12dfb5a161ea8d3c4e0464c6d689cade5903aced6f14178ea5929cf0df0e376c

Sharing

Copy URL Twitter E-mail

General

Target

12dfb5a161ea8d3c4e0464c6d689cade5903aced6f14178ea5929cf0df0e376c
Size

324KB
MD5

8d0a2858a07540c947ee454dca1a2092
SHA1

2aec9ed1fd895f0959419c6e4dd20f08697ff8f6
SHA256

12dfb5a161ea8d3c4e0464c6d689cade5903aced6f14178ea5929cf0df0e376c
SHA512

af2f91550fc64d6b77a4896023bcdc40f9a6deeecffce625f2955003897a06310d579cee98e06511d139b354d4dafe9a7947cbe46d6d6732add50767351d1d40
SSDEEP

6144:2QtxuhbJOzK4ejYOAYZwUcZoqmqGlRAdad2vwX7XPZ15Z:2wMRarURcZVmq6RAdaAvkXPP5Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12dfb5a161ea8d3c4e0464c6d689cade5903aced6f14178ea5929cf0df0e376c

Files

12dfb5a161ea8d3c4e0464c6d689cade5903aced6f14178ea5929cf0df0e376c
.exe windows:5 windows x86 arch:x86

72784adcaec79f09f9825f22351d81ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetFontLanguageInfo
GetDCBrushColor
GetTextCharsetInfo
SetTextColor
GetTextColor
GetTextCharacterExtra
GetFontUnicodeRanges
GetSystemPaletteUse
GetBkColor
GetPolyFillMode
SetTextCharacterExtra
GetStretchBltMode
GetRandomRgn
GetClipRgn
GetObjectType
GetTextAlign
GetMapMode
GetNearestPaletteIndex
GetTextCharset
GetNearestColor
GetPixelFormat

user32

GetMenuCheckMarkDimensions
GetCursor
GetInputState
EnableWindow
GetForegroundWindow
EndDialog
SetDlgItemTextA
DrawTextA
ShowWindow
EndPaint
GetMenuContextHelpId
GetMenu
MoveWindow
RemovePropA
GetQueueStatus
GetWindowLongA
GetWindowContextHelpId
SetWindowTextA
GetDialogBaseUnits
PostMessageA
SendMessageA
GetDlgItemInt
GetMenuItemCount
IsWindowEnabled
GetScrollPos
GetDlgItem
IsWindowUnicode
GetPropA
WindowFromDC
LoadIconA
GetWindowDC
BeginPaint
GetMenuItemID

kernel32

SetEnvironmentVariableA
CompareStringW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
CreateFileW
HeapReAlloc
GetStringTypeW
WriteConsoleW
HeapSize
LCMapStringW
Sleep
GetTimeZoneInformation
ReadFile
MultiByteToWideChar
SetEndOfFile
SetStdHandle
GetDriveTypeW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
RtlUnwind
SetHandleCount
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
GetCurrentThread
InterlockedDecrement
GetProcessHeap
SizeofResource
LocalFlags
GlobalHandle
DeleteFileA
GetFileTime
FindClose
GlobalFlags
WriteFile
LockResource
GlobalSize
GetCurrentProcess
GetVersion
IsProcessorFeaturePresent
SetFilePointer
GetProcAddress
MoveFileA
GetCurrentProcessId
GetTickCount
IsDebuggerPresent
FlushFileBuffers
GetStdHandle
GetCurrentThreadId
GetModuleHandleA
GetLastError
GetDriveTypeA
GetFileType
CreateThread
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EncodePointer
DecodePointer
TerminateProcess
HeapAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileExA
HeapFree
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
GetModuleFileNameW
HeapCreate
HeapDestroy
GetFullPathNameA
CloseHandle
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetCurrentDirectoryW
SetCurrentDirectoryW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA
EnterCriticalSection
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryW
GetLocaleInfoW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError

Sections

.text
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72784adcaec79f09f9825f22351d81ed

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 257KB - Virtual size: 257KB

.rdata Size: 40KB - Virtual size: 40KB

.data Size: 7KB - Virtual size: 18KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 257KB - Virtual size: 257KB

.rdata
Size: 40KB - Virtual size: 40KB

.data
Size: 7KB - Virtual size: 18KB

.reloc
Size: 18KB - Virtual size: 18KB