abb1de2e119f4aaca055600e514c5f59

Sharing

Copy URL

Twitter E-mail

General

Target

abb1de2e119f4aaca055600e514c5f59
Size

116KB
MD5

abb1de2e119f4aaca055600e514c5f59
SHA1

fb927610f4e2a500aa04f84cb2890865aa0566fc
SHA256

8a61ca9557ea56963ffc61ce50db4efd26c5653b063beabb820b09e3e092ed6e
SHA512

32dd60075da553f5c2fd126da82090a5fa89af6ebbca270897445a7ac26d839460e4c8c9be7cefeb43decfd02bafca47ba8daadfa479bb30e4aeee8c1d4891cc
SSDEEP

3072:E2YKaRfYBx4eS76by+bdJWMa8Evz57wHXv:E2sRfYBxSevTKdov

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

abb1de2e119f4aaca055600e514c5f59

resource
abb1de2e119f4aaca055600e514c5f59

Files

abb1de2e119f4aaca055600e514c5f59
.exe windows:4 windows x86 arch:x86

75cbc240727774eaac77b2c24b6df01e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
ChooseFontA
ChooseColorA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Remove
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_GetImageCount
ImageList_Write

mprapi

MprConfigInterfaceDelete
MprConfigGetGuidName
MprAdminUserSetInfo
MprAdminUserGetInfo
MprAdminTransportSetInfo
MprAdminTransportGetInfo
MprAdminTransportCreate
MprAdminServerGetInfo
MprAdminServerGetCredentials
MprAdminServerDisconnect
MprAdminSendUserMessage
MprConfigInterfaceTransportEnum
MprAdminPortGetInfo
MprAdminPortEnum
MprAdminPortDisconnect
MprAdminPortClearStats
MprAdminMIBServerDisconnect
MprAdminMIBServerConnect
MprAdminMIBEntryDelete
MprAdminMIBEntryCreate
MprAdminMIBBufferFree
MprAdminIsServiceRunning
MprAdminIsDomainRasServer
MprAdminInterfaceUpdateRoutes
MprAdminInterfaceUpdatePhonebookInfo
MprAdminInterfaceSetCredentialsEx
MprAdminInterfaceSetCredentials
MprAdminInterfaceQueryUpdateResult
MprAdminInterfaceGetInfo
MprAdminInterfaceEnum
MprAdminInterfaceDisconnect
MprAdminGetErrorString
MprAdminConnectionGetInfo
MprAdminConnectionEnum
MprAdminConnectionClearStats
MprAdminBufferFree
MprConfigInterfaceTransportGetHandle
MprConfigInterfaceTransportGetInfo
MprConfigInterfaceTransportSetInfo
MprConfigServerBackup
MprConfigServerConnect
MprConfigServerGetInfo
MprConfigServerInstall
MprConfigServerRefresh
MprConfigTransportGetInfo
MprConfigTransportSetInfo
MprInfoBlockAdd
MprInfoBlockQuerySize
MprInfoBlockRemove
MprInfoBlockSet
MprInfoDelete
MprInfoDuplicate
MprInfoRemoveAll
MprAdminRegisterConnectionNotification

msacm32

acmDriverMessage
acmStreamPrepareHeader
acmStreamOpen
acmStreamMessage
acmMetrics
acmGetVersion
acmFormatDetailsA
acmFormatChooseA
acmFilterTagEnumA
acmFilterTagDetailsA
acmFilterDetailsA
acmFilterChooseA
acmDriverRemove
acmDriverOpen
acmDriverClose
acmDriverAddA
acmStreamUnprepareHeader

msvcrt

__dllonexit
_controlfp
malloc
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_strdup
_onexit

kernel32

WriteConsoleW
GetSystemWindowsDirectoryA
lstrlenA
GetStartupInfoA
GetProcAddress
GetWindowsDirectoryA
GetSystemTime
OpenProcess
GetVersionExA
GetModuleHandleA
GetDateFormatA
SizeofResource
DeviceIoControl
WaitForSingleObject
HeapReAlloc
GetLocalTime
CreateFileA
HeapFree
HeapAlloc
Sleep
GetTickCount
LoadLibraryA
QueryPerformanceCounter

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 653KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

75cbc240727774eaac77b2c24b6df01e

Headers

File Characteristics

Imports

comdlg32

comctl32

mprapi

msacm32

msvcrt

kernel32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 24KB - Virtual size: 653KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 24KB - Virtual size: 653KB