a3c9cd743fc9b584643a3ef5f91bac55

Sharing

Copy URL Twitter E-mail

General

Target

a3c9cd743fc9b584643a3ef5f91bac55
Size

390KB
MD5

a3c9cd743fc9b584643a3ef5f91bac55
SHA1

9a7076d54d5314571a448c989441861c8c77020b
SHA256

c0f417c58583f425dd863d6f7e3930120371a2d95bf87f4ec00963c6d11591ec
SHA512

02463a1c84198fc6761c0edc4181787389bfce22f6970a5a84777dec0ecd61363d78fe52473fa1058dcb54502a70744d1cb277f56951d41385e678a82cc5b5ce
SSDEEP

6144:XMqstF6LC0bf/NyExDwdS+K+86Y0ajW0uAKmoWiXvuRDBLT:XBsz6pf/3Bv+80ajW9AUWiXvuR9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3c9cd743fc9b584643a3ef5f91bac55

Files

a3c9cd743fc9b584643a3ef5f91bac55
.exe windows:4 windows x86 arch:x86

4d8bec84d177367f57b454ed660d3e2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
HeapReAlloc
LeaveCriticalSection
SetHandleCount
GetCurrentThreadId
Sleep
CreateMutexA
GetProcAddress
GetTickCount
GetModuleHandleA
GetCurrentProcess
QueryPerformanceCounter
GetDateFormatA
FreeLibrary
InterlockedDecrement
ExitProcess
GetLastError
EnumSystemLocalesA
SetStdHandle
GetCPInfo
InterlockedIncrement
FreeEnvironmentStringsW
FlushFileBuffers
GetStartupInfoA
UnhandledExceptionFilter
LCMapStringW
TlsSetValue
GetModuleHandleW
WriteConsoleA
GetCommandLineW
FindResourceA
InterlockedExchange
GetStartupInfoW
GetConsoleOutputCP
GetFileType
GetCommandLineA
HeapCreate
RtlUnwind
GetStringTypeW
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GetTimeZoneInformation
LoadLibraryA
HeapFree
ReadFile
GetPrivateProfileSectionNamesA
HeapSize
HeapDestroy
TlsFree
WideCharToMultiByte
VirtualFree
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
TlsGetValue
GetCurrentThread
IsValidLocale
EnterCriticalSection
GetTimeFormatA
GetConsoleMode
GetStringTypeA
GetStdHandle
IsDebuggerPresent
LCMapStringA
VirtualAlloc
SetFilePointer
HeapAlloc
DeleteCriticalSection
SetLastError
WriteConsoleW
TlsAlloc
GetConsoleCP
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
OpenMutexA
IsValidCodePage
CreateFileA
GetModuleFileNameW
GetModuleFileNameA
SetConsoleCtrlHandler
GetOEMCP
GetACP
TerminateProcess
lstrcpy
CompareStringW
MultiByteToWideChar
VirtualQuery
SetEnvironmentVariableA
WriteFile
CloseHandle
GetEnvironmentStringsW
GetComputerNameW

comctl32

ImageList_Draw
ImageList_GetBkColor
InitCommonControlsEx
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_Write
DrawInsert
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Destroy

user32

DdeAddData
GetCursorInfo
EnumDisplaySettingsA
BringWindowToTop
SendNotifyMessageW
SetCursor
SetWindowPlacement
NotifyWinEvent
ShowScrollBar
RegisterClassA
MessageBoxW
SetProcessWindowStation
GetDlgItem
CreateWindowExA
DefWindowProcW
RegisterClassExA
DestroyWindow
IsCharAlphaW
SetWinEventHook
GetWindowDC
GetMenuItemInfoW
ShowOwnedPopups
SetWindowsHookExW
ShowWindow

wininet

FindFirstUrlCacheContainerA
FtpFindFirstFileW
SetUrlCacheGroupAttributeW
HttpSendRequestA
InternetCanonicalizeUrlW
FtpFindFirstFileA

advapi32

CryptSetProviderW
RegFlushKey
CryptVerifySignatureA
InitiateSystemShutdownA
CryptDecrypt
RegDeleteKeyW
RegQueryValueW
CryptSetProviderExW
LookupPrivilegeDisplayNameA
CryptGetProvParam
RegSetKeySecurity
RegEnumKeyW
RegOpenKeyExA
LogonUserA
CryptEnumProvidersW

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d8bec84d177367f57b454ed660d3e2a

Headers

File Characteristics

Imports

kernel32

comctl32

user32

wininet

advapi32

Sections

.text Size: 137KB - Virtual size: 137KB

.rdata Size: 59KB - Virtual size: 71KB

.data Size: 94KB - Virtual size: 93KB

.rsrc Size: 98KB - Virtual size: 97KB

.text
Size: 137KB - Virtual size: 137KB

.rdata
Size: 59KB - Virtual size: 71KB

.data
Size: 94KB - Virtual size: 93KB

.rsrc
Size: 98KB - Virtual size: 97KB