99b58b96a94193a5ae09915d2e28d749

Sharing

Copy URL Twitter E-mail

General

Target

99b58b96a94193a5ae09915d2e28d749
Size

204KB
MD5

99b58b96a94193a5ae09915d2e28d749
SHA1

a8ca75c032a45e99a89129368f80ada4860ba7a5
SHA256

e21c67b786033c86c1246698f9119ee8313026a5c4f7b6314bddb1a3ff787bd0
SHA512

71cee7ccb2bb8eef2e2b082fd23dd8a565e21eef1165adfa275eea9771d17ccfec56bf750481bb18e41bdfd9bb679529536bc5e774d3789e75cb28a3708182d2
SSDEEP

6144:33m8nQhnx1gFKz/eve+/phs0YEgBO3PAKKHTA:33jnkCKOeqh+Egk3Y5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99b58b96a94193a5ae09915d2e28d749

Files

99b58b96a94193a5ae09915d2e28d749
.exe windows:4 windows x86 arch:x86

bce98d69127e3cec75fd48dbb4f6c552

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyW
RegQueryValueW
RegSetValueA
RegSetValueExW
RegSetValueW

kernel32

AddAtomA
ConvertThreadToFiber
CreateFileW
ExitProcess
FindAtomA
GetAtomNameA
InitializeCriticalSection
ReadFile
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
free
malloc
memcpy
memset
signal
strcpy
strlen
wcscpy

user32

AdjustWindowRectEx
AppendMenuW
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcW
CheckMenuItem
CheckMenuRadioItem
ClientToScreen
CloseClipboard
CreateDialogIndirectParamW
CreateMenu
CreatePopupMenu
CreateWindowExW
DefFrameProcW
DefWindowProcW
DeferWindowPos
DestroyCursor
DestroyMenu
DestroyWindow
DrawEdge
DrawFocusRect
DrawMenuBar
DrawStateW
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndPaint
EnumClipboardFormats
FillRect
GetAsyncKeyState
GetCapture
GetClassNameW
GetClientRect
GetClipboardFormatNameW
GetCursorPos
GetDC
GetDesktopWindow
GetDlgItem
GetFocus
GetMenuStringW
GetMessageTime
GetMessageW
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRect
GetWindowDC
GetWindowRect
GetWindowTextLengthW
GetWindowThreadProcessId
HideCaret
InsertMenuItemW
InsertMenuW
InvalidateRect
IsWindow
LoadBitmapW
LoadCursorFromFileW
LoadCursorW
LoadIconW
LoadImageW
MapWindowPoints
MessageBoxW
ModifyMenuW
MoveWindow
OpenClipboard
PeekMessageW
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassW
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageW
SetCapture
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetMenu
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowCaret
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UpdateWindow
VkKeyScanW
WindowFromPoint

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 42KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bce98d69127e3cec75fd48dbb4f6c552

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

user32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 512B - Virtual size: 64B

.idata Size: 4KB - Virtual size: 3KB

.rdata Size: 1024B - Virtual size: 976B

.bss Size: - Virtual size: 42KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 512B - Virtual size: 64B

.idata
Size: 4KB - Virtual size: 3KB

.rdata
Size: 1024B - Virtual size: 976B

.bss
Size: - Virtual size: 42KB

.rsrc
Size: 8KB - Virtual size: 4KB