e214d70af75dd0b4a52243b78b207a92

Sharing

Copy URL Twitter E-mail

General

Target

e214d70af75dd0b4a52243b78b207a92
Size

29KB
MD5

e214d70af75dd0b4a52243b78b207a92
SHA1

e372fb500f6672fbae2dc45423ec5d1dc96efcb9
SHA256

c9447ea02a79c08afd55eac1af5963450a3655f2719ca9b24599ed3bd297a688
SHA512

141dfebd5c2fad66690f88db3ee2a1073b00b8f0780a21256d2357eb2d48e98dd83b56a917ca49c3c64b08dfae5eae911fe34047d05a69ec503a2a4110cf19a6
SSDEEP

384:tRrEt1v4hxgE2CkPeWK7YiovYqF0Cwl4T7xhNCuJ5eVPeD3deYOW:HrM1Ke6ketYiovYT4T7xrC8gOdeG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e214d70af75dd0b4a52243b78b207a92

Files

e214d70af75dd0b4a52243b78b207a92
.exe windows:4 windows x86 arch:x86

6f272d5717df8ed630af11a7644b3417

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
BackupRead
BuildCommDCBW
BuildCommDCBAndTimeoutsW
CloseHandle
CompareStringA
CreateFiber
CreateIoCompletionPort
CreateMailslotW
CreateMutexW
CreateToolhelp32Snapshot
EnumDateFormatsW
EnumResourceLanguagesW
EnumResourceNamesA
EnumResourceTypesA
EnumResourceTypesW
ExitProcess
ExpungeConsoleCommandHistoryW
FindAtomA
FindCloseChangeNotification
FindFirstFileW
FlushViewOfFile
FormatMessageA
FreeEnvironmentStringsA
GenerateConsoleCtrlEvent
GetCommTimeouts
GetCommandLineW
GetConsoleAliasExesLengthA
GetConsoleKeyboardLayoutNameW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDiskFreeSpaceA
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetLastError
GetLocalTime
GetModuleHandleW
GetOverlappedResult
GetPrivateProfileStructW
GetProcessVersion
GetProfileStringA
GetShortPathNameA
GetStartupInfoW
GetSystemDefaultLCID
GetSystemDirectoryA
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameW
GetThreadPriority
GetTimeFormatW
GetVersion
GetWindowsDirectoryA
GlobalFree
HeapCreate
InterlockedIncrement
IsDBCSLeadByte
LoadModule
Module32Next
MoveFileA
OutputDebugStringW
QueryPerformanceFrequency
ReadConsoleOutputA
ReleaseMutex
ResetEvent
ResumeThread
RtlMoveMemory
SetCommBreak
SetConsoleCursorInfo
SetConsoleInputExeNameA
SetConsoleTextAttribute
SetCurrentDirectoryW
SetEvent
SetLastError
SetProcessShutdownParameters
SetSystemPowerState
SetVDMCurrentDirectories
SystemTimeToFileTime
UnhandledExceptionFilter
VirtualFree
VirtualProtect
WideCharToMultiByte
WritePrivateProfileSectionA
WritePrivateProfileStringA
WriteProfileStringW
WriteTapemark
_hread
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA

user32

AnyPopup
BroadcastSystemMessageA
CascadeWindows
ChangeMenuA
CharLowerA
CharToOemBuffA
CharUpperA
CharUpperW
CloseClipboard
CloseDesktop
CloseWindowStation
DdeConnect
DdeCreateStringHandleA
DdeInitializeA
DdeNameService
DefWindowProcA
DialogBoxIndirectParamA
DlgDirListW
DrawTextExA
EnumPropsExA
ExcludeUpdateRgn
FindWindowA
FindWindowExA
FreeDDElParam
GetClipCursor
GetClipboardFormatNameW
GetCursor
GetCursorInfo
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetLastInputInfo
GetListBoxInfo
GetMenu
GetMessageW
GetMessageTime
GetParent
GetSystemMenu
GetThreadDesktop
GetUpdateRgn
GetWindowDC
GetWindowModuleFileNameW
GetWindowRgn
GetWindowWord
InSendMessage
IsCharAlphaA
IsCharLowerA
IsClipboardFormatAvailable
IsMenu
LoadCursorFromFileA
LoadCursorFromFileW
LoadKeyboardLayoutA
LoadMenuA
LookupIconIdFromDirectoryEx
ModifyMenuA
MonitorFromWindow
PostQuitMessage
PostThreadMessageA
RegisterDeviceNotificationA
ReplyMessage
ReuseDDElParam
SendInput
SetCursorPos
SetMenuItemBitmaps
SetWindowLongA
SetWindowLongW
SetWindowWord
ToAsciiEx
TranslateMDISysAccel
UnloadKeyboardLayout
WindowFromDC
WindowFromPoint
keybd_event

gdi32

BitBlt
CreateCompatibleBitmap
CreatePen
EnumFontsA
EnumICMProfilesA
ExtCreateRegion
ExtEscape
ExtTextOutW
GdiComment
GdiFlush
GdiGetBatchLimit
GdiPlayScript
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetCharABCWidthsFloatA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetEnhMetaFileDescriptionA
GetFontData
GetKerningPairsW
GetMetaFileW
GetPixel
GetWorldTransform
PolyTextOutW
SetBitmapDimensionEx
SetColorAdjustment
SetGraphicsMode
SetMiterLimit
SetWinMetaFileBits
SwapBuffers

comdlg32

ChooseColorA
ChooseFontA
ChooseFontW
ReplaceTextA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cnJf
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f272d5717df8ed630af11a7644b3417

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 7KB - Virtual size: 7KB

.data Size: 17KB - Virtual size: 29KB

.cnJf Size: 3KB - Virtual size: 14KB

.reloc Size: 1024B - Virtual size: 8KB

.text
Size: 7KB - Virtual size: 7KB

.data
Size: 17KB - Virtual size: 29KB

.cnJf
Size: 3KB - Virtual size: 14KB

.reloc
Size: 1024B - Virtual size: 8KB