bac14e5a1398d5fcd97f14028077d1c9

Sharing

Copy URL Twitter E-mail

General

Target

bac14e5a1398d5fcd97f14028077d1c9
Size

628KB
MD5

bac14e5a1398d5fcd97f14028077d1c9
SHA1

5d8032b8314c54dcdb776b6edbc88143255e8d32
SHA256

fdbc04f63a97ff9f8d9dcf8e39e3126711f984990a31fea5da6e543b59519706
SHA512

39c7be07c26afa116989139010563fc3f9c391f12d672e155e9ac84a38cbba94501a9491d77018bac78ecce3fb12ec4870a05ccc6258055cd8c746fc93a97307
SSDEEP

12288:s19L1xGswU62Dg9DK3gSIWXM/2Db6SLXQS2rQ/lADc:mhf9wULUdKw10zViDc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bac14e5a1398d5fcd97f14028077d1c9

Files

bac14e5a1398d5fcd97f14028077d1c9
.exe windows:4 windows x86 arch:x86

be7f76c87fd046e9559b088f004a84cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\fhfrqzm\

Imports

user32

MessageBoxA
CreateWindowStationW
GetUserObjectInformationW
GetInputDesktop
CountClipboardFormats
CreateWindowExA
GetClassNameA
SwitchDesktop
RegisterClassExA
OpenInputDesktop
SetProcessWindowStation
SetDeskWallpaper
RegisterClipboardFormatW
SetCaretPos
IsDialogMessage
GetDC
SendNotifyMessageW
ToAscii
SetWindowLongA
AttachThreadInput
EndTask
DialogBoxParamA
PostQuitMessage
LoadMenuA
CopyAcceleratorTableW
AdjustWindowRect
MoveWindow
CharUpperA
DrawMenuBar
DdeClientTransaction
SetSysColors
GetSubMenu
DdeAbandonTransaction
TabbedTextOutW
CreateMDIWindowW
CharUpperW
SetWindowRgn
SetWinEventHook
DefWindowProcW
EnumPropsExA
LoadAcceleratorsW
EnableScrollBar
DestroyWindow
SetShellWindow
GetDlgItemTextW
GetProcessWindowStation
ReplyMessage
GetOpenClipboardWindow
GetKBCodePage
GetDoubleClickTime
ShowWindow
IsDlgButtonChecked
SetMenu
SetMessageQueue
CopyIcon
GetClassInfoExA
SetForegroundWindow
SendDlgItemMessageA
CharUpperBuffA
LoadBitmapA
ToAsciiEx
VkKeyScanW
InsertMenuA
DdeInitializeA
VkKeyScanExW
ShowScrollBar
wvsprintfA
DefFrameProcW
SendMessageA
DestroyCaret
PostThreadMessageW
InvalidateRgn
DefDlgProcW
RegisterClassA
ChangeDisplaySettingsExW
DeleteMenu
TrackPopupMenu
GetParent
SetCursor
ValidateRgn
ReuseDDElParam
CreateMenu
GetMenuInfo
LoadKeyboardLayoutA
PtInRect
ShowWindowAsync
GetUserObjectInformationA
ChangeClipboardChain
DdeKeepStringHandle
BlockInput
CloseWindowStation
IsCharLowerW
GetWindowDC
TranslateAccelerator
PostThreadMessageA
SetWindowContextHelpId
IsIconic
GetMenuStringA
InsertMenuW
GetClipboardData
SetCapture
GetUpdateRect
ScreenToClient
CharLowerA
LoadCursorW
IsDialogMessageW

kernel32

LCMapStringA
GetCurrentThread
GetStringTypeW
GetVersionExA
GetDateFormatA
GetStringTypeExW
GetConsoleCP
HeapCreate
lstrlenA
MultiByteToWideChar
RtlUnwind
HeapSize
GetStartupInfoA
GetPrivateProfileStructA
UnhandledExceptionFilter
CreateMutexA
GetSystemTimeAsFileTime
OpenMutexA
LCMapStringW
FreeEnvironmentStringsA
GetCurrentProcess
CreateDirectoryW
VirtualAlloc
GetCurrentThreadId
GetEnvironmentStrings
WritePrivateProfileSectionA
SetConsoleCtrlHandler
GetTempFileNameA
HeapReAlloc
FlushFileBuffers
HeapFree
SetEnvironmentVariableA
ReadFile
GetConsoleOutputCP
FreeLibrary
IsValidLocale
TlsAlloc
HeapAlloc
GetOEMCP
CompareStringW
WriteConsoleA
GetModuleFileNameA
EnterCriticalSection
EnumCalendarInfoExA
HeapDestroy
GetNumberFormatW
GetProcessHeap
FillConsoleOutputAttribute
VirtualFree
GetUserDefaultLCID
GetLocaleInfoW
QueryPerformanceCounter
SetLastError
LeaveCriticalSection
GetStringTypeA
GetTickCount
ExitThread
GetACP
GetConsoleMode
CreateFileMappingW
TransactNamedPipe
GetEnvironmentStringsW
CompareStringA
GetProcAddress
GetTimeZoneInformation
InitializeCriticalSection
GetFileType
IsDebuggerPresent
TlsSetValue
LocalFileTimeToFileTime
InterlockedDecrement
WriteConsoleW
TlsGetValue
LocalShrink
MoveFileExA
GetFullPathNameW
GetLocaleInfoA
TlsFree
VirtualQuery
Sleep
GetCommandLineA
GetCPInfo
EnumSystemLocalesA
SetStdHandle
WideCharToMultiByte
CreateFileA
GetSystemDirectoryA
CloseHandle
TerminateProcess
GetStdHandle
GetAtomNameA
GetCurrentProcessId
WriteFile
FreeEnvironmentStringsW
InterlockedIncrement
GetModuleHandleA
lstrcatW
ExitProcess
DeleteCriticalSection
GetTimeFormatA
SetHandleCount
CreateThread
LoadLibraryA
ReadConsoleOutputAttribute
GetLastError
SetFilePointer
IsValidCodePage
InterlockedExchange
SetUnhandledExceptionFilter

comctl32

DrawStatusText
InitCommonControlsEx
ImageList_EndDrag
ImageList_SetIconSize
CreateToolbar
ImageList_DragEnter
ImageList_Read
CreateUpDownControl
ImageList_Destroy
DrawStatusTextW
ImageList_GetDragImage
CreatePropertySheetPageA
ImageList_LoadImage
ImageList_SetImageCount
ImageList_DrawIndirect
ImageList_GetIconSize
_TrackMouseEvent
ImageList_GetBkColor
ImageList_AddMasked
ImageList_Create

Sections

.text
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be7f76c87fd046e9559b088f004a84cf

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comctl32

Sections

.text Size: 192KB - Virtual size: 188KB

.rdata Size: 252KB - Virtual size: 250KB

.data Size: 120KB - Virtual size: 128KB

.rsrc Size: 60KB - Virtual size: 57KB

.text
Size: 192KB - Virtual size: 188KB

.rdata
Size: 252KB - Virtual size: 250KB

.data
Size: 120KB - Virtual size: 128KB

.rsrc
Size: 60KB - Virtual size: 57KB