e497f5099254320592a9d5fabdbb863ed539795939bcece3aa1d84a46b5b530c

Sharing

Copy URL

Twitter E-mail

General

Target

e497f5099254320592a9d5fabdbb863ed539795939bcece3aa1d84a46b5b530c
Size

980KB
MD5

2e358c984cbc842ef403265577c9e45f
SHA1

154711300dc81d10d8448ce661b869cc605e018f
SHA256

e497f5099254320592a9d5fabdbb863ed539795939bcece3aa1d84a46b5b530c
SHA512

edb7ea9fb46424f514c4ac0d4c708f47a339ba5f14f49b88581ae62b9f7ab3a9e67df62569eea2480dfe7f5aa86385c951492581a9226d900d6653fa35a3e5d7
SSDEEP

12288:uikyVyNz9hmFBpnYZT9OyFrJWzdDE8FbsT7dtkb3X02FsCphvAFVbo:zZVG9oFBRYZ57Ob3X02FsCp5gV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e497f5099254320592a9d5fabdbb863ed539795939bcece3aa1d84a46b5b530c

Files

e497f5099254320592a9d5fabdbb863ed539795939bcece3aa1d84a46b5b530c
.exe windows:4 windows x86 arch:x86

bfd15dc06e8d8866f05548ff5f2f8483

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DrawEx
ord17

dsound

ord2
ord1

winmm

mixerGetLineControlsA
mmioSeek
mmioAscend
mmioRead
mmioDescend
joyReleaseCapture
mixerSetControlDetails
mixerGetControlDetailsA
mmioClose
mixerGetLineInfoA
waveOutSetVolume
waveOutGetVolume
waveOutGetNumDevs
mmioGetInfo
mmioSetInfo
mmioOpenA
joyGetDevCapsA
joySetCapture
mmioAdvance

kernel32

FindClose
MultiByteToWideChar
WideCharToMultiByte
GetLogicalDriveStringsA
GetFileSize
CreateFileA
GetCurrentDirectoryA
MulDiv
SetFilePointer
WriteFile
GetTickCount
FindNextFileA
TerminateThread
Sleep
SetEvent
GetDriveTypeA
WaitForSingleObject
CloseHandle
CreateEventA
CreateThread
SetThreadPriority
LoadLibraryExA
GetProcAddress
FreeLibrary
SetErrorMode
SystemTimeToFileTime
GetLocalTime
FindFirstFileA
ReadFile
FileTimeToLocalFileTime
SetEndOfFile
LCMapStringW
InterlockedIncrement
InterlockedDecrement
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetFileType
GetStdHandle
SetHandleCount
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapReAlloc
VirtualAlloc
DeleteCriticalSection
InitializeCriticalSection
VirtualFree
HeapCreate
HeapDestroy
LeaveCriticalSection
EnterCriticalSection
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
HeapFree
RtlUnwind
CompareStringA
CompareStringW
LCMapStringA
GetCPInfo
GetTimeZoneInformation
SetStdHandle
FlushFileBuffers
GetStringTypeA
GetStringTypeW
GetFileInformationByHandle
PeekNamedPipe
GetACP
GetOEMCP
LoadLibraryA
FileTimeToSystemTime
SetEnvironmentVariableA

user32

AppendMenuA
LoadImageA
ReleaseDC
DrawTextA
KillTimer
SetTimer
GetDC
FindWindowA
EnumDisplaySettingsA
CreateWindowExA
ShowWindow
UnregisterClassA
MessageBoxA
LoadIconA
RegisterClassExA
LoadCursorA
LoadBitmapA
SetWindowRgn
SetCursor
ToAscii
RedrawWindow
UpdateWindow
GetSysColor
GetKeyNameTextA
GetFocus
DrawFocusRect
GetKeyState
TranslateMessage
RegisterClassA
ChangeDisplaySettingsA
ReleaseCapture
SetCapture
FillRect
BeginPaint
EndPaint
InvalidateRect
MoveWindow
EnableWindow
GetClientRect
GetWindowRect
CheckDlgButton
IsDlgButtonChecked
PostMessageA
SetWindowPos
GetMessageA
DispatchMessageA
DefWindowProcA
ScreenToClient
ClientToScreen
TrackPopupMenu
DialogBoxParamA
EndDialog
GetDlgItem
GetWindowTextA
GetWindowLongA
SendMessageA
SendDlgItemMessageA
SetWindowTextA
SetFocus
SetWindowLongA
DestroyMenu
CreatePopupMenu
GetKeyboardState

gdi32

SelectObject
ExtCreateRegion
GetDIBits
DeleteDC
CreateCompatibleDC
OffsetRgn
CreateRectRgn
CombineRgn
TextOutA
CreateFontIndirectA
SetPixel
CreateSolidBrush
Polyline
SetTextColor
GetTextExtentExPointA
StretchBlt
GetObjectA
GetTextExtentPoint32A
RoundRect
GetStockObject
CreatePen
BitBlt
SetTextAlign
SetBkMode
CreateDIBSection
GetDeviceCaps
SetDIBitsToDevice
LineTo
MoveToEx
DeleteObject
CreateCompatibleBitmap

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegSetValueExA

shell32

SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoA
DragAcceptFiles
SHBrowseForFolderA
SHGetDataFromIDListA
SHGetPathFromIDListA
SHFileOperationA
DragQueryPoint
DragQueryFileA
DragFinish
SHGetMalloc

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 664KB - Virtual size: 663KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfd15dc06e8d8866f05548ff5f2f8483

Headers

File Characteristics

Imports

comctl32

dsound

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 204KB - Virtual size: 203KB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 16KB - Virtual size: 33KB

.rsrc Size: 664KB - Virtual size: 663KB

.text
Size: 204KB - Virtual size: 203KB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 16KB - Virtual size: 33KB

.rsrc
Size: 664KB - Virtual size: 663KB