IMMORAL1[.]EXE

Sharing

Copy URL Twitter E-mail

General

Target

IMMORAL1.EXE
Size

93KB
MD5

334737d394b09a924da3d02dbb0d64e7
SHA1

3e6168eb675f796fa4c032a6266c1106e470a7d9
SHA256

2a99ee0974f7d6181998a5c95fd261390654eab7b79c5dabcd5b9713c38c43c5
SHA512

001a4a118902293cdeb2392d6a311a0bb9781f1c21f014057f8d1ea66d0f5391d53deb389ebf19565a4c8beda0a70d3d58d759a4accef1903380aaed9152ebce
SSDEEP

1536:x8jq4znllAB7pJhTCrLKcRkXEC5Sn3mJC8rihjNsUsx3jNdw1gn:xSHz/imFWJC8rihhsl3Bogn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
IMMORAL1.EXE

Files

IMMORAL1.EXE
.exe windows:4 windows x86 arch:x86

dfb84fd0103a0b1a0645e2e98e6053e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_llseek
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
LocalFree
LocalAlloc
_lread
_lopen
lstrcmpiA
WriteFile
GetTickCount
SetFilePointer
ReadFile
GlobalReAlloc
lstrlenA
OpenMutexA
CreateMutexA
CloseHandle
GetExitCodeProcess
CreateProcessA
GetModuleFileNameA
lstrcpyA
lstrcatA
GetPrivateProfileStringA
SetCurrentDirectoryA
GetWindowsDirectoryA
GetPrivateProfileIntA
GlobalAlloc
GlobalLock
Sleep
_lclose
CreateFileA
GlobalUnlock
GetCurrentProcess
TerminateProcess
HeapSize
HeapAlloc
HeapFree
HeapReAlloc
GetVersion
GetCommandLineA
ExitProcess
GetModuleHandleA
GetLocalTime
GetStartupInfoA
GetTimeZoneInformation
RtlUnwind
GetSystemTime
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
UnhandledExceptionFilter
FreeEnvironmentStringsA
LCMapStringW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetACP
GetOEMCP
GetCPInfo
GetStdHandle
GetFileType
SetHandleCount
HeapCreate
VirtualFree
HeapDestroy
SetUnhandledExceptionFilter
IsBadReadPtr
VirtualAlloc
IsBadWritePtr
IsBadCodePtr
GlobalFree
GlobalHandle
SetEnvironmentVariableA
GetLastError
GetStringTypeA
GetStringTypeW
GetProcAddress
LoadLibraryA
CompareStringA
CompareStringW

user32

GetWindowLongA
ReleaseDC
SetRect
DestroyMenu
SetWindowLongA
GetWindowRect
LoadMenuA
OffsetRect
InvalidateRect
SetMenu
GetMenu
ShowWindow
ClientToScreen
DestroyWindow
SetRectEmpty
IsRectEmpty
SystemParametersInfoA
SetFocus
GetDC
AdjustWindowRect
ChangeDisplaySettingsA
PtInRect
GetSystemMetrics
LoadAcceleratorsA
TranslateAcceleratorA
PeekMessageA
GetMessageA
IsIconic
TranslateMessage
DispatchMessageA
PostQuitMessage
WaitMessage
WinHelpA
UnionRect
BeginPaint
IntersectRect
GetForegroundWindow
EndPaint
MessageBoxA
CheckMenuItem
DefWindowProcA
EnableMenuItem
GetClientRect
FindWindowA
PostMessageA
RegisterClassA
LoadIconA
LoadCursorA
AdjustWindowRectEx
SetWindowPos
CreateWindowExA

gdi32

CreatePalette
GetSystemPaletteEntries
DeleteObject
SetPaletteEntries
RealizePalette
SelectPalette
GetStockObject
GetDeviceCaps
CreateDIBSection
GetCurrentObject
PatBlt
SelectObject
CreateCompatibleDC
DeleteDC
BitBlt
SetDIBColorTable
GetPaletteEntries
CreateFontA
TextOutA
SetBkColor
SetBkMode
SetTextColor

winmm

mmioClose
mmioGetInfo
mmioAdvance
mmioSetInfo
mmioSeek
mmioOpenA
mmioDescend
mmioRead
mmioAscend
waveOutReset
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
sndPlaySoundA
waveOutClose
waveOutOpen
waveOutGetErrorTextA
midiOutReset
midiOutUnprepareHeader
midiStreamClose
midiStreamOpen
midiStreamProperty
midiOutPrepareHeader
midiStreamOut
midiStreamRestart
timeGetTime
waveOutGetNumDevs
midiStreamPause

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfb84fd0103a0b1a0645e2e98e6053e5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winmm

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 11KB - Virtual size: 15KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 11KB - Virtual size: 15KB

.rsrc
Size: 2KB - Virtual size: 1KB