a1fbcca54e62a3de7dd98943dc1eeff9

Sharing

Copy URL Twitter E-mail

General

Target

a1fbcca54e62a3de7dd98943dc1eeff9
Size

388KB
MD5

a1fbcca54e62a3de7dd98943dc1eeff9
SHA1

20ae6bc973cf65857c0e674d448df7b1b56b6688
SHA256

e0e7719d8318de05fe0b2d83c1e42f0c79ce702e3c667f6690d25cddf406bb70
SHA512

126a40605e896f6f2532e71d31c7423a2476abe6bdfce649b38ee8f1e8eedb615aff77904fef9155686e6fd575ccd8a89aad671287226081162f14873f0cb09d
SSDEEP

3072:0XpP5hGG4Um4UAXqwphU1vvlaeaNUlZlepZLvyLkVHpock3iBo:4pP5hja4vt0laeaBLvz7oB3iBo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1fbcca54e62a3de7dd98943dc1eeff9

Files

a1fbcca54e62a3de7dd98943dc1eeff9
.exe windows:4 windows x86 arch:x86

9ace117c349282897ee714a68552389e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTapeStatus
ReadConsoleA
SetCalendarInfoA
RaiseException
WritePrivateProfileStringA
Heap32ListNext
ClearCommError
GetVersionExA
GetPrivateProfileStructA
GetWindowsDirectoryA
FormatMessageA
VirtualLock
ResetEvent
OpenProcess
SetThreadExecutionState
GetLocaleInfoA
GlobalUnWire
_hwrite
GetFileAttributesA
GetTickCount
GetStringTypeA
GetThreadPriority
GetCommandLineA
SetFileAttributesA
GetStdHandle
GetProfileSectionA
GetVersionExA
CommConfigDialogA
SetComputerNameExA
GetFileSizeEx
OpenJobObjectA
ReplaceFileA
IsBadStringPtrA
SizeofResource
HeapCreate
lstrcmp
GetCommState
GetProcessHeap
FreeLibrary
SetConsoleTitleA
Module32First
CreateFileA
GlobalHandle
SetConsoleWindowInfo
IsBadWritePtr
EnumSystemLanguageGroupsA
GetVersion
GetThreadPriorityBoost
ClearCommBreak
GetThreadContext
GetCalendarInfoA
GetProcessWorkingSetSize
GetCurrentDirectoryA
GetBinaryType
VerifyVersionInfoA
GetExitCodeProcess
GetCurrentConsoleFont
FindVolumeMountPointClose
GetProfileStringA
FindFirstChangeNotificationA
GetTimeFormatA
SetProcessWorkingSetSize
GetEnvironmentStringsA
GetFileTime
OpenJobObjectA
GetConsoleMode
VirtualAlloc
IsBadReadPtr
OpenSemaphoreA
GetCommandLineA
OpenWaitableTimerA
GetModuleFileNameA
GetDiskFreeSpaceA
PulseEvent
lstrlenA
GetComPlusPackageInstallStatus
GetConsoleTitleA
VirtualQueryEx
SetConsoleCP
GetCommMask
WriteConsoleOutputCharacterW
FindResourceExW
OpenWaitableTimerA
GetSystemDirectoryA
EscapeCommFunction
GetProcessHeaps
DeleteAtom
GetFileAttributesExA
GetFileAttributesA
IsBadReadPtr
GetProcessAffinityMask
GetTempPathA
GetDiskFreeSpaceExA
GetConsoleCursorInfo
GetSystemDirectoryA
FindFirstFileExW
GetProcessShutdownParameters
GetProcessWorkingSetSize
GetSystemPowerStatus
GetConsoleInputExeNameA
SetDefaultCommConfigA
SetComputerNameExA
GetLogicalDriveStringsA
MoveFileA
GetVolumeNameForVolumeMountPointA
MoveFileWithProgressA
GetCommandLineA
ReadConsoleOutputAttribute
SetCommBreak
CancelWaitableTimer
SetConsoleLocalEUDC
CompareFileTime
OpenWaitableTimerA
CreateTimerQueue
ProcessIdToSessionId
GlobalHandle
GetProcessIoCounters
OpenSemaphoreA
ReadConsoleOutputCharacterA
GetSystemDirectoryA
OpenMutexA
GetNamedPipeHandleStateA
IsProcessorFeaturePresent
ReadConsoleOutputA
FindNextChangeNotification
GetBinaryTypeA
AddConsoleAliasA
GetFileTime
SetFileShortNameA
GetConsoleOutputCP
SetConsoleHardwareState
GetVersion
WriteConsoleInputA
OpenWaitableTimerA
RemoveDirectoryA
FindNextChangeNotification
UnlockFileEx
SetFileValidData
MoveFileExW
ChangeTimerQueueTimer
GlobalSize
GetFullPathNameA
GetFullPathNameA
IsProcessorFeaturePresent
DeleteTimerQueueTimer
SetConsoleTextAttribute
ReleaseSemaphore
GetSystemWindowsDirectoryA
GetSystemDirectoryA
LocalAlloc
GetEnvironmentVariableA
GetComputerNameA
DisconnectNamedPipe
GetConsoleSelectionInfo
GetNumberFormatA
DeleteTimerQueueEx
GetCommandLineA
LocalHandle
LocalAlloc
GetThreadContext
GetPrivateProfileIntA
QueueUserWorkItem
_llseek
EnumSystemLocalesA
SetLocaleInfoA
UpdateResourceA
GetTickCount
GetCPInfoExA
SetWaitableTimer
SetMailslotInfo
DeleteTimerQueue
OpenFileMappingA
EndUpdateResourceA
QueryPerformanceCounter
SetConsoleIcon

