
CheckMenuItem
CountClipboardFormats
DlgDirSelectExW
DestroyMenu
CloseDesktop
OpenWindowStationA
DdeCreateStringHandleW
DestroyIcon
ToUnicodeEx
RegisterClassA
IsWindowVisible

comctl32

InitCommonControlsEx

kernel32

UnhandledExceptionFilter
VirtualFree
GetStringTypeExW
SetConsoleCtrlHandler
SetHandleCount
EnumSystemLocalesA
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
SetStdHandle
WaitForSingleObjectEx
GetLastError
LeaveCriticalSection
HeapCreate
FreeLibrary
TlsAlloc
GetCurrentThread
TlsGetValue
GetConsoleOutputCP
GetProcAddress
GetCurrentProcess
GetModuleHandleA
InterlockedIncrement
GetProfileStringA
CloseHandle
GetDateFormatA
GetModuleFileNameA
VirtualAlloc
LCMapStringW
SetFilePointer
IsDebuggerPresent
HeapDestroy
GetCommandLineA
GetUserDefaultLCID
GetLocaleInfoA
CreateMutexA
GetProfileSectionA
FreeEnvironmentStringsA
HeapSize
ExitProcess
GetLocaleInfoW
GetCurrentThreadId
WideCharToMultiByte
HeapFree
GetCPInfo
GetThreadContext
CompareStringA
RemoveDirectoryA
SetEnvironmentVariableA
GetModuleHandleW
IsValidCodePage
OutputDebugStringW
GetThreadTimes
GetConsoleCP
SetUnhandledExceptionFilter
InterlockedDecrement
WriteConsoleA
CompareStringW
GetEnvironmentStrings
LCMapStringA
MultiByteToWideChar
CreateWaitableTimerW
GetACP
TlsSetValue
GetTimeFormatA
ReadFile
WriteFile
LocalFileTimeToFileTime
GetCalendarInfoA
Sleep
FindAtomW
VirtualQuery
InterlockedExchange
TlsFree
DeleteCriticalSection
GetStringTypeA
GetCurrentProcessId
FlushFileBuffers
WriteConsoleW
GetStringTypeW
SetLastError
GetConsoleMode
GetStartupInfoA
OpenMutexA
RtlUnwind
GetTickCount
IsValidLocale
GetFileAttributesExW
GetTimeZoneInformation
GetFileType
HeapReAlloc
HeapAlloc
QueryPerformanceCounter
GetEnvironmentStringsW
EnterCriticalSection
TerminateProcess
InitializeCriticalSectionAndSpinCount
LoadLibraryA
RtlZeroMemory
CreateFileA
GetOEMCP
GetStdHandle

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aec70d63080b74b14ccee78d6eacb3ea

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 175KB - Virtual size: 175KB

.rdata Size: 9KB - Virtual size: 40KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 175KB - Virtual size: 175KB

.rdata
Size: 9KB - Virtual size: 40KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 2KB - Virtual size: 2KB