d7c1ab7919aa682ebebd51f3c60ee675

Sharing

Copy URL Twitter E-mail

General

Target

d7c1ab7919aa682ebebd51f3c60ee675
Size

404KB
MD5

d7c1ab7919aa682ebebd51f3c60ee675
SHA1

c25beb2e29734af933cc64a62a7767290651d0a6
SHA256

7ac075a2e2fa1f2a9b7498e8d546a4501556bf0631253140ab194222828f131d
SHA512

88c99f7e1b1268bab095347a9555b428a54bba35f80099777f7fd747aa5139238834afbd9a62066609841b6d85b2ce02441e935a9bfa0fa16c3f0d74f7028bfa
SSDEEP

3072:C5Z+6MM9gcWt88WlQgk8rZgu4Scv2DRhznprd2SCFWJin0yp9Xtf9W9:C5ZMf884QgXZ4StJ2SCFWGrV9W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7c1ab7919aa682ebebd51f3c60ee675

Files

d7c1ab7919aa682ebebd51f3c60ee675
.exe windows:4 windows x86 arch:x86

635156ead66b373475216c2430be0a95

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenSemaphoreA
GlobalUnWire
SetTimerQueueTimer
SetConsoleScreenBufferSize
GlobalHandle
CommConfigDialogA
GetWindowsDirectoryA
GetFileAttributesExA
DeleteTimerQueue
QueryPerformanceCounter
SizeofResource
GetDiskFreeSpaceA
SetHandleContext
GetDefaultCommConfigA
GetCommModemStatus
OpenWaitableTimerA
PurgeComm
ClearCommError
VirtualAlloc
GetThreadLocale
CancelWaitableTimer
LocalHandle
GetProcessShutdownParameters
FlushViewOfFile
HeapSize
GetConsoleInputWaitHandle
ReplaceFileA
GetTickCount
TerminateJobObject
lstrcmpiA
GetCurrentProcessId
ReleaseSemaphore
GetThreadTimes
GlobalFindAtomA
GetProcessId
GetEnvironmentVariableA
GetVolumePathNameA
ReadConsoleOutputCharacterA
GetFileSize
GetModuleHandleA
GetNamedPipeHandleStateA
GetTempPathA
UnlockFileEx
lstrlenA
GetConsoleAliasExesLengthA
OpenMutexA
GetCommTimeouts
FindFirstFileExA
IsBadReadPtr
VirtualProtectEx
GetProcessHeaps
EndUpdateResourceA
FindFirstFileA
GetCPInfo
SetInformationJobObject
DeleteFileA
WriteProfileSectionA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetFileAttributesA
GetComputerNameA
IsBadStringPtrA
GetSystemWindowsDirectoryA
SetFileValidData
GetFileSizeEx
IsBadWritePtr
GetDriveTypeA
SetConsoleHardwareState
UpdateResourceA
IsValidLanguageGroup
LoadLibraryA
ExitThread
VerifyVersionInfoA
EnumSystemCodePagesA
HeapFree
ReadConsoleA
RegisterWaitForSingleObjectEx
GetConsoleAliasExesLengthW
GetDiskFreeSpaceExA
GetProfileIntA
WriteConsoleInputA
GetPrivateProfileSectionNamesA
SetSystemPowerState
OpenEventA
GetProcessVersion
GetVersionExA
VirtualQueryEx
SuspendThread
GetConsoleCursorInfo
OpenMutexA
SetConsoleMenuClose
GetCPInfoExA
ReadConsoleOutputCharacterA
WriteConsoleOutputCharacterA
GetVolumeInformationA
FileTimeToDosDateTime
HeapSize
CreateTimerQueue
GetCurrentDirectoryA
FindVolumeClose
Heap32Next
GetProcessHeaps
GetDiskFreeSpaceA
ReadConsoleOutputAttribute
GetConsoleTitleA
OpenJobObjectA
GetProcessTimes
UpdateResourceA
GetProcessVersion
GetSystemDirectoryA
GetConsoleAliasesLengthA
GetProcessHandleCount
GetModuleHandleA
VerifyVersionInfoA
GetConsoleCommandHistoryLengthA
FreeEnvironmentStringsA
GetConsoleTitleA
OpenThread
FillConsoleOutputCharacterA
VirtualLock
ReleaseMutex
SetStdHandle
GetLongPathNameA
GetCurrentProcessId
ExpungeConsoleCommandHistoryA
FileTimeToLocalFileTime
GetConsoleInputExeNameA
GetSystemWindowsDirectoryA
WriteConsoleInputA
GetFileType
GetConsoleCP
GetCurrentConsoleFont
GetSystemTimes
OpenMutexA
VirtualQuery
GetLogicalDriveStringsA
SetFileApisToOEM
IsBadCodePtr
OpenFileMappingA
GetLocaleInfoA
HeapFree
BuildCommDCBA
GetConsoleHardwareState
GetVolumePathNamesForVolumeNameA
GlobalMemoryStatus
GetModuleFileNameA
GetExitCodeProcess
GetModuleFileNameA
OpenWaitableTimerA
FillConsoleOutputAttribute
WriteConsoleOutputA
WritePrivateProfileStructA
PeekConsoleInputA
GetTickCount
GetComputerNameA
GetCurrentThreadId
SearchPathA
GetCurrentProcess
HeapSize
SetSystemPowerState
ClearCommBreak
GlobalSize
WriteConsoleOutputA
GetConsoleWindow
LZClose
SetFileAttributesA
TerminateProcess
SetLocalPrimaryComputerNameA
Heap32First
GetCurrentConsoleFont
ChangeTimerQueueTimer
GetDriveTypeA
Process32Next
GetSystemTime
SetFileAttributesA
_hwrite
SetConsolePalette

