e20b78f1749a6af8b550e2fb45ef9cdd

Sharing

Copy URL Twitter E-mail

General

Target

e20b78f1749a6af8b550e2fb45ef9cdd
Size

392KB
MD5

e20b78f1749a6af8b550e2fb45ef9cdd
SHA1

68ac86485351bf75ecc503b1e92b693d1f0fbfe8
SHA256

fcf0abf9c1f4e8da990e40bf992b09f8e6d17db92ed9478c511da3b6602e20c5
SHA512

c45d6e249e24933f2c9b6340e364b6e3ba508c90bb2141f3cc603d52d7b13b47f264e1f496cd9b9504963c6aa874dcd325220b1ed03c7cfee3d834b4d02ffa5e
SSDEEP

3072:QifvAXNcmqgh5lOLHKC3JGJTy3lwLEYaFNH1dcKhObvLvKPV9GxU5To:QinA9cmrkXJGJSlx1dcKh4vL67Gek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e20b78f1749a6af8b550e2fb45ef9cdd

Files

e20b78f1749a6af8b550e2fb45ef9cdd
.exe windows:4 windows x86 arch:x86

ad92e5e2bbec9041e4377fe739839981

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UpdateResourceA
MapUserPhysicalPagesScatter
GetStdHandle
GetCurrentThreadId
GetProcessHeap
IsDebuggerPresent
BuildCommDCBAndTimeoutsA
SetTimerQueueTimer
HeapCompact
LZOpenFileA
GetConsoleAliasExesLengthW
OpenFileMappingA
GetModuleHandleA
SizeofResource
GetVersionExA
ClearCommBreak
CreateTimerQueueTimer
GetTempPathA
GetConsoleAliasExesW
CreateEventA
SetCurrentDirectoryA
ReadConsoleOutputAttribute
GetProcessShutdownParameters
GetComputerNameA
MulDiv
EndUpdateResourceA
IsBadReadPtr
OpenJobObjectA
GetSystemDirectoryA
RemoveDirectoryA
VerifyVersionInfoA
PeekConsoleInputA
LoadResource
SetInformationJobObject
VirtualFreeEx
GetDllDirectoryA
GetProcessPriorityBoost
ReadConsoleA
ReadFile
PrepareTape
GetTickCount
_lwrite
GetCurrentDirectoryA
IsBadStringPtrA
GetVolumePathNameA
SetThreadPriorityBoost
GetCommandLineA
SearchPathA
VirtualAlloc
SetConsoleCP
CloseHandle
FillConsoleOutputAttribute
GetPrivateProfileSectionNamesW
FlushConsoleInputBuffer
FindFirstChangeNotificationA
ExpungeConsoleCommandHistoryA
HeapSummary
FlushFileBuffers
UnregisterConsoleIME
OpenThread
FreeConsole
LoadLibraryExA
Process32Next
SetFileAttributesA
GetEnvironmentVariableA
CreateSemaphoreA
GetFileAttributesA
GetProcessWorkingSetSize
GlobalHandle
MultiByteToWideChar
GetPriorityClass
GetCommTimeouts
IsBadWritePtr
CallNamedPipeA
OpenProcess
HeapWalk
SetComputerNameA
LZSeek
AllocConsole
GetFileAttributesExA
CreateDirectoryExW
GlobalCompact
GetNumberFormatA
GetTickCount
GetThreadSelectorEntry
lstrcatA
GetEnvironmentVariableA
GetExpandedNameA
HeapSize
GetConsoleCursorMode
GetNamedPipeHandleStateA
GetLogicalDrives
FindFirstFileExA
QueueUserWorkItem
GetThreadLocale
FindFirstChangeNotificationA
SuspendThread
SetConsoleTitleA
OpenJobObjectA
OpenWaitableTimerA
AddConsoleAliasA
GetConsoleMode
FillConsoleOutputCharacterA
GlobalFree
IsBadHugeReadPtr
PrepareTape
UnregisterWait
GetLocaleInfoA
SetEvent
GetDefaultCommConfigA
LocalCompact
EnumResourceLanguagesA
lstrcmpiA
OpenMutexA
GetModuleFileNameA
DeleteFileA
SetFileValidData
GlobalAlloc
GetFileSizeEx
SetEnvironmentVariableA
DeleteFileA
SetSystemTimeAdjustment
GetTimeFormatA
DisconnectNamedPipe
ConnectNamedPipe
ExpandEnvironmentStringsA
FindFirstFileExW
GetConsoleCursorInfo
FindAtomA
GetThreadTimes
lstrlen
GetFileAttributesExA
ExitThread
ReleaseMutex
GetCommTimeouts
IsBadCodePtr
OpenWaitableTimerA
GetTickCount
GetVersionExA
FindVolumeClose
_lread
FindNextVolumeMountPointW
SetMailslotInfo
SetVolumeMountPointA
CreateSemaphoreA
SetLocalTime
GetConsoleWindow
OpenWaitableTimerA
GetTempFileNameA
DeleteFileA
GetAtomNameA
SetConsoleMode
ProcessIdToSessionId
GetConsoleAliasesLengthA
Sleep
GetConsoleTitleA
GetNumberOfConsoleInputEvents
GetConsoleFontInfo
GetCurrentProcess
RemoveDirectoryA
DeleteTimerQueueEx
CreateDirectoryA
SetLocaleInfoA
GetTickCount
GetCurrentThreadId
GetConsoleTitleA
SetVolumeLabelA
DeleteTimerQueueEx
WriteConsoleOutputCharacterA
SetPriorityClass
GetThreadLocale

