acc0994776eac5db075961d8e7de69d5

Sharing

Copy URL

Twitter E-mail

General

Target

acc0994776eac5db075961d8e7de69d5
Size

660KB
MD5

acc0994776eac5db075961d8e7de69d5
SHA1

a1e38ede17057577a73410ec967e7df59ed51d52
SHA256

a05e686c40356fa947861d9c05d086e4d385241fdef8554bf15e2e13932e7c0c
SHA512

8bc13290f709d10cbcb401bddc40bc7bf0b728ab3394a804d9f0e0dbcd8359f9137aa42739c125f6d24c6d617bdfc0a3d247a378782ef4861bb73173ab89dc5d
SSDEEP

12288:YC04zIvrSdTaNdIXDOG7IPm5cMPHGg8Q7HUayuFr5r0kl:+4jdEIXDOG7IeWMPmg8QBymFr0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acc0994776eac5db075961d8e7de69d5

Files

acc0994776eac5db075961d8e7de69d5
.exe windows:4 windows x86 arch:x86

615c9e3c547abb2e9cd19781a6b480ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellAboutW
SHGetSettings
SHGetSpecialFolderLocation
ExtractIconA
DragQueryFile

advapi32

RevertToSelf
RegQueryInfoKeyA
RegSetValueA
CryptImportKey
RegDeleteValueA
CryptVerifySignatureW
CryptGetKeyParam
LookupAccountSidW
CryptSetProviderW
LookupSecurityDescriptorPartsA
CryptVerifySignatureA
LookupSecurityDescriptorPartsW
StartServiceA
CryptSetKeyParam
CryptSetProviderExA
CryptEnumProviderTypesA
CryptGenKey
CryptGetDefaultProviderA
LookupAccountNameW
InitiateSystemShutdownW
RegReplaceKeyA
RegOpenKeyExA
RegCloseKey
CryptCreateHash

kernel32

WriteConsoleA
VirtualAlloc
FlushFileBuffers
TlsGetValue
GetStringTypeW
SetEnvironmentVariableA
LCMapStringW
IsValidCodePage
SetFilePointer
CompareStringA
OpenMutexA
VirtualFree
EnumSystemLocalesA
ExitProcess
GetCurrentProcess
IsValidLocale
GetConsoleCP
GetDiskFreeSpaceExW
GetCurrentProcessId
QueryPerformanceCounter
GetOEMCP
GetStringTypeA
GetModuleHandleA
GetFileType
GetCurrentThread
WriteFile
CloseHandle
HeapFree
GetConsoleOutputCP
MultiByteToWideChar
GetProcAddress
HeapCreate
GetSystemTimeAsFileTime
GetModuleHandleW
WideCharToMultiByte
GetPrivateProfileStringA
InterlockedIncrement
CreateFileMappingW
FreeEnvironmentStringsA
GetWindowsDirectoryW
LCMapStringA
SetHandleCount
HeapDestroy
GetUserDefaultLCID
GetThreadSelectorEntry
GetStartupInfoW
EnumResourceTypesW
LeaveCriticalSection
GetTickCount
GetDateFormatA
SetConsoleTextAttribute
SetStdHandle
RtlUnwind
LocalLock
InitializeCriticalSectionAndSpinCount
CreateMutexA
SetConsoleCtrlHandler
FreeEnvironmentStringsW
GetCurrentThreadId
GetCommandLineA
GetLastError
HeapReAlloc
GetModuleFileNameW
WriteConsoleW
TlsAlloc
GetModuleFileNameA
GetCPInfo
VirtualQuery
GetTimeZoneInformation
TlsSetValue
GetStdHandle
MoveFileExA
SetLastError
Sleep
GetACP
GetTimeFormatA
GetConsoleMode
TerminateProcess
HeapSize
ReadFile
DeleteCriticalSection
GetLocaleInfoW
EnterCriticalSection
InterlockedDecrement
GetCommandLineW
IsDebuggerPresent
GetEnvironmentVariableW
InterlockedExchange
SetUnhandledExceptionFilter
GetEnvironmentStringsW
CreateFileA
GetStartupInfoA
HeapAlloc
UnhandledExceptionFilter
EnumCalendarInfoExW
TlsFree
GetLocaleInfoA
CompareStringW
LoadLibraryA
FreeLibrary

