5f7ea7951fc7f43d2ab45fb146ac47378d981cd37bca40c817058e1e2b32c5ff

Sharing

Copy URL Twitter E-mail

General

Target

5f7ea7951fc7f43d2ab45fb146ac47378d981cd37bca40c817058e1e2b32c5ff
Size

1.2MB
MD5

22d4024a6425d83de8910edba884577f
SHA1

2c397ba2e13b08295b0753e2017a70962508a8e9
SHA256

5f7ea7951fc7f43d2ab45fb146ac47378d981cd37bca40c817058e1e2b32c5ff
SHA512

63e2e3e17173c3afabc9c79e6b936b5ce934990ff784e10cee5a11a6f8c72d5f0d633b0d349699b57dca1f28fdcdfaccc9a1f82abe6faea58fde99442dae61ec
SSDEEP

24576:0G5AutE4OQzmI+/ekBMOJ6fJxR/UCwbJ7GQ:in4RUIxR/AJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f7ea7951fc7f43d2ab45fb146ac47378d981cd37bca40c817058e1e2b32c5ff

Files

5f7ea7951fc7f43d2ab45fb146ac47378d981cd37bca40c817058e1e2b32c5ff
.exe windows:4 windows x86 arch:x86

0465c00d3906afc376a0f66462d95e4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawEnumerateA
DirectDrawCreate

dsound

ord1

dinput

DirectInputCreateA

user32

SetWindowPos
SetWindowLongA
AdjustWindowRect
CreateWindowExA
ShowCursor
DefWindowProcA
PostQuitMessage
SetFocus
DestroyWindow
UpdateWindow
MsgWaitForMultipleObjects
IntersectRect
PeekMessageA
TranslateMessage
DispatchMessageA
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassA
GetDC
ReleaseDC
ShowWindow

gdi32

TextOutA
GetDeviceCaps
GetStockObject
SetTextColor
SetBkMode

ole32

CoCreateInstance
CoInitialize

imm32

ImmAssociateContext

kernel32

GetVersionExA
DeleteCriticalSection
InitializeCriticalSection
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
SetEnvironmentVariableA
CompareStringW
CompareStringA
LoadLibraryA
GetOEMCP
GetACP
CreateFileA
GetTickCount
MultiByteToWideChar
CreateEventA
CloseHandle
GetDriveTypeA
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameA
GetEnvironmentVariableA
TlsAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetCPInfo
FlushFileBuffers
RtlUnwind
GetProcAddress
GetLastError
ReadFile
WriteFile
GetCurrentThreadId
TlsSetValue
WideCharToMultiByte
SetLastError
TlsGetValue
GetEnvironmentStringsW
SetFilePointer
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetStdHandle
GetEnvironmentStrings
SetHandleCount
InterlockedIncrement
GetFileType
InterlockedDecrement
SetStdHandle

Sections

.text
Size: 924KB - Virtual size: 920KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.psxseg
Size: - Virtual size: 2.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nnfhrze
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0465c00d3906afc376a0f66462d95e4f

Headers

File Characteristics

Imports

ddraw

dsound

dinput

user32

gdi32

ole32

imm32

kernel32

Sections

.text Size: 924KB - Virtual size: 920KB

.psxseg Size: - Virtual size: 2.1MB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 176KB - Virtual size: 1.4MB

.rsrc Size: 32KB - Virtual size: 32KB

nnfhrze Size: - Virtual size: 4KB

.text
Size: 924KB - Virtual size: 920KB

.psxseg
Size: - Virtual size: 2.1MB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 176KB - Virtual size: 1.4MB

.rsrc
Size: 32KB - Virtual size: 32KB

nnfhrze
Size: - Virtual size: 4KB