2e20502644ebf4dfec4126c924ebd640dd6a0f7e7a3444f095e333e6c292a87a

Sharing

Copy URL Twitter E-mail

General

Target

2e20502644ebf4dfec4126c924ebd640dd6a0f7e7a3444f095e333e6c292a87a
Size

757KB
MD5

a80e0d3ab5ff32ee98a5cc8ddac3f50d
SHA1

a5aa5f8c20f906411da44eab2d8c6c0ad83ad6c7
SHA256

2e20502644ebf4dfec4126c924ebd640dd6a0f7e7a3444f095e333e6c292a87a
SHA512

2222738f2ee9fa3758d75aa0213fcf9ca7f14c6a9006abf154ec630e90191b5b802fad314d8f691ae418fc8fad76363437f0f9cea6bf4836bfa15bf3d8e12d49
SSDEEP

12288:irYpE0mNJwHyoLDu2i4C6HPTGvcq3+kBdcmb/MxtpMwqAtp21R:iryHVu2i4f++iuWoTMHAtpm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e20502644ebf4dfec4126c924ebd640dd6a0f7e7a3444f095e333e6c292a87a

Files

2e20502644ebf4dfec4126c924ebd640dd6a0f7e7a3444f095e333e6c292a87a
.exe windows:6 windows x86 arch:x86

52071099d4d26d0983bb0966eca24aa5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragQueryPoint
DragFinish
DragQueryFileW

kernel32

TlsSetValue
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
TlsGetValue
TlsFree
QueryPerformanceFrequency
QueryPerformanceCounter
SetThreadExecutionState
OutputDebugStringA
OutputDebugStringW
LoadLibraryW
AllocConsole
GetModuleHandleW
SetEndOfFile
ReadConsoleW
ReadFile
HeapSize
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
CreateFileW
GetProcessHeap
GetStringTypeW
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
VerSetConditionMask
SetFilePointerEx
GetFileSizeEx
LCMapStringW
CompareStringW
HeapReAlloc
GetFileType
HeapFree
HeapAlloc
GetCommandLineW
GetCommandLineA
GetModuleFileNameW
WriteFile
GetStdHandle
GetModuleHandleExW
ExitProcess
LoadLibraryExW
EncodePointer
SetLastError
RaiseException
RtlUnwind
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
CloseHandle
IsProcessorFeaturePresent
FormatMessageW
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryA
DecodePointer
GetTimeZoneInformation
WriteConsoleW

user32

MessageBoxW
GetWindowLongW
DefWindowProcW
AdjustWindowRectEx
GetKeyState
SetWindowPos
GetPropW
MonitorFromWindow
ScreenToClient
UnregisterClassW
RegisterClassExW
WindowFromPoint
GetActiveWindow
GetAsyncKeyState
RedrawWindow
DestroyIcon
ClientToScreen
GetRawInputData
TrackMouseEvent
GetMessageTime
SetLayeredWindowAttributes
SetFocus
BringWindowToTop
SetPropW
RegisterRawInputDevices
RemovePropW
LoadCursorW
ClipCursor
SetCapture
SetCursor
SetWindowLongW
GetClientRect
SetRect
PtInRect
ReleaseCapture
SetForegroundWindow
LoadImageW
SetCursorPos
GetCursorPos
ChangeDisplaySettingsExW
EnumDisplayMonitors
GetMonitorInfoW
EnumDisplaySettingsExW
EnumDisplayDevicesW
EnumDisplaySettingsW
ReleaseDC
GetRawInputDeviceInfoA
GetRawInputDeviceList
MapVirtualKeyW
DestroyWindow
CreateWindowExW
ShowWindow
RegisterDeviceNotificationW
DispatchMessageW
PeekMessageW
TranslateMessage
ToUnicode
SystemParametersInfoW
UnregisterDeviceNotification
GetDC

gdi32

DescribePixelFormat
ChoosePixelFormat
SwapBuffers
SetPixelFormat
CreateDCW
SetDeviceGammaRamp
DeleteObject
CreateRectRgn
GetDeviceCaps
DeleteDC

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 565KB - Virtual size: 565KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52071099d4d26d0983bb0966eca24aa5

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

user32

gdi32

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 565KB - Virtual size: 565KB

.data Size: 4KB - Virtual size: 14KB

.rsrc Size: 1024B - Virtual size: 648B

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 565KB - Virtual size: 565KB

.data
Size: 4KB - Virtual size: 14KB

.rsrc
Size: 1024B - Virtual size: 648B

.reloc
Size: 11KB - Virtual size: 11KB