aa259c73ec36267e8a1f2253ab9f6764

Sharing

Copy URL Twitter E-mail

General

Target

aa259c73ec36267e8a1f2253ab9f6764
Size

234KB
MD5

aa259c73ec36267e8a1f2253ab9f6764
SHA1

fee761b50030680f33e8b4eaf8d3e720c702c9b3
SHA256

caa782d6fefb667d6bd5982de6452f462ce86cf9ce0c2fecd9af9ea8a1c672ab
SHA512

0ff9f7418f1a5e309a263f06abe1817e45ea907019ba7199d5a8fe8643cc8ec0d9016cbcceed1e59175a08508c9178322cbd9929b0c56d1267326d1f5e96feba
SSDEEP

3072:akW4C5Yod1FD6rz8bVKLgGU8GG3ZNVdOAGIoTJHHAO7cR1tkFt4SDFpNaaa5oUFW:6nFDio5KLfU8PephTcjtmt4M/aj5oU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa259c73ec36267e8a1f2253ab9f6764

Files

aa259c73ec36267e8a1f2253ab9f6764
.exe windows:4 windows x86 arch:x86

ecf4f65178037b13acf9a857d3ef16ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

SetWindowsHookExA
ShowWindow
SetForegroundWindow
SetDlgItemTextA
MessageBoxA
DialogBoxParamA
EnumWindowStationsA
UnregisterClassA
EnableWindow
EndDialog
LoadImageA
GetSystemMetrics
SendMessageA
SetWindowTextA
IsIconic
PostMessageA
SetClassLongA
SetWindowPos
UnhookWindowsHookEx
GetWindowRect
PostQuitMessage
RegisterClassExA
GetDlgItemTextA
FindWindowA
LoadIconA
DefWindowProcA
GetClientRect
GetDlgItem

gdi32

DeleteObject
GetStockObject

wininet

InternetConnectA
HttpSendRequestA
InternetCloseHandle
InternetReadFile
HttpOpenRequestA
InternetOpenA

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueA
RegFlushKey
RegOpenKeyExA
RegQueryValueExA
GetUserNameA
RegCreateKeyExA

kernel32

IsBadWritePtr
lstrlenA
lstrcatA
WideCharToMultiByte
LCMapStringW
GlobalLock
GetStringTypeW
GlobalAlloc
SetEndOfFile
GetCurrentProcess
GetUserDefaultLCID
LockResource
GetEnvironmentStrings
VirtualAlloc
GlobalFree
Sleep
GetModuleHandleA
LoadLibraryA
FreeEnvironmentStringsA
FreeLibrary
EnumSystemLocalesA
InitializeCriticalSection
GetEnvironmentVariableA
SetFilePointer
GetLocaleInfoW
GetFileType
CloseHandle
IsValidLocale
TerminateProcess
TlsAlloc
LoadResource
CompareStringA
GetFileAttributesA
GetLastError
FileTimeToSystemTime
GetModuleFileNameA
FindResourceA
GetTimeZoneInformation
GlobalUnlock
GetLocaleInfoA
GetFileSize
GetACP
FlushFileBuffers
GetTempPathA
FindFirstFileA
SetLastError
GetVersion
GetTempFileNameA
FreeEnvironmentStringsW
GetComputerNameA
UnhandledExceptionFilter
EnterCriticalSection
CompareStringW
LeaveCriticalSection
SetEnvironmentVariableA
FatalAppExitA
VirtualFree
GlobalHandle
ExitProcess
WriteFile
FindClose
TlsGetValue
GetStartupInfoA
HeapReAlloc
TlsFree
GetCurrentThreadId
GetProcAddress
lstrcpyA
CreateProcessA
GetOEMCP
GetSystemDefaultLangID
ReadFile
GetStringTypeA
GetStdHandle
DeleteFileA
GetCPInfo
InterlockedIncrement
DeleteCriticalSection
RtlUnwind
GetEnvironmentStringsW
WinExec
IsValidCodePage
GetCurrentThread
TlsSetValue
GetVersionExA
CreateThread
HeapAlloc
LCMapStringA
GetFullPathNameA
SetConsoleCtrlHandler
GetCurrentDirectoryA
InterlockedDecrement
TerminateThread
HeapCreate
HeapFree
SetHandleCount
GetDriveTypeA
SizeofResource
SetCurrentDirectoryA
MultiByteToWideChar
SetStdHandle
FileTimeToLocalFileTime
CreateFileA
HeapDestroy
ResumeThread

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ecf4f65178037b13acf9a857d3ef16ea

Headers

File Characteristics

Imports

user32

gdi32

wininet

advapi32

kernel32

Sections

.text Size: 104KB - Virtual size: 104KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 113KB - Virtual size: 113KB

.rsrc Size: 11KB - Virtual size: 147KB

.text
Size: 104KB - Virtual size: 104KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 113KB - Virtual size: 113KB

.rsrc
Size: 11KB - Virtual size: 147KB