98fdbe1220543ba822badc99000e33d9

Sharing

Copy URL Twitter E-mail

General

Target

98fdbe1220543ba822badc99000e33d9
Size

155KB
MD5

98fdbe1220543ba822badc99000e33d9
SHA1

7e59d6904e1a402e9c4937395373a1d3448bd38c
SHA256

8ae00b4caaa4f58f45d1c852527d8dfcebb1aed3f365952a0ee42e0f8ad88c16
SHA512

25779dbfabd546e649ae29b6f8b85cef63e73823795f7c350450b330c72575cf76599f908aa619841ca6a530ceb3bd7bb3b1fd71f432e2c2a059b1b553da34c3
SSDEEP

3072:bUiRR4mbUw26M2uOFab99lw4+ISIUdMDjWJ5sydVgObN7:n4aUwa2EFRZgdmjWJ5syXgY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98fdbe1220543ba822badc99000e33d9

Files

98fdbe1220543ba822badc99000e33d9
.exe windows:4 windows x86 arch:x86

41450b4eeafc8c0451a270bfd5a46394

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetDiskFreeSpaceA
GetStringTypeW
CreateFileA
HeapFree
FormatMessageA
GetStartupInfoA
GetSystemDefaultLangID
GetDateFormatA
lstrcpyA
WideCharToMultiByte
GetFileSize
GetCommandLineA
GetLocaleInfoA
LocalAlloc
GetModuleHandleA
HeapAlloc
VirtualQuery
SizeofResource
FindFirstFileA
GetStringTypeA
FindResourceA
SetErrorMode
LoadLibraryExA
GetFileAttributesA
GlobalAlloc
SetThreadLocale
MoveFileA
GetVersionExA
GetThreadLocale
lstrlenA
GetVersion
ExitThread
GetEnvironmentStrings
GetCurrentThreadId
VirtualFree
GetACP
LoadLibraryA
lstrcpynA
EnterCriticalSection
GetCPInfo
DeleteFileA
FindClose
VirtualAlloc
GetFileType
GetStdHandle
GetTickCount
ExitProcess
ResetEvent
VirtualAllocEx

ntdll

RtlDeleteCriticalSection
wcscat

msvcrt

sqrt
exit
atol
malloc
strlen
wcstol
_acmdln
time
memset
calloc
rand
memmove
srand
wcsncmp
mbstowcs
memcpy
swprintf
tolower
wcscspn
wcschr
clock

user32

EnumWindows
DeferWindowPos
GetScrollInfo
DrawIcon
GetSubMenu
ShowWindow
FillRect
IsDialogMessageA
IsWindowEnabled
DrawFrameControl
DefFrameProcA
IsMenu
GetMenuItemInfoA
GetIconInfo
GetClipboardData
IsWindowVisible
DrawTextA
SystemParametersInfoA
GetClassInfoA
GetMenuState
GetMenuStringA
DrawMenuBar
GetMenuItemCount
CheckMenuItem
CallWindowProcA
GetWindowTextA
DispatchMessageW
GetCursorPos
GetKeyNameTextA
GetDesktopWindow
ClientToScreen
SetWindowPos
GetDCEx
SetWindowLongA
RegisterClassA
EqualRect
GetMenuItemID
CreateIcon
GetMenu
BeginPaint
BeginDeferWindowPos
HideCaret
EnableWindow
CreateMenu
CharLowerBuffA
DefMDIChildProcA
DrawIconEx
GetActiveWindow
GetScrollPos
EndPaint
DrawEdge
GetForegroundWindow
GetMessagePos
GetCursor
IsChild
GetClassLongA
GetClientRect
CreatePopupMenu
EnumChildWindows
EnumThreadWindows
CharNextA
CharLowerA
SetCursor
CharToOemA
CreateWindowExA
CallNextHookEx
GetWindow
EnableMenuItem
MessageBoxA
FindWindowA
DispatchMessageA
ShowScrollBar
GetDlgItem
GetCapture
GetSysColor
GetFocus
FrameRect
EndDeferWindowPos
GetLastActivePopup
EnableScrollBar
GetDC
GetSysColorBrush
DefWindowProcA
GetScrollRange
SetTimer
GetKeyState
GetPropA
SetWindowTextA

Sections

.CODE
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41450b4eeafc8c0451a270bfd5a46394

Headers

File Characteristics

Imports

kernel32

ntdll

msvcrt

user32

Sections

.CODE Size: 29KB - Virtual size: 28KB

.idata Size: 119KB - Virtual size: 118KB

.rdata Size: 4KB - Virtual size: 3KB

INIT Size: 512B - Virtual size: 76KB

.tls Size: 1KB - Virtual size: 1KB

.CODE
Size: 29KB - Virtual size: 28KB

.idata
Size: 119KB - Virtual size: 118KB

.rdata
Size: 4KB - Virtual size: 3KB

INIT
Size: 512B - Virtual size: 76KB

.tls
Size: 1KB - Virtual size: 1KB