a17100afc019ae5de4f65fa481cf582d

Sharing

Copy URL

Twitter E-mail

General

Target

a17100afc019ae5de4f65fa481cf582d
Size

362KB
MD5

a17100afc019ae5de4f65fa481cf582d
SHA1

817dfb44121a7669c8a3ad1dcc781c052a798cb0
SHA256

55b511e73867933138db89bcbd96b4d5c08f4c72eca66bf2ece04f48ddd75c5e
SHA512

7567b9708e7827519b5ca5375a293985385c7138253faae47c2f5bedb67c62b4197259f4725254b41affbb6e5186b0e343d8a3364872f94347fea80ec4cac1a3
SSDEEP

6144:XKE4udXfadb0CYI3xXlFfr77NCjZQwRfftwhszB+pFBNdUg5P/6J6/YL9iG:XD4CXoQCFFlFf7QDSA+pFb5HtYL9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a17100afc019ae5de4f65fa481cf582d

Files

a17100afc019ae5de4f65fa481cf582d
.exe windows:4 windows x86 arch:x86

a6ff1f26238c2b384fbb6874f0d21f1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

n:\xdtwxesty\aapu\cmeghiq\rokpecak\fuxivv

Imports

kernel32

CompareStringW
GetConsoleMode
GetProcAddress
GetCurrentThread
HeapAlloc
GetStartupInfoA
EnterCriticalSection
SetConsoleCtrlHandler
TlsFree
TerminateProcess
QueryPerformanceCounter
InitializeCriticalSection
Sleep
LoadLibraryA
SetStdHandle
GetStdHandle
TlsAlloc
GetStringTypeW
GetCommandLineW
OpenMutexA
HeapSize
VirtualQuery
LCMapStringW
CopyFileExA
InterlockedExchange
FlushFileBuffers
GetVersionExA
SetThreadPriority
LeaveCriticalSection
RaiseException
OpenFileMappingA
GetTimeZoneInformation
EnumSystemLocalesW
FreeLibraryAndExitThread
VirtualAlloc
SetFilePointer
GetCurrentProcessId
TlsSetValue
IsDebuggerPresent
InterlockedDecrement
SetLastError
CreateFileA
WaitForMultipleObjects
GetStartupInfoW
SetEnvironmentVariableA
ReadFile
EnumTimeFormatsW
GetCurrentThreadId
GetCPInfo
LCMapStringA
HeapFree
GetModuleFileNameA
WriteFile
FreeEnvironmentStringsA
GetThreadPriorityBoost
GetProcessHeaps
InterlockedIncrement
GetLocaleInfoA
GetTickCount
CreateMutexA
FreeLibrary
GetEnvironmentStringsW
CommConfigDialogA
HeapReAlloc
GetCurrentProcess
GetEnvironmentStrings
CreateDirectoryExA
MultiByteToWideChar
GetCommandLineA
SetConsoleMode
GetModuleFileNameW
CloseHandle
DeleteCriticalSection
GetConsoleCP
ExpandEnvironmentStringsA
GetACP
CompareStringA
GetSystemTimeAdjustment
GetStringTypeA
DeleteAtom
GetDateFormatA
VirtualFree
GetUserDefaultLCID
EnumSystemLocalesA
WriteConsoleOutputA
WritePrivateProfileStringA
SetHandleCount
GlobalUnfix
ExitProcess
FillConsoleOutputCharacterA
CreateMutexW
WriteConsoleA
TlsGetValue
WideCharToMultiByte
IsValidCodePage
HeapDestroy
GetTimeFormatA
GetCurrentDirectoryA
RtlUnwind
GetProcessHeap
IsValidLocale
lstrcpyn
SetUnhandledExceptionFilter
GetOEMCP
VirtualFreeEx
FreeEnvironmentStringsW
CreateWaitableTimerW
GetModuleHandleA
WriteConsoleW
UnhandledExceptionFilter
GetFileType
GetLocaleInfoW
HeapCreate
GetLastError
EnumCalendarInfoW
GetConsoleOutputCP
GetSystemTimeAsFileTime

user32

ChangeDisplaySettingsW
DeferWindowPos
SetScrollRange
MapVirtualKeyExW
IsWindow
GetInputState
CascadeWindows
CreateWindowExA
UnpackDDElParam
GetDlgItemInt
SetSystemCursor
SetWindowsHookExW
ScrollDC
GetMenuItemInfoW
AnimateWindow
DdeFreeStringHandle
DragDetect
CallMsgFilterW
MessageBoxExW
IsDlgButtonChecked
MessageBoxIndirectW
RegisterClassA
DefMDIChildProcW
IsRectEmpty
GetClipboardFormatNameW
FreeDDElParam
DdeGetData
wsprintfA
GetMessageExtraInfo
DdeGetLastError
ShowWindow
ModifyMenuW
GetDlgItemTextW
RegisterClassExA
VkKeyScanExW
SendIMEMessageExA
CreateMDIWindowW
GetWindowDC
SetCaretPos
SetWindowPos
AppendMenuA
EnableMenuItem
DestroyWindow
DialogBoxParamW
MonitorFromWindow
CharLowerBuffW
IntersectRect
MessageBoxExA
DdeClientTransaction
EnumDisplaySettingsA
SwitchDesktop
TileChildWindows
GetWindowInfo
MessageBoxW
CharPrevA
LoadCursorW
DrawTextExW
EqualRect
GetOpenClipboardWindow
GetAltTabInfo
EnumDesktopWindows
GetComboBoxInfo
GetKeyboardLayoutNameA
DdeImpersonateClient
DdeQueryStringA
GetUserObjectInformationA
ChangeDisplaySettingsA
IsWindowEnabled
GetSystemMenu
LoadBitmapW
DefWindowProcW
GetClassInfoExA
GetProcessWindowStation
CopyImage
InsertMenuItemA

gdi32

CreateColorSpaceA
GetAspectRatioFilterEx

comctl32

DrawInsert
DrawStatusTextW
ImageList_GetIconSize
ImageList_GetImageRect
ImageList_DragLeave
ImageList_DrawEx
InitCommonControlsEx
ImageList_DragMove
ImageList_Remove

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6ff1f26238c2b384fbb6874f0d21f1e

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comctl32

Sections

.text Size: 179KB - Virtual size: 179KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 93KB - Virtual size: 116KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 179KB - Virtual size: 179KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 93KB - Virtual size: 116KB

.rsrc
Size: 13KB - Virtual size: 13KB