a3d4e3499900b7c4d01cdaf812da31ed

Sharing

Copy URL Twitter E-mail

General

Target

a3d4e3499900b7c4d01cdaf812da31ed
Size

584KB
MD5

a3d4e3499900b7c4d01cdaf812da31ed
SHA1

fd0acfe2e5a72f40bae2873a66a74e5f740fea0a
SHA256

051a7f1e5d314c3e6643a1029dadf2d1c0d3e77cbb152da781d0c63120965169
SHA512

82683a9ac27dd7f0c620652bc0c652b3d5a582fb64fe608078bacb94985bf9a469753c6c7ba9d891c3c9512033732ee02df4ae26b4b8be4deb8667d21286d1b5
SSDEEP

12288:T0/aAHJ6/O4QXC75NqRTHdPh2shQwTz2B8UQJJhaE:vj/P75UR7hLz2BfQJJhaE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3d4e3499900b7c4d01cdaf812da31ed

Files

a3d4e3499900b7c4d01cdaf812da31ed
.exe windows:4 windows x86 arch:x86

5660eb830fc6c2075d6b6fcbc025c31c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

kernel32

SetLastError
HeapReAlloc
GetFileType
RtlUnwind
GetEnvironmentStrings
WriteFile
GetProfileStringW
QueryPerformanceCounter
CreateMutexA
OpenMutexA
GetCommandLineA
GetStringTypeW
EnumSystemLocalesA
GetCurrentThread
FlushFileBuffers
GetTickCount
CloseHandle
HeapCreate
EnterCriticalSection
SetHandleCount
GetDateFormatA
GetLastError
GetCurrentProcess
GetUserDefaultLCID
TlsGetValue
SetFilePointer
GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
IsValidCodePage
GetStartupInfoW
GetCurrentProcessId
GetLocaleInfoW
CompareStringW
FreeEnvironmentStringsW
CompareStringA
ReadFile
GetModuleFileNameW
GetCurrentThreadId
LeaveCriticalSection
GetProcAddress
TlsSetValue
SetStdHandle
GetCPInfo
GetEnvironmentStringsW
GetLocaleInfoA
MultiByteToWideChar
GetTimeFormatA
InitializeCriticalSection
HeapSize
GetACP
HeapAlloc
ExitProcess
GetModuleHandleA
VirtualAlloc
GetVersionExA
GetOEMCP
GetTimeZoneInformation
IsBadWritePtr
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
VirtualProtect
WideCharToMultiByte
GetCommandLineW
VirtualQuery
TlsAlloc
VirtualFree
LoadLibraryA
LCMapStringA
GetStringTypeA
GlobalCompact
GetStartupInfoA
DeleteCriticalSection
InterlockedExchange
LCMapStringW
WriteConsoleOutputA
TlsFree
GetSystemInfo
HeapFree
HeapDestroy
IsValidLocale
TerminateProcess
SetEnvironmentVariableA

user32

PeekMessageA
GetMenuItemInfoW
ClientToScreen
RegisterClassA
SetCursor
SetTimer
CreateWindowExA
EnumDesktopsW
GetMenuCheckMarkDimensions
NotifyWinEvent
GetDialogBaseUnits
CloseDesktop
GetWindowTextW
MessageBoxA
SystemParametersInfoW
SendMessageTimeoutW
GetWindowTextLengthA
GetMenuContextHelpId
GetWindow
SendMessageW
RegisterClassExA
EnumDisplaySettingsA
DestroyWindow
GetMenuItemCount
ShowWindow
GetClipboardFormatNameA
CreateIconIndirect
LookupIconIdFromDirectory
DefWindowProcW
GetKeyboardLayoutNameW
CharToOemA
RealChildWindowFromPoint

comctl32

DrawStatusText
ImageList_SetFlags
InitCommonControlsEx
CreateUpDownControl
DrawStatusTextA
ImageList_BeginDrag
ImageList_EndDrag
ImageList_GetIcon

gdi32

CreateSolidBrush
GetWorldTransform
PlayEnhMetaFileRecord
SetBitmapDimensionEx
GetEnhMetaFileA

Sections

.text
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5660eb830fc6c2075d6b6fcbc025c31c

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

comctl32

gdi32

Sections

.text Size: 172KB - Virtual size: 170KB

.rdata Size: 248KB - Virtual size: 247KB

.data Size: 116KB - Virtual size: 133KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 172KB - Virtual size: 170KB

.rdata
Size: 248KB - Virtual size: 247KB

.data
Size: 116KB - Virtual size: 133KB

.rsrc
Size: 44KB - Virtual size: 40KB