user32

DeregisterShellHookWindow
SetSystemMenu
GetRawInputDeviceInfoA
CharLowerBuffW
GetMessageTime
GetClipboardData
LoadMenuA
CloseWindowStation
CreateIconFromResourceEx
EnumDesktopWindows
DialogBoxIndirectParamA
AdjustWindowRectEx
SetPropA
ScrollChildren
InvertRect
AdjustWindowRect
GetCaretPos
LoadImageA
MessageBeep
DrawTextExA
GetWinStationInfo
CheckDlgButton
EnumDesktopsA
GetCursorFrameInfo
LoadCursorFromFileW
SendDlgItemMessageA
GetMessageTime
GetKeyNameTextA
IsCharUpperA
CallMsgFilterA
GetSystemMetrics
ReasonCodeNeedsComment
DefRawInputProc
UnregisterDeviceNotification
CreateCaret
GetWindowPlacement
PostQuitMessage
HiliteMenuItem
SetWindowPos
SetShellWindowEx
PostMessageA
GetClipCursor
PrivateExtractIconsA
TrackPopupMenuEx
GetDlgItem
ReleaseCapture
CopyImage
LoadKeyboardLayoutEx
GetAltTabInfoA
CloseWindow
GetCursorPos
EnumWindows
SetPropA
GetUserObjectSecurity
LoadMenuIndirectA
GetWindowTextA
SendIMEMessageExA
GetCapture
GetProcessDefaultLayout
EndDialog
CreateDialogIndirectParamA
SetCursorContents
CharUpperBuffA
IsHungAppWindow
SetMenuContextHelpId
OemToCharBuffA
CreateIcon
GetClassInfoExA
DialogBoxIndirectParamA
LoadIconA
UpdatePerUserSystemParameters
RegisterDeviceNotificationA
ExcludeUpdateRgn
UnregisterClassA
CharLowerBuffA
GetWindowTextLengthA
GetUserObjectInformationA
OpenWindowStationA
ImpersonateDdeClientWindow
ScreenToClient
CheckDlgButton
MessageBoxTimeoutA

ws2_32

closesocket

Exports

Exports

IsIxyqoinqlss
Qdodxhdmc
Qdndipmc
Bhpodxcib
InitYcyjumtgnk
Vadslwni

Sections

.itext
Size: - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 673KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ace117c349282897ee714a68552389e

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 628B

.text Size: 48KB - Virtual size: 673KB

.idata Size: 264KB - Virtual size: 263KB

.rsrc Size: 72KB - Virtual size: 70KB

.itext
Size: - Virtual size: 628B

.text
Size: 48KB - Virtual size: 673KB

.idata
Size: 264KB - Virtual size: 263KB

.rsrc
Size: 72KB - Virtual size: 70KB