d597bd8b167eedd129ba9c9a169dde43

Sharing

Copy URL Twitter E-mail

General

Target

d597bd8b167eedd129ba9c9a169dde43
Size

243KB
MD5

d597bd8b167eedd129ba9c9a169dde43
SHA1

4a2d457556d9019df304bb04f180c1371bc378c3
SHA256

dcfd51ef1f69a3b59319051ac9736f6e01b0a939802e90b93d66a55fed2bcc07
SHA512

5427805ee86da656c6cb587a475a760051bf4854235ecb0566ec1a3d2ed239b8af15af7fd79e07305c796b1a272e0404ee32af07955107689faf2c819718f656
SSDEEP

6144:kcunYhSLLUrNhunuzhoUNnlMgQQM02DLlRsbwRB:kcuBLIBUuFzNnl2dVRNn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d597bd8b167eedd129ba9c9a169dde43

Files

d597bd8b167eedd129ba9c9a169dde43
.exe windows:4 windows x86 arch:x86

bdc6ed2ad9fd4dfdcf19228906cba16d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNamedPipeInfo
GetLocaleInfoA
GetMailslotInfo
WaitForMultipleObjects
GetShortPathNameW
GetLogicalDriveStringsA
FatalAppExitW
lstrcpynW
EnumTimeFormatsA
SetThreadPriority
SystemTimeToFileTime
EnumDateFormatsA
CreateMailslotA
GetTempFileNameA
GetDateFormatA
SetLocaleInfoA
GetEnvironmentStringsW
Beep
GetVersionExW
GetLocaleInfoW
GetHandleInformation
GetTempFileNameW
CreateFileMappingA
CreateMutexA
GetFileTime
GetFileType
MultiByteToWideChar
CompareFileTime
CreateDirectoryA
CopyFileA
CreateNamedPipeA
lstrcpynA
GetTimeFormatA
GetFullPathNameW
GetComputerNameA
lstrcmpiA
GetLongPathNameA
lstrcmpA
VirtualAlloc
GetAtomNameA
SetLastError
OpenSemaphoreA
EndUpdateResourceW
GetEnvironmentVariableW
RemoveDirectoryA
DeleteAtom
lstrcmp
GetProcessHeap
GetStringTypeA
lstrcpyn
GetUserDefaultLangID
GetTimeFormatW
SetErrorMode
FileTimeToDosDateTime

user32

RemoveMenu
LoadImageA
DestroyMenu
SendMessageW
ClientToScreen
EnumDesktopWindows
SetForegroundWindow
CreateWindowExA
GetAsyncKeyState
CreateCaret
InsertMenuItemA
CreateDialogParamW
SetFocus
RegisterWindowMessageA
CreateDesktopA
FindWindowA
InsertMenuW
DialogBoxIndirectParamA
GetKeyState
BringWindowToTop
MessageBoxW
InvalidateRgn
GetKeyboardLayout
GetClassInfoW
CharUpperA
AnimateWindow
GetDC
CreatePopupMenu
ShowCaret
SendDlgItemMessageW
EndMenu
CharPrevA
CascadeWindows
CharUpperW
DefDlgProcA
SetCursorPos
GetKeyboardType
GetMessageA
GetClassLongW
MoveWindow
GetWindowRgn
LoadIconA
CheckDlgButton
wsprintfW
GetWindowRect
GetClassNameW
MessageBoxIndirectW
RegisterClassW
CreateDesktopW
GetMenuItemInfoA
LoadCursorA

gdi32

CreateDCW
GetViewportOrgEx
CreatePalette
GetClipRgn
GetTextAlign
CreateColorSpaceW
GetCharWidthFloatA
PolyBezierTo
GetCurrentPositionEx
GetFontUnicodeRanges
CreateScalableFontResourceA
CreateCompatibleBitmap
GetGlyphIndicesA
GetFontData

advapi32

RegDeleteKeyA
RegCreateKeyExW
RegOpenKeyExA
RegSaveKeyW
RegOpenKeyExW

setupapi

SetupQuerySourceListW
pSetupGetFileTitle
CM_Create_DevNodeW
SetupInitDefaultQueueCallback
SetupDiSetDeviceRegistryPropertyA
CM_Add_ID_ExW
SetupInitDefaultQueueCallbackEx
SetupGetFieldCount
SetupDiDestroyDriverInfoList

wsock32

bind
inet_ntoa
SetServiceA
gethostbyname

Sections

./M>(
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.>
Size: 2KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.u>
Size: 512B - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Mc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2
Size: 512B - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.<
Size: 1024B - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pgX
Size: 4KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.QY
Size: 2KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdc6ed2ad9fd4dfdcf19228906cba16d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

setupapi

wsock32

Sections

./M>( Size: 10KB - Virtual size: 10KB

.> Size: 2KB - Virtual size: 19KB

.u> Size: 512B - Virtual size: 14KB

.Mc Size: 4KB - Virtual size: 3KB

.2 Size: 512B - Virtual size: 34KB

.< Size: 1024B - Virtual size: 27KB

.pgX Size: 4KB - Virtual size: 42KB

.QY Size: 2KB - Virtual size: 24KB

.rsrc Size: 214KB - Virtual size: 213KB

.reloc Size: 1024B - Virtual size: 16KB

./M>(
Size: 10KB - Virtual size: 10KB

.>
Size: 2KB - Virtual size: 19KB

.u>
Size: 512B - Virtual size: 14KB

.Mc
Size: 4KB - Virtual size: 3KB

.2
Size: 512B - Virtual size: 34KB

.<
Size: 1024B - Virtual size: 27KB

.pgX
Size: 4KB - Virtual size: 42KB

.QY
Size: 2KB - Virtual size: 24KB

.rsrc
Size: 214KB - Virtual size: 213KB

.reloc
Size: 1024B - Virtual size: 16KB