aa9ecfb73c7dbbb3df4c171139109d3c

Sharing

Copy URL Twitter E-mail

General

Target

aa9ecfb73c7dbbb3df4c171139109d3c
Size

168KB
MD5

aa9ecfb73c7dbbb3df4c171139109d3c
SHA1

8cb0fb0a42244c4ebf537112bd4ff6aa6eeb27c1
SHA256

ae4fda9c1d502be474bf8a351c274df75ad2efe24be99c0e7b5cba410e3dd28a
SHA512

420eae1e6514e99f5a62c5bdf4321740193efb6aeaef50b87dcfb3cab88020161e7c22af9404708ec173a3a2223389cea1b31705c3ad09bb2eee0d9986bcb4bc
SSDEEP

3072:YKeIdo3Ml6pYSEneKfoNrEk0qO2YSvKoiU1FraglzaRb7:fto3M4NoyVSUE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa9ecfb73c7dbbb3df4c171139109d3c

Files

aa9ecfb73c7dbbb3df4c171139109d3c
.exe windows:4 windows x86 arch:x86

7ee24082e5c4844a275860ad38b69297

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapReAlloc
TerminateProcess
LCMapStringW
VirtualAlloc
ReadFile
CloseHandle
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CreateFileA
SetEndOfFile
GetDriveTypeA
GetFullPathNameA
HeapAlloc
HeapFree
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
FindFirstFileA
WinExec
GetProcAddress
DeleteFileA
FindNextFileA
FindClose
GlobalFree
GetLocalTime
GetWindowsDirectoryA
GetModuleFileNameA
GlobalAlloc
GetCommandLineA
LoadLibraryA
GetTickCount
FreeLibrary
MultiByteToWideChar
LCMapStringA

user32

GetDC
ShowScrollBar
SetScrollRange
GetWindowRect
GetClientRect
DestroyWindow
SetFocus
SetWindowTextA
GetMenu
PostMessageA
EndPaint
BeginPaint
SetCursor
FillRect
ChangeDisplaySettingsA
EnumDisplaySettingsA
IsDlgButtonChecked
GetDlgItemTextA
GetDlgCtrlID
GetFocus
SetCursorPos
SetActiveWindow
MoveWindow
SetScrollPos
PostQuitMessage
ScrollWindow
ReleaseDC
InvalidateRect
DefWindowProcA
FindWindowA
GetCursorPos
ShowCursor
GetAsyncKeyState
GetSystemMenu
AppendMenuA
MessageBoxA
SendMessageA
PeekMessageA
DispatchMessageA
KillTimer
GetMessageA
CreateWindowExA
ShowWindow
UpdateWindow
SetWindowPos
GetActiveWindow
wsprintfA
GetSystemMetrics
LoadIconA
LoadCursorA
RegisterClassA
SetTimer
TranslateMessage

gdi32

DeleteObject
CreateFontIndirectA
RealizePalette
SelectObject
GetTextMetricsA
GetStockObject
CreateSolidBrush
SetTextColor
CreatePen
TextOutA
GetTextExtentPointA
SetBkMode
SetDIBColorTable
CreateCompatibleDC
CreatePalette
CreateDIBSection
DeleteDC
BitBlt
SelectPalette
Rectangle
StretchDIBits
StretchBlt
SetStretchBltMode
GetPixel
SetPixel
LineTo
MoveToEx
GetDeviceCaps

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

shell32

ShellExecuteA

winmm

sndPlaySoundA
mciSendStringA

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ee24082e5c4844a275860ad38b69297

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

winmm

Sections

.text Size: 61KB - Virtual size: 61KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 940B

.text
Size: 61KB - Virtual size: 61KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 940B