98202efc22c3b6bb6c22feb17d1edba8

Sharing

Copy URL Twitter E-mail

General

Target

98202efc22c3b6bb6c22feb17d1edba8
Size

39KB
MD5

98202efc22c3b6bb6c22feb17d1edba8
SHA1

b4f26d5c646acc6a879edfbadbfa23e50a7d8d1e
SHA256

ca861fbd61f80e9eb9560e42aa302484c57e48b683996f3dfd50df6bd36689e8
SHA512

6ab3cb58975267b9b6a85dbfccdb791bb7b64ba763cbb5dfdfd74926d108ac7a6c9c44865cedd373269843b5c2d015f0a273e352e11ff018b90d3cec2866f0ec
SSDEEP

384:BJXf4EZcPaMwQnT/qSSMAIgyWEDk+qK5LM5k4HoP+ExX1Lyzu1B6bmhBnqCiQ3Tk:H7cCM1kK5OkhP1LyzScCLqgQp3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98202efc22c3b6bb6c22feb17d1edba8

Files

98202efc22c3b6bb6c22feb17d1edba8
.exe windows:4 windows x86 arch:x86

9fd21dfc4d15f880319b76081972076d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
CancelIo
ClearCommError
CloseHandle
CompareStringA
CreateMailslotW
CreateSemaphoreA
DisableThreadLibraryCalls
EndUpdateResourceW
EnumSystemCodePagesW
EnumSystemLocalesW
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindCloseChangeNotification
FindFirstChangeNotificationA
FindResourceW
FlushInstructionCache
FoldStringW
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineW
GetComputerNameA
GetConsoleAliasExesW
GetConsoleCP
GetConsoleInputExeNameA
GetConsoleKeyboardLayoutNameA
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDefaultCommConfigA
GetDefaultCommConfigW
GetDiskFreeSpaceExW
GetDriveTypeW
GetEnvironmentStringsW
GetLargestConsoleWindowSize
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleHandleA
GetModuleHandleW
GetPrivateProfileSectionNamesA
GetProfileStringA
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetSystemTime
GetVersion
GlobalFree
GlobalReAlloc
GlobalUnWire
HeapFree
HeapWalk
IsBadWritePtr
IsValidCodePage
LoadResource
LockFile
MoveFileExA
MoveFileWithProgressW
OpenMutexA
PurgeComm
QueryDosDeviceA
ReadConsoleA
ReadConsoleInputA
ResumeThread
SetCommBreak
SetCommConfig
SetConsoleCtrlHandler
SetConsoleIcon
SetDefaultCommConfigA
SetEvent
SetFileTime
SetHandleInformation
SetLastError
SetLocalTime
SetNamedPipeHandleState
SetTimeZoneInformation
SetVDMCurrentDirectories
Toolhelp32ReadProcessMemory
UnlockFile
VDMOperationStarted
VirtualProtect
WaitForMultipleObjectsEx
WriteConsoleInputA
WriteConsoleInputW
WriteConsoleInputVDMA
WriteConsoleOutputAttribute
WriteFileEx
WritePrivateProfileStructW
WriteProfileStringA
_llseek
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW

user32

AppendMenuA
CallMsgFilterA
CallWindowProcW
ChangeMenuA
ChangeMenuW
CharUpperA
CharUpperW
ChildWindowFromPointEx
CloseDesktop
CreateIconFromResource
CreateIconFromResourceEx
DdeAbandonTransaction
DdeAccessData
DdeAddData
DdeGetQualityOfService
DdeNameService
DdePostAdvise
DdeQueryStringW
DdeReconnect
DdeSetQualityOfService
DefDlgProcA
DeleteMenu
DestroyIcon
DialogBoxIndirectParamA
DlgDirListComboBoxW
DlgDirSelectExW
DrawMenuBar
DrawTextExW
EndMenu
ExcludeUpdateRgn
FrameRect
GetActiveWindow
GetCaretPos
GetClipCursor
GetCursor
GetCursorInfo
GetCursorPos
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetMenu
GetMenuState
GetParent
GetProcessWindowStation
GetQueueStatus
GetTitleBarInfo
GetUpdateRect
GetWindowDC
GetWindowLongA
GetWindowLongW
GrayStringW
HideCaret
ImpersonateDdeClientWindow
InSendMessageEx
InsertMenuA
IsIconic
LoadBitmapA
LoadCursorA
LoadKeyboardLayoutW
LoadStringA
LookupIconIdFromDirectory
MenuItemFromPoint
MessageBeep
MonitorFromPoint
MsgWaitForMultipleObjects
PackDDElParam
PostMessageW
RedrawWindow
RegisterClassExW
RegisterHotKey
ScrollChildren
ScrollWindow
SendDlgItemMessageA
SendIMEMessageExW
SendInput
SetActiveWindow
SetLastErrorEx
SetMenuItemBitmaps
SetProcessWindowStation
SetPropW
SetScrollRange
SetUserObjectSecurity
SetWindowLongW
ShowCursor
TabbedTextOutA
ToUnicodeEx
TranslateAcceleratorA
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHook
UnloadKeyboardLayout
UnregisterHotKey
WaitMessage
WinHelpA
wvsprintfA

gdi32

AnimatePalette
CloseFigure
CreateBrushIndirect
CreateDIBPatternBrush
CreateFontW
DeleteColorSpace
DeleteEnhMetaFile
Ellipse
ExtCreatePen
ExtTextOutA
GdiComment
GdiFlush
GdiGetBatchLimit
GdiSetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthFloatW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDeviceCaps
GetMetaFileA
GetMiterLimit
GetPixel
GetRegionData
GetSystemPaletteUse
GetTextFaceW
GetViewportOrgEx
GetWinMetaFileBits
GetWindowOrgEx
IntersectClipRect
PlayMetaFileRecord
Polygon
Polyline
ResetDCA
RoundRect
ScaleWindowExtEx
SelectBrushLocal
SetAbortProc
SetICMMode
SetMagicColors
SetMapMode
SetMetaFileBitsEx
SetTextColor
SetViewportOrgEx
SetWinMetaFileBits
SetWorldTransform
StretchDIBits

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dJej
Size: 3KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fd21dfc4d15f880319b76081972076d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 22KB - Virtual size: 34KB

.dJej Size: 3KB - Virtual size: 21KB

.rsrc Size: 6KB - Virtual size: 10KB

.reloc Size: 1024B - Virtual size: 3KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 22KB - Virtual size: 34KB

.dJej
Size: 3KB - Virtual size: 21KB

.rsrc
Size: 6KB - Virtual size: 10KB

.reloc
Size: 1024B - Virtual size: 3KB