be30a79be5052741ae70f84ebabd032f

Sharing

Copy URL

Twitter E-mail

General

Target

be30a79be5052741ae70f84ebabd032f
Size

534KB
MD5

be30a79be5052741ae70f84ebabd032f
SHA1

ce9cb3b780c60ad766583a8a469acf259cc0f183
SHA256

6bb4fc8efb517d1d17eb647b5ac35ddfc38f0c23e12da43293545584aac61cb4
SHA512

4de54b94565b754539286a09ef4d2b757f2aeea100dc67af429223554c57dc681d2382bca9c1e7547d81fd38397e55585101682a1b01399e111d4e32b614c1b7
SSDEEP

12288:ZDM1p8H6DbjEHpsNBB/7wTQdn80Vgf9mBdC0yRYGYVT9P:G1p80bjEHpsNBB/sTQC0Of9mBduRYGK1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be30a79be5052741ae70f84ebabd032f

Files

be30a79be5052741ae70f84ebabd032f
.exe windows:4 windows x86 arch:x86

90c083111820d7da49258d04a6d6ed63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHEmptyRecycleBinW
DragQueryFileA
InternalExtractIconListW

user32

GrayStringA
DefFrameProcA
SetMenuItemInfoW
EnumWindowStationsA
InsertMenuA
DrawFocusRect
GetWindowInfo
LoadImageW
ChangeDisplaySettingsExA
RegisterClassA
SetMessageExtraInfo
GetScrollPos
DdeNameService
ChangeClipboardChain
LoadMenuW
RegisterClassExA
GetCapture
KillTimer
DispatchMessageW
LoadCursorW
CountClipboardFormats
GetClassNameA
LockWindowUpdate
LoadImageA

advapi32

RegReplaceKeyA
RegOpenKeyA
RegReplaceKeyW
LookupAccountNameW
LookupSecurityDescriptorPartsA
RegOpenKeyExW
RegQueryValueA
LookupPrivilegeDisplayNameW
LookupPrivilegeNameW
CryptSetProvParam
RegOpenKeyExA
CryptAcquireContextA
CryptHashSessionKey
CreateServiceA
CryptVerifySignatureW
RegDeleteValueA
CryptHashData

comctl32

InitCommonControlsEx

comdlg32

PageSetupDlgW
GetOpenFileNameA

kernel32

GetUserDefaultLCID
GetCurrentProcessId
GetStartupInfoA
GetEnvironmentStrings
CreateFileMappingW
EnumSystemLocalesA
InitializeCriticalSection
CompareStringW
HeapFree
UnhandledExceptionFilter
MultiByteToWideChar
QueryPerformanceCounter
GetEnvironmentStringsW
GetVersionExA
OpenMutexA
CreateMutexA
HeapDestroy
IsValidLocale
SetConsoleCtrlHandler
LoadLibraryA
SetUnhandledExceptionFilter
WriteProfileSectionA
GetCurrentThreadId
HeapAlloc
InterlockedExchange
WideCharToMultiByte
DosDateTimeToFileTime
HeapCreate
HeapReAlloc
LeaveCriticalSection
InterlockedDecrement
GetCurrentThread
GetModuleFileNameA
GetLocaleInfoW
IsValidCodePage
RtlUnwind
CloseHandle
GetStringTypeA
HeapSize
InterlockedIncrement
WriteFile
GetAtomNameA
WriteConsoleA
SetStdHandle
GetStdHandle
CreateFileA
VirtualQuery
VirtualFreeEx
GetCurrentProcess
GetConsoleOutputCP
IsDebuggerPresent
GetStartupInfoW
GetProcessHeap
VirtualFree
LCMapStringW
WriteConsoleW
GetModuleFileNameW
GetStringTypeW
GetConsoleMode
GetSystemTimeAsFileTime
EnterCriticalSection
GetCPInfo
GetModuleHandleA
GetTimeFormatA
TlsFree
SetFilePointer
TlsSetValue
GetLastError
SetEnvironmentVariableA
GetDateFormatA
DeleteCriticalSection
FreeEnvironmentStringsA
GetCommandLineW
LCMapStringA
Sleep
ReadFile
TerminateProcess
GetOEMCP
FreeEnvironmentStringsW
FreeLibrary
VirtualAlloc
ExitProcess
SetLastError
GetTimeZoneInformation
GetFileType
GetTickCount
GetACP
FlushFileBuffers
GetProcAddress
GetConsoleCP
TlsAlloc
CompareStringA
TlsGetValue
SetHandleCount
GetLocaleInfoA
GetCommandLineA

Sections

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90c083111820d7da49258d04a6d6ed63

Headers

File Characteristics

Imports

shell32

user32

advapi32

comctl32

comdlg32

kernel32

Sections

.text Size: 196KB - Virtual size: 196KB

.rdata Size: 10KB - Virtual size: 40KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 196KB - Virtual size: 196KB

.rdata
Size: 10KB - Virtual size: 40KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 9KB - Virtual size: 8KB