aacc3825d255496f8f3bac08b7d9f151

Sharing

Copy URL Twitter E-mail

General

Target

aacc3825d255496f8f3bac08b7d9f151
Size

105KB
MD5

aacc3825d255496f8f3bac08b7d9f151
SHA1

2b55051e1bc082abd710cb3123ec7305b49106b6
SHA256

ab689fec78e580ae086b311e81d857920d4547532224bd1893adbf8c3439c95d
SHA512

f996d6f6ba10699a24e953fbf366a673491dc689e833d4ddbc999e3a2966c58aeac4e919725903bdf56cbbc79487f5f4083bb1dffea9b43e4d6d300c4778aea1
SSDEEP

1536:jo5RQXpvOYj4XDmihqNinmdaAvIBeF3ZO+/quewhwzKlNSKfaThmX3yfcj:05GwYE3swoaAvm8Zjq+wKXSD8X3yf4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aacc3825d255496f8f3bac08b7d9f151

Files

aacc3825d255496f8f3bac08b7d9f151
.exe windows:0 windows x86 arch:x86

0f374d6e4a4d18f381724ada4a0458c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetSystemTimeAdjustment
WaitForMultipleObjects
ReadFile
SetNamedPipeHandleState
FileTimeToLocalFileTime
CreateSemaphoreA
GetFirmwareEnvironmentVariableA
ConnectNamedPipe
GetEnvironmentStringsA
VirtualAlloc
CreateMutexA
IsBadStringPtrA
InterlockedFlushSList
GetStringTypeA
SetFirmwareEnvironmentVariableA
CreateFileA
GetSystemTime
GetFileTime
OpenMutexA
GetFileAttributesExA
VirtualFree
PeekNamedPipe
FileTimeToDosDateTime
WriteFile
ReleaseMutex
SetFilePointer
GetEnvironmentVariableA
FreeEnvironmentStringsA
GetVersion
GetLastError
CloseHandle
WriteFileGather
TransactNamedPipe

cryptui

CryptUIWizFreeCertRequestNoDS
DllUnregisterServer
CryptUIStartCertMgr
CryptUIWizExport
CryptUIGetViewSignaturesPagesA
CryptUIWizCreateCertRequestNoDS
CryptUIWizDigitalSign
I_CryptUIProtectFailure

user32

CreateDialogParamA
CreateWindowExA
GetMessageA
DestroyMenu
RegisterClassExA
DestroyWindow
CheckMenuItem
SetDlgItemTextA
SendMessageA
GetWindowTextA
TranslateMessage
UpdateWindow
EnableWindow
GetDesktopWindow
GetClipboardData
SetWindowTextA
LoadMenuA
SetWindowLongA
GetMenu
DefWindowProcA
EndPaint
ShowWindow
InvalidateRect
GetDlgCtrlID
PostQuitMessage
DispatchMessageA
GetSubMenu
DialogBoxParamA

advpack

TranslateInfStringEx
RegSaveRestore
CloseINFEngine
FileSaveRestore
RegInstall
FileSaveRestoreOnINF
AdvInstallFile
RegisterOCX

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f374d6e4a4d18f381724ada4a0458c8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

cryptui

user32

advpack

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 81KB - Virtual size: 84KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 81KB - Virtual size: 84KB

.reloc
Size: 512B - Virtual size: 4KB