a9f2a6c3d28dd3f51bae7e9d031dd1ce

Sharing

Copy URL Twitter E-mail

General

Target

a9f2a6c3d28dd3f51bae7e9d031dd1ce
Size

35KB
MD5

a9f2a6c3d28dd3f51bae7e9d031dd1ce
SHA1

a3e77784fd7b603dfda17b0d952256669397b155
SHA256

8f7778960b5098e15e0c7327a684021bdd57f969174e6c9d3a38cca51d49d035
SHA512

aebd73d89202d55ee5acaefe5b97fe5a435d41d9897d75fefa087c45366d365da2783f9a7f013687d8dc12ca83baec6229d6b80be4c73ff8f0049c89e9e0037a
SSDEEP

768:PrKsntoR3Afq2G6cj7NzBqZm/zD+JWAW:PmqtoRg/G9j79oSD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9f2a6c3d28dd3f51bae7e9d031dd1ce

Files

a9f2a6c3d28dd3f51bae7e9d031dd1ce
.exe windows:4 windows x86 arch:x86

3a4528eb655dbd03e56ee5b1525dc9c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommError
CloseHandle
CmdBatNotification
CreateEventA
CreateSemaphoreW
CreateWaitableTimerW
DisconnectNamedPipe
DosDateTimeToFileTime
EnumDateFormatsA
ExitProcess
FillConsoleOutputAttribute
FindAtomW
FindFirstChangeNotificationW
FlushInstructionCache
FreeEnvironmentStringsA
GenerateConsoleCtrlEvent
GetAtomNameW
GetCPInfo
GetCPInfoExA
GetCommConfig
GetCommandLineW
GetCompressedFileSizeW
GetConsoleCommandHistoryA
GetConsoleInputExeNameW
GetConsoleWindow
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceW
GetDiskFreeSpaceExA
GetDriveTypeW
GetExitCodeThread
GetFileAttributesA
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDriveStringsA
GetLongPathNameA
GetModuleHandleW
GetNamedPipeHandleStateA
GetNamedPipeInfo
GetPrivateProfileSectionA
GetProcessPriorityBoost
GetProcessShutdownParameters
GetProfileSectionW
GetProfileStringW
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeExA
GetStringTypeExW
GetSystemDefaultLCID
GetSystemTime
GetTempFileNameW
GetThreadSelectorEntry
GetVersion
GlobalDeleteAtom
GlobalFindAtomW
HeapAlloc
HeapLock
HeapSummary
HeapUnlock
IsBadWritePtr
IsDBCSLeadByteEx
IsProcessorFeaturePresent
LoadLibraryA
LockFileEx
MapViewOfFileEx
OpenEventW
OpenProfileUserMapping
OpenSemaphoreA
QueryDosDeviceA
ScrollConsoleScreenBufferA
SetConsoleDisplayMode
SetConsoleNumberOfCommandsW
SetConsolePalette
SetCurrentDirectoryW
SetEnvironmentVariableA
SetFileApisToANSI
SetFilePointer
SetHandleCount
SetLastError
SetSystemTime
UnlockFileEx
UpdateResourceA
VirtualFree
VirtualProtect
WaitForMultipleObjectsEx
WriteConsoleInputW
WriteConsoleInputVDMA
_lread
lstrcatA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW

user32

BeginDeferWindowPos
ChangeClipboardChain
CharPrevA
CharToOemBuffA
CharUpperA
CharUpperW
CharUpperBuffA
ChildWindowFromPointEx
CreateAcceleratorTableA
CreateCursor
CreateMenu
CreateWindowStationW
DefDlgProcA
DialogBoxParamW
DlgDirSelectComboBoxExW
DrawEdge
EnableMenuItem
EnumPropsA
EnumThreadWindows
EqualRect
FindWindowExA
GetClipCursor
GetCursor
GetCursorInfo
GetDCEx
GetDlgItemInt
GetFocus
GetForegroundWindow
GetInputState
GetKBCodePage
GetMenu
GetParent
GetScrollBarInfo
GetUserObjectInformationW
GetWindowDC
GetWindowTextA
InsertMenuItemW
InvertRect
IsCharLowerA
IsIconic
IsMenu
LoadCursorFromFileW
LoadIconW
LoadKeyboardLayoutW
LoadStringW
LookupIconIdFromDirectoryEx
MessageBeep
OemKeyScan
OffsetRect
OpenDesktopA
PaintDesktop
RealGetWindowClassA
RegisterClassExA
RegisterClipboardFormatW
ScrollChildren
SendDlgItemMessageW
SetCapture
SetClassLongW
SetMenuInfo
SetWindowContextHelpId
SystemParametersInfoA
TabbedTextOutW
TranslateMessage
UpdateWindow
keybd_event

gdi32

AbortDoc
AbortPath
CreateBitmap
CreatePatternBrush
CreatePen
EnumFontsW
ExtTextOutW
GdiComment
GdiGetBatchLimit
GdiGetDC
GdiPlayDCScript
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetBrushOrgEx
GetCharacterPlacementA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetGraphicsMode
GetLogColorSpaceW
GetPath
GetPixel
GetPolyFillMode
GetStockObject
GetSystemPaletteEntries
GetTextFaceW
GetViewportExtEx
LineTo
PolyTextOutA
RectVisible
SelectObject
SetMetaRgn
SetMiterLimit
SetPolyFillMode
UpdateICMRegKeyA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wjNh
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mAlp
Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a4528eb655dbd03e56ee5b1525dc9c9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 23KB

.wjNh Size: 5KB - Virtual size: 14KB

.mAlp Size: 4KB - Virtual size: 13KB

.reloc Size: 1024B - Virtual size: 2KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 23KB

.wjNh
Size: 5KB - Virtual size: 14KB

.mAlp
Size: 4KB - Virtual size: 13KB

.reloc
Size: 1024B - Virtual size: 2KB