aa59f625b910b1f098758cbe2fc9cefe

Sharing

Copy URL Twitter E-mail

General

Target

aa59f625b910b1f098758cbe2fc9cefe
Size

141KB
MD5

aa59f625b910b1f098758cbe2fc9cefe
SHA1

fe0e3dc8e7968da60ca06272f0a2a08a4ec7006e
SHA256

218f1cbfd9ef64e82b0ab710815d535e497decaeeabbcb49fb891218a5e850c9
SHA512

7cdd28e10e6ab13155737e1b701a7edc8e648a6add99793b71cc8dafbca699c3a982225882363b960d62f05e907b064c53ef25576546f624984f7f480493b902
SSDEEP

3072:KxAxidiyPyWL/8x1++yPVYsNbIms6Qj7bJR+CnkpuRdrYCZgXh:KXUcyWAY9PXc16K7bj+CnkrCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa59f625b910b1f098758cbe2fc9cefe

Files

aa59f625b910b1f098758cbe2fc9cefe
.exe windows:5 windows x86 arch:x86

1b559ccae1e714ad1f98b3b777a4f9fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
CreateDirectoryW
VirtualFree
DeleteFileA
GetTimeFormatW
GetModuleHandleA
GetNumberFormatW
GetACP
LoadLibraryW
VirtualProtect
GlobalFree
GetCurrentDirectoryA
CreateDirectoryExW
TlsGetValue
OutputDebugStringA
lstrcmpW
GetLastError
DosPathToSessionPathA
RtlUnwind
CreateProcessA
GetProcAddress
FindNextFileW
SetErrorMode
HeapFree
ExitThread

msvcrt

printf
wcsrchr
swscanf
toupper
_wtoi
wcsncpy
towupper
_XcptFilter
wcscmp
strncpy
_wcsnicmp
labs
wcstok
_wcmdln
memcpy
__setusermatherr
atoi
__CxxFrameHandler
_wcsicmp
wcstol

user32

GetProcessWindowStation
DispatchMessageW
ScreenToClient
CheckDlgButton
DestroyWindow
LoadCursorW
LoadCursorA
ClientToScreen
GetParent
CopyRect
GetMenuItemCount
BeginPaint
SetCapture
IsWindow
GetCursorPos
wsprintfW
SetScrollPos
ReleaseDC
LoadMenuW
UnregisterClassW
ReleaseCapture
LoadImageW
MapWindowPoints
RegisterClassA
DialogBoxParamA
SendMessageW
SendMessageA

gdi32

SetBkMode
TranslateCharsetInfo
StretchBlt
CreateBitmap
CreateCompatibleDC
PatBlt
SetTextColor
CreateFontIndirectW
Rectangle
RestoreDC

opengl32

glColor4i
glStencilMask
glColor3ui
glTexCoord2d
wglShareLists
GlmfBeginGlsBlock
glTexCoord2dv
glFogfv
glColor4d
glColor4f

Exports

Exports

VilJlhuQpanqTzh
YaNgetjMbklbzIawgzWns
AeKzzenVyzzq

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b559ccae1e714ad1f98b3b777a4f9fc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.crt Size: 512B - Virtual size: 72B

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 115B

.data Size: 57KB - Virtual size: 57KB

.rsrc Size: 65KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 260B

.text
Size: 13KB - Virtual size: 13KB

.crt
Size: 512B - Virtual size: 72B

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 57KB - Virtual size: 57KB

.rsrc
Size: 65KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 260B