user32

SetCapture
SetScrollInfo
GetMenuState
DefDlgProcA
CharPrevA
SetParent
DialogBoxIndirectParamA
IsWindow
GetForegroundWindow
ChangeMenuA
RegisterTasklist
CliImmSetHotKey
DisplayExitWindowsWarnings
GetListBoxInfo
SetWindowPos
SetWindowLongA
SetProcessDefaultLayout
OpenIcon
CascadeChildWindows
UnregisterUserApiHook
CalcMenuBar
GetMenuInfo
CalcMenuBar
DlgDirSelectComboBoxExA
DispatchMessageA
RegisterMessagePumpHook
EnumThreadWindows
ReplyMessage
SetMenu
ScreenToClient
GetMenuItemRect
CharLowerA
CharToOemBuffA
GetCaretPos
GetClipCursor
GetUpdateRect
GetTitleBarInfo
InflateRect
CreateSystemThreads
EnumWindows
SendMessageCallbackA
OpenWindowStationA
RegisterWindowMessageA
LoadStringA
CharLowerBuffW
CharToOemBuffA
EndTask
TrackPopupMenu
LoadMenuIndirectA
GetMessageTime
SwapMouseButton
SendDlgItemMessageA
CreatePopupMenu
SendMessageTimeoutW
ChangeDisplaySettingsExA
IsIconic
GetPropA
GetWindowTextA
GetWindowTextA
CopyIcon
ReplyMessage
CallMsgFilterA
EnumPropsExA
HideCaret
SetScrollRange
GetShellWindow
CreateIconFromResourceEx
ChildWindowFromPoint
FreeDDElParam
GetDesktopWindow
IsCharUpperA
IsServerSideWindow
EnumPropsExW
GetScrollRange
AdjustWindowRectEx
SendMessageTimeoutW
CliImmSetHotKey
DrawTextA
GetMenuState
DestroyAcceleratorTable
UnionRect
GetSysColor
ExcludeUpdateRgn

ws2_32

closesocket

Exports

Exports

Vkdynoltlf
Xuwljukahfi
Srqaqhp
CreateXqyvqbkie
OpenDinqijlc
IsLaqbdfnmx

Sections

.itext
Size: - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 60KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad92e5e2bbec9041e4377fe739839981

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 276B

.text Size: 60KB - Virtual size: 681KB

.idata Size: 260KB - Virtual size: 259KB

.rsrc Size: 68KB - Virtual size: 64KB

.itext
Size: - Virtual size: 276B

.text
Size: 60KB - Virtual size: 681KB

.idata
Size: 260KB - Virtual size: 259KB

.rsrc
Size: 68KB - Virtual size: 64KB