e14af41da35eb595e49e521f6d4ddfa7

Sharing

Copy URL

Twitter E-mail

General

Target

e14af41da35eb595e49e521f6d4ddfa7
Size

534KB
MD5

e14af41da35eb595e49e521f6d4ddfa7
SHA1

7dfe9792533168342c4e8cedc91cd9e0dadd0546
SHA256

875cb75ddba93081bacd8b83554b90b7d265506b4ee28c82407d59db59fc37fe
SHA512

c25aba0edc4c2debfa31e47c4a1aa53760bf919026f7e56231e5568ae5175005103bf7c5e826bc8eca13d99bb1c2f5cfe484548f4b14daa2ed09db36883a944c
SSDEEP

12288:deUtglpdTKoi5VID+nv6/3ZB/6bvw5h70:deogzdTK/aSvqJB/6kk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e14af41da35eb595e49e521f6d4ddfa7

Files

e14af41da35eb595e49e521f6d4ddfa7
.exe windows:4 windows x86 arch:x86

a1152187d68785620271d45e63e2bc4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA
ReplaceTextW

advapi32

CryptDeriveKey

user32

GetUpdateRect
SystemParametersInfoA
GrayStringW
DefMDIChildProcA
EnableWindow
GetClassWord
TranslateAcceleratorA
ModifyMenuW
CopyIcon
RegisterDeviceNotificationW
CharNextW
GetMenuItemCount
OpenIcon
BroadcastSystemMessageW
WinHelpW
MapVirtualKeyExA
MsgWaitForMultipleObjectsEx
DrawStateA
ChangeDisplaySettingsA
DestroyCursor
VkKeyScanA
DdeConnect
ShowWindow
GetUpdateRgn
IsDialogMessageW
DestroyWindow
MapVirtualKeyExW
GetWindowThreadProcessId
CopyAcceleratorTableW
LoadAcceleratorsW
SetMenuItemBitmaps
GetActiveWindow
OpenDesktopW
GetSubMenu
MenuItemFromPoint
UnregisterClassW
PostQuitMessage
RegisterClassExA
SetClipboardData
DdeFreeStringHandle
GetSysColor
DefFrameProcW
IsCharUpperA
MonitorFromPoint
LoadIconW
LoadStringA
DrawTextExW
GetMessageTime
RegisterClassA
ScreenToClient
GetMenuItemID
SetCapture
ImpersonateDdeClientWindow
GetPropW
GetCursor
GetTitleBarInfo
CheckMenuItem
CreateWindowExA
GetClipboardFormatNameW
ChangeDisplaySettingsW
MessageBoxA
DrawMenuBar
GetQueueStatus
GetSysColorBrush
DefWindowProcA
DdeUnaccessData
DdeCreateStringHandleA
DialogBoxIndirectParamW
PeekMessageA
DdeCreateDataHandle
GetClientRect
GetWindowWord
RegisterClipboardFormatA

kernel32

WideCharToMultiByte
SetEvent
GetStartupInfoA
GetCurrentProcessId
InterlockedExchange
LoadLibraryA
GetProfileIntA
SetConsoleCP
HeapReAlloc
IsBadWritePtr
GetEnvironmentStrings
GetFileType
VirtualQuery
FlushViewOfFile
GetVersionExA
FreeEnvironmentStringsW
CloseHandle
SetFilePointer
GetProcessHeap
GetComputerNameW
LoadModule
DeleteCriticalSection
GetNamedPipeHandleStateW
GetEnvironmentStringsW
EnumResourceNamesA
InterlockedIncrement
OpenEventA
LCMapStringW
GetLocalTime
GetCommandLineA
SetHandleCount
GlobalFree
GetCurrentDirectoryA
VirtualLock
LoadLibraryExW
WriteFile
FlushConsoleInputBuffer
LoadResource
LCMapStringA
InitializeCriticalSection
InterlockedDecrement
ExitProcess
HeapCreate
GetProcessAffinityMask
GetModuleFileNameW
SetUnhandledExceptionFilter
GetSystemTime
HeapFree
GetThreadLocale
VirtualUnlock
GetDateFormatA
OpenEventW
GetCurrentProcess
VirtualAlloc
GetStartupInfoW
GetLastError
SetLocalTime
GetSystemTimeAsFileTime
TlsGetValue
SetCriticalSectionSpinCount
FreeResource
GetModuleHandleA
GetPrivateProfileIntA
CompareStringW
VirtualFree
FreeLibraryAndExitThread
GetSystemDefaultLCID
GetProcAddress
WaitForSingleObjectEx
GetTempPathA
SetThreadContext
IsBadReadPtr
GetTimeFormatW
LocalShrink
GetThreadTimes
ReleaseMutex
SetLastError
CreateEventW
GetStringTypeA
GetStringTypeW
GetCurrentThreadId
WriteConsoleOutputCharacterW
GetModuleFileNameA
GetTickCount
FlushFileBuffers
TlsSetValue
OpenMutexA
GetStdHandle
CreateMutexA
HeapDestroy
MultiByteToWideChar
FreeEnvironmentStringsA
GetVersion
ExpandEnvironmentStringsW
SetStdHandle
GetCommandLineW
CreatePipe
TlsAlloc
GetFileAttributesExW
WaitForMultipleObjects
GetCPInfo
LeaveCriticalSection
GetProfileStringA
FindResourceExA
WriteConsoleInputW
RtlUnwind
TlsFree
EnterCriticalSection
CompareStringA
UnhandledExceptionFilter
SetComputerNameA
ReadFile
TerminateProcess
QueryPerformanceCounter
SetEnvironmentVariableA
GetTimeZoneInformation
GetCurrentThread
HeapAlloc

wininet

InternetTimeToSystemTimeA
GopherGetLocatorTypeW
FindNextUrlCacheContainerA
InternetHangUp
CreateUrlCacheContainerW

gdi32

DeleteColorSpace
GetPixel
CombineRgn
GetTextMetricsW
DeleteDC
GetClipBox
GetObjectW
CreateCompatibleBitmap
GetDeviceCaps
SetWindowOrgEx
CreateDCA
GetArcDirection
GetWindowExtEx
UnrealizeObject
DPtoLP
SelectObject
SetICMProfileW
GetBkMode
ResetDCW
DeleteMetaFile
SetColorAdjustment
PlayMetaFile
CreateCompatibleDC
Pie
GetPolyFillMode
CreateEnhMetaFileW

comctl32

DestroyPropertySheetPage
ImageList_Duplicate
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_DrawIndirect
InitCommonControlsEx
CreateStatusWindow
ImageList_GetImageInfo
ImageList_Add

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1152187d68785620271d45e63e2bc4a

Headers

File Characteristics

Imports

comdlg32

advapi32

user32

kernel32

wininet

gdi32

comctl32

Sections

.text Size: 154KB - Virtual size: 154KB

.rdata Size: 257KB - Virtual size: 257KB

.data Size: 106KB - Virtual size: 111KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 154KB - Virtual size: 154KB

.rdata
Size: 257KB - Virtual size: 257KB

.data
Size: 106KB - Virtual size: 111KB

.rsrc
Size: 14KB - Virtual size: 14KB