ae2865519457264a3b6e9694d1774b61ee6d4df1a61ab4798e2462122602fef6

Sharing

Copy URL

Twitter E-mail

General

Target

ae2865519457264a3b6e9694d1774b61ee6d4df1a61ab4798e2462122602fef6
Size

6.5MB
MD5

4671b7f17d8d733da434f3cf14d4d4d9
SHA1

1e5ed6ddb21345eb771fcd47564cfcded01ffd8e
SHA256

ae2865519457264a3b6e9694d1774b61ee6d4df1a61ab4798e2462122602fef6
SHA512

d1ec611b00801296de3c1114f744bdaf5dad3add54f7c67deca2fbb195d46a9ff1eb2f3153bae08203584642f682774c9b9f77bb492b757703869b0bdc7b0c3d
SSDEEP

98304:JvDllDK+JLdHgO2ww2soKzMcgDzMcOe8B:JvDllG+jb2V2soXp4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae2865519457264a3b6e9694d1774b61ee6d4df1a61ab4798e2462122602fef6

Files

ae2865519457264a3b6e9694d1774b61ee6d4df1a61ab4798e2462122602fef6
.exe windows:5 windows x86 arch:x86

fa83f1c3a1dd9268fb9039d721b0ac95

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
TerminateProcess
GetProcessHeap
HeapAlloc
GetStartupInfoA
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
FindResourceW
LoadResource
LockResource
GetVersionExW
FreeResource
GetCommandLineW
GetSystemDirectoryW
ExpandEnvironmentStringsW
lstrlenW
GetCurrentThreadId
lstrcmpW
GetModuleFileNameW
GetFullPathNameW
GetSystemDefaultLangID
HeapReAlloc
CreateFileMappingW
MapViewOfFileEx
UnmapViewOfFile
CompareStringW
GetFileSize
ReadFile
GetWindowsDirectoryW
CreateFileW
SetFilePointer
LockFile
WriteFile
UnlockFile
CloseHandle
HeapFree
GetProcAddress
LoadLibraryW
GetCurrentProcess
FreeLibrary

user32

GetWindowLongW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
BringWindowToTop
IsIconic
GetParent
CreateWindowExW
RegisterClassExW
LoadCursorW
SetWindowLongW
ChildWindowFromPoint
SetWindowTextW
GetClientRect
ActivateKeyboardLayout
DestroyMenu
LoadMenuW
LoadImageW
LoadIconW
GetSystemMetrics
EnumWindows
DispatchMessageW
TranslateMessage
GetMessageW
GetWindow
SendMessageA
CreateWindowExA
SetWindowTextA
DialogBoxParamW
GetKeyState
EndDialog
GetDlgItemTextW
SetWindowPos
SetFocus
FrameRect
GetClassInfoExW
UnregisterClassW
GetWindowRect
ScreenToClient
GetSysColorBrush
FillRect
MessageBeep
DestroyWindow
PostQuitMessage
GetDlgItem
EnableWindow
GetWindowThreadProcessId
PostMessageW
BeginPaint
GetSysColor
DrawEdge
EndPaint
SetRect
ScrollWindow
UpdateWindow
GetDC
ReleaseDC
SetScrollInfo
SendMessageW
ShowWindow
MessageBoxW
LoadStringW
RedrawWindow
GetClassNameW

advapi32

RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
RegQueryValueExA
RegCloseKey

gdi32

GetTextMetricsW
GetStockObject
CreateFontIndirectW
GetDeviceCaps
DeleteDC
DeleteObject
BitBlt
GetTextExtentPoint32W
TextOutW
SetTextAlign
SetBkMode
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
SetPixel
LineDDA
ExtTextOutW
SetBkColor
SetTextColor
GetObjectW
SelectObject

imm32

ImmGetCompositionStringW
ImmSetCompositionStringW
ImmNotifyIME
ImmGetContext
ImmSetOpenStatus
ImmGetIMEFileNameW

comdlg32

GetOpenFileNameW
GetSaveFileNameW

msvcrt

memmove
wcsncpy
_itow
??2@YAPAXI@Z
_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
__CxxFrameHandler
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
??1type_info@@UAE@XZ
__dllonexit
_onexit
_controlfp
_except_handler3
?terminate@@YAXXZ
_vsnwprintf
??3@YAXPAX@Z
_initterm
_CxxThrowException

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa83f1c3a1dd9268fb9039d721b0ac95

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

imm32

comdlg32

msvcrt

Sections

.text Size: 33KB - Virtual size: 32KB

.data Size: 512B - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 33KB - Virtual size: 32KB

.data
Size: 512B - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 8KB