gdi32

ExtFloodFill
SetPixelV
ResetDCW
PaintRgn
GetRgnBox
FloodFill
GetKerningPairsA
SetTextColor
FlattenPath
CreateFontIndirectA

user32

BroadcastSystemMessage
ChangeDisplaySettingsExW
InSendMessage
DlgDirSelectExA
InsertMenuA
GetWindowTextA
TabbedTextOutW
EndDeferWindowPos
WaitMessage
GetScrollInfo
GetMenuContextHelpId
GetOpenClipboardWindow
CascadeWindows
ValidateRgn
GetPropA
SetProcessDefaultLayout
ShowScrollBar
UnpackDDElParam
DrawMenuBar
AppendMenuW
LoadBitmapW
OpenDesktopW
DdeUninitialize
SetUserObjectSecurity
UnregisterDeviceNotification
IsRectEmpty
SetScrollRange
GetWindowInfo
GetDlgItemTextW
SetDlgItemInt
GetIconInfo
WaitForInputIdle
CreateWindowExW
GetUpdateRect
OpenClipboard
BeginDeferWindowPos
DestroyCaret
CharLowerBuffW
GetWindowTextLengthW
SetWindowsHookExW
SetActiveWindow
ActivateKeyboardLayout
DestroyMenu
GetDlgItemInt
GetQueueStatus
LoadMenuW
MessageBoxIndirectA
ExitWindowsEx
GetDoubleClickTime
EnumDesktopWindows
DdeAbandonTransaction
SendMessageW
SwapMouseButton
wvsprintfA
OemKeyScan
RegisterClassA
GetWindowDC
SendMessageA
DdeCmpStringHandles
ChangeClipboardChain
DdeCreateDataHandle
FreeDDElParam
DefWindowProcW
GetMenuStringW
GetClipboardFormatNameW
WINNLSGetEnableStatus
EnumWindowStationsA
ImpersonateDdeClientWindow
OpenWindowStationA
LoadStringA
BroadcastSystemMessageW
WINNLSEnableIME
UnhookWindowsHookEx
ShowCursor
CloseWindow
EnumPropsW
RegisterClassExA
EnumDisplayMonitors
DestroyWindow
IsIconic
MessageBoxW
SendNotifyMessageW
ShowWindow
SendMessageTimeoutW
SetUserObjectInformationA
GetPropW
GetUpdateRgn
DdeReconnect
DlgDirListW
GetClassWord
SetMenuItemBitmaps
GetClientRect
EnumDesktopsA
GetDlgItem
WinHelpW
CascadeChildWindows
BlockInput
BroadcastSystemMessageA
SetCursorPos

comctl32

ImageList_GetIcon
ImageList_DragEnter
ImageList_Copy
_TrackMouseEvent
ImageList_Replace
CreateUpDownControl
GetEffectiveClientRect
ImageList_AddMasked
ImageList_AddIcon
CreateMappedBitmap
ImageList_SetImageCount
ImageList_DragShowNolock
InitCommonControlsEx
ImageList_DrawEx
DrawInsert
ImageList_SetOverlayImage
ImageList_Merge

Sections

.text
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

615c9e3c547abb2e9cd19781a6b480ef

Headers

File Characteristics

Imports

shell32

advapi32

kernel32

gdi32

user32

comctl32

Sections

.text Size: 232KB - Virtual size: 228KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 112KB - Virtual size: 125KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 232KB - Virtual size: 228KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 112KB - Virtual size: 125KB

.rsrc
Size: 48KB - Virtual size: 46KB