e0cf284617f3e0769ec656a687b59a9c

Sharing

Copy URL

Twitter E-mail

General

Target

e0cf284617f3e0769ec656a687b59a9c
Size

692KB
MD5

e0cf284617f3e0769ec656a687b59a9c
SHA1

93be326841b8dc25ee7092536d82d9d16730b643
SHA256

bbfe195b76c735427f5e023c7cb87a6d99cea38bc046f18afa7b2a5b7a368785
SHA512

4098fb3fba99d8f32a68902352bad89c6bccd3897fd021a723960b78dc8217a0322b2d0fc113bac095e4168d2661cbbfba6644bdd006635cdae412f67bbdff82
SSDEEP

12288:xpt5YCNWr+cXHHPkT4YoW7Ua/KhRzb5jzOVvp:xpt5/UF/k8c7QzFPevp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0cf284617f3e0769ec656a687b59a9c

Files

e0cf284617f3e0769ec656a687b59a9c
.exe windows:4 windows x86 arch:x86

08cab5d4a751e668f9fa286423c7482b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\zikyx\eqejen.pdb

Imports

user32

WaitForInputIdle
DdeCmpStringHandles
DragDetect
GetDlgItemTextW
GetClassLongA
KillTimer
EnumThreadWindows
GetScrollPos
CreateDialogParamW
TranslateMDISysAccel
WindowFromDC
InsertMenuItemW
SetScrollInfo
HideCaret
IsDialogMessageA
GetCaretPos
CharPrevW
GrayStringA
SetFocus
CreateWindowExA
SetSystemCursor
AdjustWindowRectEx
DefWindowProcA
CharToOemBuffA
LoadMenuIndirectA
CopyImage
RegisterClassA
ScreenToClient
MessageBoxW
RemoveMenu
GetMenu
DdeNameService
OpenInputDesktop
CreateAcceleratorTableW
GetAltTabInfo
PeekMessageA
GetOpenClipboardWindow
DrawMenuBar
RegisterClassExA
SetProcessDefaultLayout
DlgDirListA
OemToCharBuffA
BringWindowToTop
InsertMenuW
EnumPropsExW
InflateRect
ShowWindow
TranslateAccelerator
CharUpperBuffW
DdeAccessData
GetProcessWindowStation
DrawTextA
DestroyWindow
FlashWindow

kernel32

GetStringTypeW
GetVersionExA
GetLastError
GetLocaleInfoA
GetACP
FreeEnvironmentStringsW
GetEnvironmentStringsW
RtlUnwind
GetSystemTimeAsFileTime
ReadFile
Sleep
GetUserDefaultLCID
GetTimeFormatA
GetDateFormatA
GetFileType
HeapReAlloc
GetStartupInfoW
IsValidLocale
CreateFileA
EnumSystemLocalesA
CloseHandle
GetModuleHandleA
GetModuleFileNameA
InterlockedExchange
ExitProcess
HeapDestroy
SetHandleCount
TerminateProcess
CompareStringW
FlushFileBuffers
EnterCriticalSection
CommConfigDialogA
VirtualQuery
HeapAlloc
GetTimeZoneInformation
GetStdHandle
LeaveCriticalSection
GetTickCount
WriteConsoleA
LoadLibraryA
SetStdHandle
GetModuleFileNameW
GetConsoleCP
SetEnvironmentVariableA
SetConsoleCtrlHandler
GetFileAttributesExA
TlsGetValue
VirtualFree
GetStartupInfoA
FreeEnvironmentStringsA
GetProcAddress
MultiByteToWideChar
InitializeCriticalSection
GetStringTypeA
SetLastError
UnhandledExceptionFilter
TlsSetValue
GetCurrentThread
GetProcessHeap
InterlockedDecrement
IsValidCodePage
VirtualAlloc
LCMapStringA
TlsAlloc
OpenMutexA
CompareStringA
HeapSize
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
HeapCreate
WideCharToMultiByte
SetFilePointer
LCMapStringW
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetCPInfo
WriteFile
GetEnvironmentStrings
HeapFree
TlsFree
FreeLibrary
DeleteCriticalSection
GetConsoleOutputCP
GetLocaleInfoW
GetCurrentProcessId
WriteConsoleW
InterlockedIncrement
GetOEMCP
GetCommandLineW
GetConsoleMode
CreateMutexA

comctl32

CreateToolbarEx
InitMUILanguage
ImageList_GetBkColor
ImageList_Merge
ImageList_Draw
ImageList_Remove
ImageList_SetOverlayImage
CreateMappedBitmap
InitCommonControlsEx
CreateStatusWindowW
ImageList_AddMasked
ImageList_LoadImageW
DrawStatusTextA
ImageList_Duplicate
_TrackMouseEvent

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08cab5d4a751e668f9fa286423c7482b

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comctl32

Sections

.text Size: 192KB - Virtual size: 189KB

.rdata Size: 260KB - Virtual size: 256KB

.data Size: 116KB - Virtual size: 126KB

.rsrc Size: 120KB - Virtual size: 119KB

.text
Size: 192KB - Virtual size: 189KB

.rdata
Size: 260KB - Virtual size: 256KB

.data
Size: 116KB - Virtual size: 126KB

.rsrc
Size: 120KB - Virtual size: 119KB