45679b0a4f9b8afef40a27f9fcb184e6d21fc84cef8126e8f8fd4f0ac53336e6

Sharing

Copy URL Twitter E-mail

General

Target

45679b0a4f9b8afef40a27f9fcb184e6d21fc84cef8126e8f8fd4f0ac53336e6
Size

2.0MB
MD5

e0344769230998e883f4a128161032fd
SHA1

9eba4e678312d25a4a60a441d414530fbda8fd7c
SHA256

45679b0a4f9b8afef40a27f9fcb184e6d21fc84cef8126e8f8fd4f0ac53336e6
SHA512

3916230ee1f1c465eeeba68797139a8814c0f3ac6ea96fd091afa2ebb3f9c85cee85ceed071ce31176682dfc388d0496600fe45327b98a95ba3ec3266265db9f
SSDEEP

24576:pS2mc2RDRVV7G6Bre2OewfYH5UP6IqzSmUoOJZUVWqjL4OH2hjGs6GvRjANl9Udm:g2RugbWH51TUxc/82q6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45679b0a4f9b8afef40a27f9fcb184e6d21fc84cef8126e8f8fd4f0ac53336e6

Files

45679b0a4f9b8afef40a27f9fcb184e6d21fc84cef8126e8f8fd4f0ac53336e6
.exe windows:5 windows x86 arch:x86

3aa0f80f3c9ceb7dc4dc946b704020a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnmapViewOfFile
WideCharToMultiByte
WriteFile
GetStringTypeA
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
SetFilePointer
TlsAlloc
TlsSetValue
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
ExitProcess
GetVersion
GetStartupInfoA
RtlUnwind
LCMapStringA
LCMapStringW
ReadFile
QueryPerformanceCounter
OpenFileMappingW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
lstrlenW
lstrlenA
lstrcpyW
lstrcmpiW
lstrcatW
LocalFree
LocalAlloc
LoadLibraryW
GetStringTypeW
IsProcessorFeaturePresent
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalGetAtomNameW
GlobalFree
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVersionExA
GetTimeFormatW
GetTimeFormatA
GetTempPathW
GetTempPathA
GetTempFileNameW
GetTempFileNameA
GetSystemDefaultLangID
GetStartupInfoW
GetShortPathNameW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetLocalTime
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFileSize
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeThread
GetDateFormatW
GetDateFormatA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentDirectoryW
FreeLibrary
FindNextFileW
FindFirstFileW
FindClose
ExpandEnvironmentStringsA
DeleteFileW
CreateProcessW
CreateFileW
GetSystemTimeAsFileTime
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
TlsGetValue

user32

SetRectEmpty
SetForegroundWindow
SetCursorPos
SetClipboardData
SetCapture
SendMessageTimeoutW
ScreenToClient
ReleaseCapture
RedrawWindow
PtInRect
PostMessageW
OpenClipboard
OffsetRect
SetScrollInfo
MessageBoxA
MapWindowPoints
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
SetTimer
SetWindowRgn
SystemParametersInfoA
SystemParametersInfoW
LoadBitmapW
KillTimer
IsWindowVisible
IsRectEmpty
IsIconic
InvalidateRect
UpdateWindow
wsprintfW
MessageBoxW
IntersectRect
InflateRect
GetWindowRect
GetWindowPlacement
GetWindow
GetSystemMetrics
GetSysColor
GetSubMenu
GetScrollInfo
GetParent
GetMessageW
GetMessagePos
GetLastActivePopup
GetKeyState
GetKeyboardLayout
GetFocus
GetDesktopWindow
GetCursorPos
GetClipboardData
GetClientRect
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FillRect
EnableWindow
EmptyClipboard
DrawTextW
DrawIconEx
DrawFocusRect
DispatchMessageW
DestroyIcon
ShowCaret
GetDC
ReleaseDC
SendMessageW

gdi32

MaskBlt
LineTo
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsW
GetTextFaceW
GetTextExtentPoint32W
GetTextExtentPoint32A
GetStockObject
GetObjectW
GetMetaFileBitsEx
GetGlyphOutlineW
GetFontData
GetDIBits
GetDCOrgEx
GetClipBox
GdiFlush
FillPath
ExtTextOutW
ExtCreatePen
EnumFontFamiliesExW
Ellipse
DeleteObject
DeleteMetaFile
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
MoveToEx
CreateRectRgn
CreatePalette
CreateMetaFileW
CreateHatchBrush
CreateFontW
CreateFontIndirectW
CreateEnhMetaFileW
CreateEllipticRgn
CreateDIBSection
GetDeviceCaps
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetDIBColorTable
SetMapMode
SetPixel
SetPixelV
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportOrgEx
StretchBlt
StretchDIBits
TextOutA
PatBlt
PlayEnhMetaFile
Polygon
Polyline
PolyPolygon
PolyPolyline
RealizePalette
CreateRectRgnIndirect
ResetDCW
Rectangle

advapi32

RegQueryValueW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegCloseKey
RegSetValueExW

shell32

ShellExecuteExW
ShellExecuteW
ExtractIconW

ole32

CoGetMalloc
StgCreateDocfile
StgOpenStorage
CoTaskMemFree
CreateStreamOnHGlobal

shlwapi

PathCombineA
PathFindExtensionW
PathCompactPathExW

Sections

.text
Size: 756KB - Virtual size: 752KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_libcc5_
Size: 934KB - Virtual size: 936KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3aa0f80f3c9ceb7dc4dc946b704020a5

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 756KB - Virtual size: 752KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 376KB - Virtual size: 376KB

_libcc5_ Size: 934KB - Virtual size: 936KB

.text
Size: 756KB - Virtual size: 752KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 376KB - Virtual size: 376KB

_libcc5_
Size: 934KB - Virtual size: 936KB