c324db89dca0366c06ab0e3436663053

Sharing

Copy URL Twitter E-mail

General

Target

c324db89dca0366c06ab0e3436663053
Size

612KB
MD5

c324db89dca0366c06ab0e3436663053
SHA1

bcddf7e3065ba00b3f01486d5812855c4f4ebefb
SHA256

adb9d8a140df105babfe779bb6126b037e37c9e99ffe3a56f25d7b909e4eeb5d
SHA512

5d84a727fc41839cda570d85607ac8b9ff91afdde5101aa58ffe4f2d7899376e6387aea91c99cc1df4f6287e5dbc92553339e72629e46a6243c810c005e0ce6c
SSDEEP

12288:KY6qQambMHE7p1ek7jMSvSk1ELsEbyODm2hxknV07VJnMKjcU+FiCjVKny9x:KY9QambMHE7zek7jMSvSk1ELBy4g2VJQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c324db89dca0366c06ab0e3436663053

Files

c324db89dca0366c06ab0e3436663053
.exe windows:4 windows x86 arch:x86

ff4df3b203cbddccf7db9e385ebd883a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpRenameFileA
FtpCreateDirectoryW
DeleteUrlCacheEntry
GopherGetAttributeW
GopherFindFirstFileA
FtpCreateDirectoryA
FtpOpenFileW
InternetCheckConnectionW
GopherGetLocatorTypeW

user32

IsClipboardFormatAvailable
SetTimer
GetScrollInfo
SetWindowTextA
CreateWindowStationW
CreateDialogIndirectParamA
RegisterClassExA
DefWindowProcA
SendInput
GetWindowRect
GetInputState
AdjustWindowRect
GetWindowRgn
GetWindowModuleFileNameW
DlgDirSelectExA
LoadKeyboardLayoutA
SetProcessWindowStation
InsertMenuW
CharUpperA
WINNLSGetEnableStatus
CreateWindowExA
DdeDisconnect
MapVirtualKeyA
CreateAcceleratorTableA
CheckRadioButton
SetScrollInfo
DdeQueryConvInfo
DestroyWindow
MessageBoxIndirectW
RegisterClassA
GetAsyncKeyState
CascadeWindows
DdeDisconnectList
LoadCursorFromFileW
UnhookWinEvent
SetWindowsHookW
DdeAccessData
SetMessageExtraInfo
GetMessageTime
SetDlgItemInt
CopyIcon
DdeKeepStringHandle
GetKeyboardType
SetMessageQueue
GetGuiResources
GetUserObjectSecurity
CharNextA
ToAscii
GetScrollBarInfo
DdeQueryStringA
SetMenuItemInfoA
ChildWindowFromPointEx
RemoveMenu
SetLastErrorEx
GetWindowModuleFileNameA
GetGUIThreadInfo
EnumDesktopsA
VkKeyScanExA
IsWindowEnabled
GetAltTabInfo
MapVirtualKeyExA
GetKeyState
SetFocus
PostMessageA
DdeConnect
RemovePropW
BlockInput
DrawAnimatedRects
DeleteMenu
GetCursorPos
DdeInitializeA
DdeAddData
MessageBoxW
DdeQueryStringW
GetClassLongA
TranslateAcceleratorA
GetMenuDefaultItem
EnumWindowStationsW
SetWindowsHookA
CharLowerA
EnumWindows
EnumDisplaySettingsW
IsIconic
CreateIconFromResourceEx
DrawIcon
CountClipboardFormats
IsWindowUnicode
SetParent
CallMsgFilterW
AnyPopup
UnregisterDeviceNotification
CreateCursor
WaitMessage
OpenIcon
GetCaretBlinkTime
UnpackDDElParam
GetMessageW
BringWindowToTop
ShowWindow
CreateWindowExW
GetClipboardFormatNameA
EnumDisplayMonitors
SetCursor
SetWindowTextW

kernel32

GetTimeZoneInformation
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
GetEnvironmentStringsW
SetEnvironmentVariableA
CompareStringA
GetTempFileNameA
GetTickCount
ReadConsoleOutputA
MultiByteToWideChar
SetFilePointer
GetTimeFormatA
OpenWaitableTimerW
GetModuleHandleA
HeapCreate
InitializeCriticalSection
LeaveCriticalSection
GetDateFormatA
GetFileType
IsValidCodePage
WriteConsoleA
LCMapStringW
ConvertDefaultLocale
FreeEnvironmentStringsW
TlsFree
InterlockedIncrement
LoadLibraryA
ExitProcess
GetOEMCP
SetLastError
GlobalFree
SetStdHandle
Sleep
GetConsoleMode
ReadFile
FreeLibrary
GetModuleFileNameA
GetStartupInfoA
HeapReAlloc
GetConsoleOutputCP
GetProcessHeap
WriteConsoleW
OpenMutexA
RtlUnwind
EnumSystemLocalesA
CompareStringW
GetStartupInfoW
SetUnhandledExceptionFilter
CloseHandle
GetProcAddress
EnterCriticalSection
WriteFile
GetConsoleCP
GetStdHandle
TlsGetValue
GetStringTypeW
FreeEnvironmentStringsA
FindFirstFileA
FlushFileBuffers
GetSystemTimeAsFileTime
GetCommandLineW
WideCharToMultiByte
HeapFree
HeapSize
CommConfigDialogA
GlobalGetAtomNameW
LCMapStringA
InterlockedExchange
DeleteCriticalSection
GetUserDefaultLCID
GetCurrentThreadId
TlsAlloc
IsDebuggerPresent
VirtualFree
GetEnvironmentStrings
HeapDestroy
SetConsoleCtrlHandler
SetHandleCount
CreateFileA
VirtualAlloc
QueryPerformanceCounter
GetCurrentThread
GetLastError
GetCommandLineA
GetLocaleInfoA
InterlockedDecrement
UnhandledExceptionFilter
SetConsoleCursorPosition
GetACP
GetStringTypeA
GetVersionExA
IsValidLocale
GetCPInfo
GetModuleFileNameW
CreateMutexA
GetLocaleInfoW
VirtualQuery
HeapAlloc
TlsSetValue

comctl32

ImageList_Create
InitCommonControlsEx
ImageList_DragEnter
ImageList_GetImageCount

Sections

.text
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff4df3b203cbddccf7db9e385ebd883a

Headers

File Characteristics

Imports

wininet

user32

kernel32

comctl32

Sections

.text Size: 156KB - Virtual size: 152KB

.rdata Size: 264KB - Virtual size: 261KB

.data Size: 108KB - Virtual size: 135KB

.rsrc Size: 80KB - Virtual size: 76KB

.text
Size: 156KB - Virtual size: 152KB

.rdata
Size: 264KB - Virtual size: 261KB

.data
Size: 108KB - Virtual size: 135KB

.rsrc
Size: 80KB - Virtual size: 76KB