4f26514b4fd13fb8ad191c8911ba2946ba4c42190cac8f8defd15f4a1a29b3f0

Sharing

Copy URL Twitter E-mail

General

Target

4f26514b4fd13fb8ad191c8911ba2946ba4c42190cac8f8defd15f4a1a29b3f0
Size

125KB
MD5

83c1eab8b2bf7f594e519a12de57666d
SHA1

d46d4f06c77481fe6292af17f5e53deafaf83ee3
SHA256

4f26514b4fd13fb8ad191c8911ba2946ba4c42190cac8f8defd15f4a1a29b3f0
SHA512

1e0df8b42030e982087ed4c06b9ef4acf85b9d56c283e5e3d0df6b26ac24082c0aed087cdddaa156f7d097881669ed081bfc2dd828e86b0874b993dc0c5d5c8e
SSDEEP

3072:q+xNW/jysvvKmo8VLNWySJe1sQqiR7/0HvcdavjlEO:xNW/73K581NL1Xq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f26514b4fd13fb8ad191c8911ba2946ba4c42190cac8f8defd15f4a1a29b3f0

Files

4f26514b4fd13fb8ad191c8911ba2946ba4c42190cac8f8defd15f4a1a29b3f0
.exe windows:5 windows x86 arch:x86

310bc56415a832bde913dc65d82431b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetModuleFileNameA
GetFileAttributesA
WritePrivateProfileSectionA
DeleteFileA
ReadFile
SetFileAttributesA
FormatMessageA
GetLastError
CopyFileA
GetPrivateProfileSectionA
CreateDirectoryA
GetSystemInfo
GetShortPathNameA
WriteFile
GetExitCodeProcess
CreateProcessA
_llseek
_lwrite
_lread
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileInformationByHandle
GetTickCount
_lclose
GlobalUnlock
GlobalLock
SetLastError
GlobalFree
MoveFileA
GetTempPathA
GetTempFileNameA
FreeResource
LockResource
LoadResource
SizeofResource
FindResourceExA
EnumResourceLanguagesA
EnumResourceNamesA
FreeLibrary
EnumResourceTypesA
LoadLibraryExA
GlobalAlloc
GetCurrentDirectoryA
GetSystemTime
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoA
GetPrivateProfileIntA
HeapFree
lstrcpynA
ExitProcess
GetProcAddress
GetModuleHandleA
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
LoadLibraryA
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
SetFilePointer
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
SetStdHandle
FlushFileBuffers
GetFullPathNameA
lstrcmpiA
LocalAlloc
lstrcatA
lstrlenA
lstrcpyA
IsDBCSLeadByte
FindFirstFileA
FindClose
GetPrivateProfileStringA
lstrcmpA
HeapAlloc
WritePrivateProfileStringA
CreateFileA
CloseHandle
GetCommandLineA
LocalFree

gdi32

GetStockObject
DeleteObject
GetDeviceCaps
GetObjectA
CreateFontIndirectA

user32

LoadStringA
SendMessageA
ReleaseDC
GetDC
CharNextA
SendDlgItemMessageA
GetSystemMetrics
MessageBoxA
MessageBeep
wsprintfA
SetFocus
PostMessageA
SetDlgItemTextA
GetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
ShowWindow
GetWindowRect
CheckRadioButton
MsgWaitForMultipleObjects
DispatchMessageA
PeekMessageA
GetParent
SetWindowLongA
GetWindowLongA
CallWindowProcA
EnableWindow
GetDlgItem
CharPrevA

comctl32

CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

imagehlp

CheckSumMappedFile

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htext
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

310bc56415a832bde913dc65d82431b7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

comctl32

comdlg32

version

imagehlp

advapi32

Sections

.text Size: 75KB - Virtual size: 74KB

.data Size: 6KB - Virtual size: 18KB

.rsrc Size: 30KB - Virtual size: 29KB

.htext Size: 8KB - Virtual size: 8KB

.text
Size: 75KB - Virtual size: 74KB

.data
Size: 6KB - Virtual size: 18KB

.rsrc
Size: 30KB - Virtual size: 29KB

.htext
Size: 8KB - Virtual size: 8KB