99eb067fba45f1d31a53b2b9da981639

Sharing

Copy URL Twitter E-mail

General

Target

99eb067fba45f1d31a53b2b9da981639
Size

344KB
MD5

99eb067fba45f1d31a53b2b9da981639
SHA1

8a41a6c1e49c5d3422f82eb76d3c38bdfef4cd6a
SHA256

fe9f684e6d5ba62a77463353faba7a8ebf7b329aeebbfcffa036f19a5e02fc0c
SHA512

fa48b424511dbd2c39c992ea67de9ae8840fb58841313c88b324cdf30db9dc3743429d849324e9a6097874e20fe6b1c2b5bc0708e555b097308c968ca0c5cf59
SSDEEP

6144:T28JwqnI5p0Hc+zHUfXKaKf45GkcwzE4Bsa4vnFHa1/ZziY:T24wv0Hc+Oaasco8VywziY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99eb067fba45f1d31a53b2b9da981639

Files

99eb067fba45f1d31a53b2b9da981639
.exe windows:4 windows x86 arch:x86

92440f604ac46ed2843d94f127fd8cd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_LoadImage
ImageList_LoadImageA
DrawStatusText
ImageList_AddMasked
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_SetFlags
CreateStatusWindow

kernel32

VirtualQuery
EnumTimeFormatsA
SetStdHandle
GetSystemDirectoryA
CompareStringA
SetLastError
GetProcessHeaps
FileTimeToLocalFileTime
CreateThread
GetModuleFileNameA
GetWindowsDirectoryW
HeapSize
InterlockedExchange
CompareStringW
GetDiskFreeSpaceA
GlobalSize
TlsAlloc
GetStdHandle
FlushFileBuffers
GetCurrentThreadId
VirtualAlloc
FreeLibrary
IsBadWritePtr
GetStringTypeA
InitializeCriticalSection
OpenEventA
SetConsoleActiveScreenBuffer
HeapDestroy
EnterCriticalSection
SetFilePointer
GlobalAddAtomW
TlsGetValue
RaiseException
GetSystemDefaultLCID
GetStartupInfoA
GetPrivateProfileStringW
LCMapStringW
HeapReAlloc
WriteConsoleInputA
SetEnvironmentVariableW
GetSystemTime
GetACP
WritePrivateProfileSectionA
TlsSetValue
QueryPerformanceCounter
LeaveCriticalSection
InterlockedDecrement
VirtualProtectEx
GetTimeFormatW
GetStringTypeW
IsBadReadPtr
GetLogicalDriveStringsA
OutputDebugStringA
GetCurrentProcessId
LocalReAlloc
SetHandleCount
lstrcatA
ReadFile
FreeResource
GetLongPathNameA
GetTempFileNameW
LoadLibraryExA
LocalAlloc
GlobalGetAtomNameA
SetFileAttributesW
ExitProcess
MultiByteToWideChar
HeapAlloc
CreateMutexA
GetLastError
TlsFree
CreateSemaphoreA
DeleteCriticalSection
LocalSize
SetConsoleWindowInfo
GetModuleHandleA
HeapCreate
MoveFileExA
GetCurrentThread
GetCurrentProcess
GetTickCount
GlobalFlags
GetTimeZoneInformation
FindResourceW
GetLogicalDriveStringsW
ReadConsoleA
EnumCalendarInfoExW
GetLocalTime
GetVolumeInformationA
GetEnvironmentStrings
CreatePipe
GetOEMCP
GlobalFindAtomA
InterlockedIncrement
ReadConsoleW
WriteFile
WaitNamedPipeW
lstrcpynA
RemoveDirectoryW
GetFileAttributesA
ExpandEnvironmentStringsA
OpenFile
LCMapStringA
HeapFree
GetFileType
LoadLibraryA
OpenEventW
VirtualFree
TerminateProcess
GetCPInfo
GetProcAddress
FreeEnvironmentStringsA
UnhandledExceptionFilter
CloseHandle
FreeEnvironmentStringsW
lstrcmpiA
GetProfileSectionW
SetThreadContext
OpenMutexA
GetUserDefaultLangID
OutputDebugStringW
RtlUnwind
lstrlen
SetEnvironmentVariableA
GetSystemTimeAsFileTime
WideCharToMultiByte
OpenSemaphoreW
CreateFileMappingW
IsDebuggerPresent
GetCommandLineA
GetEnvironmentStringsW
GetVersion

gdi32

GetCharABCWidthsFloatW
GetCharacterPlacementW
PolyTextOutA
GdiPlayJournal
GetWorldTransform
DeleteMetaFile

shell32

ExtractAssociatedIconW
SHFreeNameMappings

user32

DefWindowProcA
MessageBoxExW
EmptyClipboard
RealGetWindowClass
GetScrollBarInfo
DragDetect
DdeUninitialize
GetPropW
CharLowerBuffA
GetTabbedTextExtentA
DestroyMenu
RegisterClassExW
EditWndProc
SetWindowTextW
DdeAddData
DdeConnect
CloseWindowStation
RedrawWindow
CallWindowProcA
GetDesktopWindow
InternalGetWindowText
DestroyWindow
PtInRect
CreateWindowExA
CharLowerA
FlashWindow
DdeSetUserHandle
IsWindowEnabled
GetMenuStringW
GetDoubleClickTime
DefFrameProcW
ReuseDDElParam
CreateDialogParamA
ShowCursor
GetScrollPos
ChangeDisplaySettingsW
ExcludeUpdateRgn
RegisterClassExA
UnregisterClassW
RegisterClassA
DdeGetData
SetWindowTextA
ScrollWindow
wsprintfA
GetWindowTextLengthA
CreateAcceleratorTableW
DestroyIcon
DdeConnectList
GetScrollRange
TileWindows
InvalidateRect
MessageBoxA
WinHelpW
GetWindowThreadProcessId
MessageBeep
InsertMenuA
MessageBoxIndirectA
ShowWindow
EnumDesktopsA
GetKeyboardLayoutNameA
MapDialogRect
GetCursorPos
OpenDesktopA
CallMsgFilterA
EnableMenuItem
DrawStateA
DlgDirSelectComboBoxExA
GetActiveWindow
SetClipboardViewer

Sections

.text
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92440f604ac46ed2843d94f127fd8cd5

Headers

File Characteristics

Imports

comctl32

kernel32

gdi32

shell32

user32

Sections

.text Size: 132KB - Virtual size: 129KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 92KB - Virtual size: 94KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 132KB - Virtual size: 129KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 92KB - Virtual size: 94KB

.rsrc
Size: 48KB - Virtual size: 47KB