1147c49a678de2a66f5f1b81eb58f0241604c11382c34840965c6d0e0c2fd611

Sharing

Copy URL

Twitter E-mail

General

Target

1147c49a678de2a66f5f1b81eb58f0241604c11382c34840965c6d0e0c2fd611
Size

1021KB
MD5

25b7c91053a472a416740fd755fb2f4b
SHA1

940f6a401a76d952545bcd5416efd21502559a37
SHA256

1147c49a678de2a66f5f1b81eb58f0241604c11382c34840965c6d0e0c2fd611
SHA512

78e99f44f98694c4190f877729b407dd9a5678fb81cf500fd452b5374d4ed10766a0c5ee157d5298fd8c4e29ffd149f36594baf2284dc8fe035e6059973d5ff9
SSDEEP

24576:oGoKVJykhpc0Wdm/pH3T4oWULtFyLNiJwpEC6jSsEWE8v:FJHzc50MiJwpECfP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1147c49a678de2a66f5f1b81eb58f0241604c11382c34840965c6d0e0c2fd611

Files

1147c49a678de2a66f5f1b81eb58f0241604c11382c34840965c6d0e0c2fd611
.exe windows:4 windows x86 arch:x86

029fc85415264e92dfa5ec3d9e823618

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

InitCommonControls

gdi32

ChoosePixelFormat
GetDeviceCaps
GetDeviceGammaRamp
SetDeviceGammaRamp
SetPixelFormat
SwapBuffers

kernel32

AllocConsole
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeConsole
FreeLibrary
GetCommandLineA
GetConsoleScreenBufferInfo
GetLargestConsoleWindowSize
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetProcAddress
GetStartupInfoA
GetStdHandle
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatus
GlobalSize
GlobalUnlock
LoadLibraryA
MapViewOfFile
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleInputA
ReadConsoleOutputCharacterA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetEvent
SetUnhandledExceptionFilter
Sleep
UnmapViewOfFile
WaitForMultipleObjects
WriteConsoleInputA
WriteFile

msvcrt

_stricmp
_strnicmp
_unlink
__getmainargs
__p__environ
__set_app_type
_cexit
_fileno
_findclose
_findfirst
_findnext
_fmode
_fpreset
_iob
_mkdir
_setjmp
_setmode
_snprintf
_vsnprintf
atan
atan2
atexit
atof
atoi
ceil
exit
exp
fclose
feof
fflush
fgets
floor
fopen
fread
free
fseek
ftell
fwrite
isalpha
isdigit
isupper
localtime
log
longjmp
malloc
memcpy
memmove
memset
pow
rand
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strftime
strncmp
strncpy
strrchr
strstr
strtok
strtol
tan
time
tolower
toupper
vfprintf
vsprintf

user32

AdjustWindowRectEx
ChangeDisplaySettingsA
ClipCursor
CloseClipboard
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
GetClipboardData
GetCursorPos
GetDC
GetKeyboardState
GetMessageA
GetSystemMetrics
LoadCursorA
LoadIconA
MessageBoxA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SetCapture
SetCursorPos
SetForegroundWindow
SetWindowPos
ShowCursor
ShowWindow
SystemParametersInfoA
ToAscii
TranslateMessage
UpdateWindow

winmm

joyGetDevCapsA
joyGetNumDevs
joyGetPosEx
mciSendCommandA
timeBeginPeriod
timeGetTime
waveOutClose
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

wsock32

WSACleanup
WSAGetLastError
WSAStartup
bind
closesocket
gethostbyname
getsockname
htons
ioctlsocket
ntohs
recvfrom
sendto
socket

Sections

.text
Size: 897KB - Virtual size: 896KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 44.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

029fc85415264e92dfa5ec3d9e823618

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

msvcrt

user32

winmm

wsock32

Sections

.text Size: 897KB - Virtual size: 896KB

.data Size: 61KB - Virtual size: 60KB

.bss Size: - Virtual size: 44.5MB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 56KB - Virtual size: 56KB

.text
Size: 897KB - Virtual size: 896KB

.data
Size: 61KB - Virtual size: 60KB

.bss
Size: - Virtual size: 44.5MB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 56KB - Virtual size: 56KB