installclientsdk[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

installclientsdk.exe
Size

234.3MB
MD5

c667141310f5860e177724de322356a7
SHA1

e381ffb0697da4b2d9c7895a9a8665809f87ce1b
SHA256

7a63225712a39552b056802087a67a8f78d1da43212969660cd3dda839298943
SHA512

03d7ff052066a587935b7064f0214bcb5e5c4ec8e23c640f3a7ec342b0e9e0a3cbf38105b42684f7706ff8d779a15195ae34837de513095c0f8a03bacdec31e7
SSDEEP

6291456:+d6GsozmlteFzmAHjaDbfDe5TyCR093sA8:+AozzFFHmDbgTR09cA8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
installclientsdk.exe

Files

installclientsdk.exe
.exe windows:4 windows x86 arch:x86

690514ad392c010a08adaf814f2dd5a2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
CloseHandle
GetFileSize
CreateFileA
DeleteFileA
GetExitCodeProcess
WaitForSingleObject
GetCurrentDirectoryA
lstrcmpiA
GetEnvironmentVariableA
GetConsoleTitleA
GetNumberFormatA
GetProcAddress
LoadLibraryA
GetDiskFreeSpaceA
GetVersionExA
CreateProcessA
GetCommandLineA
FindClose
FindFirstFileA
GetLastError
GetModuleFileNameA
RemoveDirectoryA
CreateDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
GetLocaleInfoA
SetFileAttributesA
FindNextFileA
LoadResource
FindResourceA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
SetEndOfFile
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetTempPathA
GetLongPathNameA
GetStringTypeA
GetSystemInfo
VirtualProtect
IsBadCodePtr
SetFileTime
DosDateTimeToFileTime
GetTimeZoneInformation
RtlUnwind
SetStdHandle
GetFileType
RaiseException
GetSystemTimeAsFileTime
WideCharToMultiByte
HeapFree
GetModuleHandleA
GetStartupInfoA
MoveFileA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
WriteFile
FlushFileBuffers
HeapReAlloc
HeapSize
SetFilePointer
ReadFile
GetACP
GetOEMCP
GetCPInfo
InterlockedExchange
VirtualQuery
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadReadPtr
GetLocaleInfoW

user32

GetWindowLongA
SetTimer
DrawTextA
EndDialog
KillTimer
LoadStringA
SetDlgItemTextA
GetDlgItem
DispatchMessageA
TranslateMessage
PeekMessageA
PostQuitMessage
DefWindowProcA
FindWindowA
ShowWindow
GetKeyState
LoadIconA
LoadCursorA
RegisterClassExA
DialogBoxParamA
SendMessageA

gdi32

GetStockObject

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

690514ad392c010a08adaf814f2dd5a2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 21KB

.rsrc Size: 224KB - Virtual size: 220KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 224KB - Virtual size: 220KB