aac90c7a8300af8df789fb59f9a44874

Sharing

Copy URL

Twitter E-mail

General

Target

aac90c7a8300af8df789fb59f9a44874
Size

78KB
MD5

aac90c7a8300af8df789fb59f9a44874
SHA1

fa1002f90097c25bcae556d4cbfbaabd12cdce5f
SHA256

784249eca8547b8a17ef5ac142a605f3dc2c37d88e684691e2b3a8acedf8ebf5
SHA512

628915f95f8fa3613b60291a65836a24d891b0eca4a26bd470524ff54dad95bbca0f5f8a89c3b2b3f527ad538f71305378a280a8916dad02ea95ea4d8c35d191
SSDEEP

1536:Xofg4KeIdFa3Ml6pYr2TIRXNVYK3OyoNrV:IKeIdo3Ml6pYSEneKfoNr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aac90c7a8300af8df789fb59f9a44874

Files

aac90c7a8300af8df789fb59f9a44874
.exe windows:4 windows x86 arch:x86

7ee24082e5c4844a275860ad38b69297

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapReAlloc
TerminateProcess
LCMapStringW
VirtualAlloc
ReadFile
CloseHandle
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CreateFileA
SetEndOfFile
GetDriveTypeA
GetFullPathNameA
HeapAlloc
HeapFree
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
FindFirstFileA
WinExec
GetProcAddress
DeleteFileA
FindNextFileA
FindClose
GlobalFree
GetLocalTime
GetWindowsDirectoryA
GetModuleFileNameA
GlobalAlloc
GetCommandLineA
LoadLibraryA
GetTickCount
FreeLibrary
MultiByteToWideChar
LCMapStringA

user32

GetDC
ShowScrollBar
SetScrollRange
GetWindowRect
GetClientRect
DestroyWindow
SetFocus
SetWindowTextA
GetMenu
PostMessageA
EndPaint
BeginPaint
SetCursor
FillRect
ChangeDisplaySettingsA
EnumDisplaySettingsA
IsDlgButtonChecked
GetDlgItemTextA
GetDlgCtrlID
GetFocus
SetCursorPos
SetActiveWindow
MoveWindow
SetScrollPos
PostQuitMessage
ScrollWindow
ReleaseDC
InvalidateRect
DefWindowProcA
FindWindowA
GetCursorPos
ShowCursor
GetAsyncKeyState
GetSystemMenu
AppendMenuA
MessageBoxA
SendMessageA
PeekMessageA
DispatchMessageA
KillTimer
GetMessageA
CreateWindowExA
ShowWindow
UpdateWindow
SetWindowPos
GetActiveWindow
wsprintfA
GetSystemMetrics
LoadIconA
LoadCursorA
RegisterClassA
SetTimer
TranslateMessage

gdi32

DeleteObject
CreateFontIndirectA
RealizePalette
SelectObject
GetTextMetricsA
GetStockObject
CreateSolidBrush
SetTextColor
CreatePen
TextOutA
GetTextExtentPointA
SetBkMode
SetDIBColorTable
CreateCompatibleDC
CreatePalette
CreateDIBSection
DeleteDC
BitBlt
SelectPalette
Rectangle
StretchDIBits
StretchBlt
SetStretchBltMode
GetPixel
SetPixel
LineTo
MoveToEx
GetDeviceCaps

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

shell32

ShellExecuteA

winmm

sndPlaySoundA
mciSendStringA

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ee24082e5c4844a275860ad38b69297

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

winmm

Sections

.text Size: 61KB - Virtual size: 61KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 944B

.text
Size: 61KB - Virtual size: 61KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 944B