df823c04d0e033db2eadd3d3adc8f8b8

Sharing

Copy URL

Twitter E-mail

General

Target

df823c04d0e033db2eadd3d3adc8f8b8
Size

141KB
MD5

df823c04d0e033db2eadd3d3adc8f8b8
SHA1

f45fffc3709bda6b46369583499b3d5a5b328af6
SHA256

f2d529d7ab099d67cb33aaa16baf066d4e32fd69acb962375417b52c8b18ad5d
SHA512

fee3218a89d718b99b2fc5455ae2f3099e41795d05ec2a8bd8ecc961a3e05db721551f4e6c120d863d1bc29eab1081e78d8e8a5a40313df73f1ff43ac06bc167
SSDEEP

3072:Dxc7w5fJ0goylhPSsq3jdm9DpH86HpjY73mwfWt3x5gvspF2lYFP:D/5J0goiqsq3Zm9DJozdfWtBOve/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df823c04d0e033db2eadd3d3adc8f8b8

Files

df823c04d0e033db2eadd3d3adc8f8b8
.exe windows:5 windows x86 arch:x86

1b559ccae1e714ad1f98b3b777a4f9fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
CreateDirectoryW
VirtualFree
DeleteFileA
GetTimeFormatW
GetModuleHandleA
GetNumberFormatW
GetACP
LoadLibraryW
VirtualProtect
GlobalFree
GetCurrentDirectoryA
CreateDirectoryExW
TlsGetValue
OutputDebugStringA
lstrcmpW
GetLastError
DosPathToSessionPathA
RtlUnwind
CreateProcessA
GetProcAddress
FindNextFileW
SetErrorMode
HeapFree
ExitThread

msvcrt

printf
wcsrchr
swscanf
toupper
_wtoi
wcsncpy
towupper
_XcptFilter
wcscmp
strncpy
_wcsnicmp
labs
wcstok
_wcmdln
memcpy
__setusermatherr
atoi
__CxxFrameHandler
_wcsicmp
wcstol

user32

GetProcessWindowStation
DispatchMessageW
ScreenToClient
CheckDlgButton
DestroyWindow
LoadCursorW
LoadCursorA
ClientToScreen
GetParent
CopyRect
GetMenuItemCount
BeginPaint
SetCapture
IsWindow
GetCursorPos
wsprintfW
SetScrollPos
ReleaseDC
LoadMenuW
UnregisterClassW
ReleaseCapture
LoadImageW
MapWindowPoints
RegisterClassA
DialogBoxParamA
SendMessageW
SendMessageA

gdi32

SetBkMode
TranslateCharsetInfo
StretchBlt
CreateBitmap
CreateCompatibleDC
PatBlt
SetTextColor
CreateFontIndirectW
Rectangle
RestoreDC

opengl32

glColor4i
glStencilMask
glColor3ui
glTexCoord2d
wglShareLists
GlmfBeginGlsBlock
glTexCoord2dv
glFogfv
glColor4d
glColor4f

Exports

Exports

VilJlhuQpanqTzh
YaNgetjMbklbzIawgzWns
AeKzzenVyzzq

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b559ccae1e714ad1f98b3b777a4f9fc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.crt Size: 512B - Virtual size: 72B

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 115B

.data Size: 57KB - Virtual size: 57KB

.rsrc Size: 65KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 260B

.text
Size: 13KB - Virtual size: 13KB

.crt
Size: 512B - Virtual size: 72B

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 57KB - Virtual size: 57KB

.rsrc
Size: 65KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 260B