99284701a54002f8cc35a9f2d05f80b1

Sharing

Copy URL Twitter E-mail

General

Target

99284701a54002f8cc35a9f2d05f80b1
Size

208KB
MD5

99284701a54002f8cc35a9f2d05f80b1
SHA1

39261a1f075a3709090fc1beecfa5bba0ebfb94b
SHA256

438f1fb667b1b5b972fcdd0caf70429c1ea7cca4bd3e8ffdf298b20fdfbb65e3
SHA512

ed4958f77e58506a0f6474ab2332a43bd6276704ad62d8902bd9147988213473d41716b21efd35138c48c958a482230f9b61a8c098b4352fea4cc0eedf44e12d
SSDEEP

3072:jNgQel///vOkkeD2vlywfVc20MMccro7M0pR+Bgy4dIsA3/CZ6fSNZE0FbNuj:jNVeV//vOkkeulr620MMzotAaNZpdNk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99284701a54002f8cc35a9f2d05f80b1

Files

99284701a54002f8cc35a9f2d05f80b1
.exe windows:4 windows x86 arch:x86

5c9ecba8cba476acb6bde34174ed3759

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
GetLogicalDrives
GetModuleFileNameA
MulDiv
GlobalFree
GlobalAlloc
OpenProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
TerminateProcess
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
WinExec
HeapDestroy
CreateFileA
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
HeapSize
GetOEMCP
GetACP
GetCPInfo
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA
GetLastError
HeapAlloc
HeapReAlloc
HeapFree
GetCurrentProcess
ExitProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetFileAttributesA
RtlUnwind
DeleteFileA
Sleep
GetLogicalDriveStringsA
GetVolumeInformationA
SetErrorMode
CloseHandle
DeviceIoControl
Beep
CopyFileA
GetSystemDirectoryA
GetEnvironmentVariableA
GetWindowsDirectoryA
HeapCreate
GetVersion

user32

GetDlgItemInt
GetDlgItemTextA
GetWindowTextLengthA
GetDlgItem
RegisterWindowMessageA
RegisterClassExA
EndDialog
DialogBoxParamA
BeginPaint
GetClientRect
FillRect
MoveWindow
DrawTextA
EndPaint
PostQuitMessage
GetSystemMetrics
LoadCursorA
UpdateWindow
SendMessageA
MessageBoxA
SetWindowPos
ShowWindow
wsprintfA
SetDlgItemTextA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetActiveWindow
FindWindowA
DefWindowProcA
GetCursorPos
SetForegroundWindow
TrackPopupMenu
PostMessageA
GetMenuItemID
LoadMenuA
GetSubMenu
DestroyMenu
SetMenuDefaultItem
LoadStringA
KillTimer
SetTimer
LoadIconA
DestroyWindow
CreateWindowExA
SendDlgItemMessageA

gdi32

CreateFontA
CreateSolidBrush
SetBkMode
SelectObject
SetTextColor
GetDeviceCaps

advapi32

RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegCreateKeyA
RegSetValueExA
RegCloseKey

shell32

Shell_NotifyIconA

winmm

mciSendCommandA

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c9ecba8cba476acb6bde34174ed3759

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

winmm

Sections

.text Size: 72KB - Virtual size: 69KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 35KB

.rsrc Size: 108KB - Virtual size: 108KB

.text
Size: 72KB - Virtual size: 69KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 35KB

.rsrc
Size: 108KB - Virtual size: 108KB