user32

DefWindowProcA
RegisterUserApiHook
UnregisterUserApiHook
RedrawWindow
FrameRect
GetProcessWindowStation
MessageBeep
GetDlgItem
CloseDesktop
DialogBoxIndirectParamAorW
ExcludeUpdateRgn
CreateIconIndirect
SetWindowWord
GetWindowRgnBox
GetWindowDC
GrayStringA
UpdateLayeredWindow
GetDoubleClickTime
IsClipboardFormatAvailable
CreateWindowExA
GetSysColorBrush
DestroyMenu
RegisterSystemThread
BroadcastSystemMessageExA
PrivateExtractIconsA
DlgDirListComboBoxA
GetWindowTextA
FindWindowExA
GetUserObjectSecurity
MenuItemFromPoint
KillTimer
ChildWindowFromPointEx
SetMessageQueue
OemToCharBuffA
CloseWindowStation
CopyRect
GetWindowDC
UpdateWindow
LoadMenuA
GetClassLongA
EqualRect
DlgDirListComboBoxA
CreateCursor
SwapMouseButton
SetWindowPos
GetMenuItemID
CharLowerBuffW
AttachThreadInput
GetMenuItemCount
ChangeDisplaySettingsExA
CreateWindowStationA
GetMessagePos
EnumThreadWindows
RedrawWindow
GetWindowTextLengthA
RegisterLogonProcess
ClientToScreen
IsWindowInDestroy
ExcludeUpdateRgn
SetTimer
GetKeyboardLayoutNameA
SetDlgItemTextA
SetWindowLongA
TrackMouseEvent
CallMsgFilterA
MonitorFromWindow
GetScrollPos
SetTaskmanWindow
CharLowerBuffA
GetWindowModuleFileNameA
DlgDirListComboBoxA
SetFocus
RegisterSystemThread
RedrawWindow
GetKeyNameTextA
MessageBoxTimeoutA
OemToCharBuffA
GetWindowLongA
LockSetForegroundWindow
DefDlgProcA
EnumWindows
InvalidateRgn
CreateIcon
SetShellWindow
ShowScrollBar
CreateDialogParamA
IsChild
CheckMenuRadioItem
DlgDirSelectComboBoxExA
GetWindowInfo

ws2_32

closesocket

Exports

Exports

Ndtgnohmf
Mifdfexjxpb
Csiqcjoqor
ReadGmdnufn
Ogiqhjjwwb
Dxiphqb

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 657KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

635156ead66b373475216c2430be0a95

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 48KB - Virtual size: 657KB

.idata Size: 268KB - Virtual size: 265KB

.rsrc Size: 84KB - Virtual size: 82KB

.itext
Size: - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 657KB

.idata
Size: 268KB - Virtual size: 265KB

.rsrc
Size: 84KB - Virtual size: 82KB