e03c07c59127b0335d0d7d545fa5053f

Sharing

Copy URL

Twitter E-mail

General

Target

e03c07c59127b0335d0d7d545fa5053f
Size

461KB
MD5

e03c07c59127b0335d0d7d545fa5053f
SHA1

97cc4abe2506cb485e3fe3c4cc867c5b8922ae86
SHA256

fa3f97220da13927d62a296a378765a70dea54e064f9b3f354e907f3af324f87
SHA512

3d3f8468171da0efb73187cf6ccdb38ca8b316decdddf3d425f8421411c5f1b6661f1e6f73c8d5da8c282421e571b1b35ad4ceba11261726fdc82b51a148bf6b
SSDEEP

6144:nQyfzklDuF5Z0I4PmwKSFZH4vYB8yo/E4d70UAYzmsHOGa3uqEthnedL7H/Z4G1X:nQyKDuFcICHLs71A41OHuPQiwXWWckf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e03c07c59127b0335d0d7d545fa5053f

Files

e03c07c59127b0335d0d7d545fa5053f
.exe windows:4 windows x86 arch:x86

0fc2dd5ab468ba540130b908814fa127

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

TlsSetValue
EnterCriticalSection
TlsGetValue
UnhandledExceptionFilter
SetLastError
HeapReAlloc
LCMapStringA
ExitProcess
WriteFile
EnumSystemLocalesA
QueryPerformanceCounter
GetACP
GlobalReAlloc
GetProcAddress
GetTimeZoneInformation
HeapCreate
LCMapStringW
TlsAlloc
lstrcatW
TerminateProcess
SetHandleCount
LeaveCriticalSection
GetEnvironmentStrings
GetEnvironmentStringsW
GetLastError
CreateDirectoryW
FreeEnvironmentStringsA
CompareStringA
InterlockedExchange
GetStringTypeW
CloseHandle
HeapAlloc
GetOEMCP
VirtualFree
GetStringTypeA
GetFileType
CompareStringW
VirtualQuery
GetVersion
WideCharToMultiByte
GetCalendarInfoW
TlsFree
GetStartupInfoA
VirtualAlloc
GetCommandLineA
CreateFileW
GetCPInfo
GetSystemTime
SetStdHandle
GetSystemTimeAsFileTime
DeleteCriticalSection
CreateSemaphoreA
GetCurrentProcess
MultiByteToWideChar
InterlockedIncrement
GetCurrentProcessId
HeapDestroy
GetStdHandle
InterlockedDecrement
GetCurrentThreadId
ReadConsoleOutputCharacterW
CreateMutexA
FlushFileBuffers
GetTickCount
LocalShrink
GetCurrentThread
FreeEnvironmentStringsW
InitializeCriticalSection
GetCurrentDirectoryA
HeapFree
LoadLibraryA
GetLocalTime
GetModuleFileNameA
RtlUnwind
ReadFile
IsBadWritePtr
SetEnvironmentVariableA
SetFilePointer
GetModuleHandleA
CompareFileTime
OpenMutexA

comdlg32

ChooseColorW
ChooseColorA

gdi32

CreateColorSpaceA
SetEnhMetaFileBits
CreateFontA
SetStretchBltMode
GetStockObject
SetAbortProc
ColorCorrectPalette
CreatePen
StretchDIBits
SetPixelV
TranslateCharsetInfo
SelectObject
CombineRgn
GetEnhMetaFilePaletteEntries
GetSystemPaletteUse
RectVisible

shell32

SHFileOperation

user32

GetSubMenu
VkKeyScanW
DrawTextExA
RegisterClassA
ChangeDisplaySettingsExW
GetClientRect
CreatePopupMenu
SetMenuDefaultItem
RegisterClassExA
SetWindowLongA
EnumDisplayDevicesA
RegisterHotKey
GetMenuContextHelpId
RegisterClipboardFormatA
SetKeyboardState
GetCaretBlinkTime
LoadKeyboardLayoutA
GetWindowInfo
CharLowerA
GetFocus
GetNextDlgGroupItem

wininet

InternetQueryFortezzaStatus
FtpOpenFileW

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fc2dd5ab468ba540130b908814fa127

Headers

File Characteristics

Imports

comctl32

kernel32

comdlg32

gdi32

shell32

user32

wininet

Sections

.text Size: 140KB - Virtual size: 140KB

.rdata Size: 5KB - Virtual size: 11KB

.data Size: 311KB - Virtual size: 310KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 140KB - Virtual size: 140KB

.rdata
Size: 5KB - Virtual size: 11KB

.data
Size: 311KB - Virtual size: 310KB

.rsrc
Size: 4KB - Virtual size: 3KB