2024-05-16_06921f50200d5f4c14ed2b5c778774ae_lockergoga

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-16_06921f50200d5f4c14ed2b5c778774ae_lockergoga
Size

949KB
MD5

06921f50200d5f4c14ed2b5c778774ae
SHA1

96afb847777743595f7a7c412da6c3425e95cfd4
SHA256

d007e599337296b1c90d51396952fd07151acf479f2504768fa5f04d07fec760
SHA512

a944745c44bc38aef847cd74647edcd5127d8792dfd7f87133bc593ba747fdddb431223000234ccaa60598387b7465da0dea770fb84dadce6bd870a4ccd7eaeb
SSDEEP

24576:WpiXhwGNyLRuBHs8AmDDXw9QXwnXiee0EBZAoHt+:+iXy+Hs8AmSinBZAoHt+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-16_06921f50200d5f4c14ed2b5c778774ae_lockergoga

Files

2024-05-16_06921f50200d5f4c14ed2b5c778774ae_lockergoga
.exe windows:5 windows x86 arch:x86

ff77fcfb8ab4b75b44edc89d49ad201f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetLastError
CreateFileW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetFileAttributesExW
RemoveDirectoryW
SetFileAttributesW
SetFilePointerEx
DeviceIoControl
GetModuleHandleW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
SetLastError
QueryPerformanceCounter
QueryPerformanceFrequency
SetStdHandle
LocalFree
WideCharToMultiByte
FormatMessageW
SetEndOfFile
GetSystemInfo
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
InitializeCriticalSectionAndSpinCount
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
InitializeSListHead
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
InterlockedPushEntrySList
RaiseException
RtlUnwind
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
GetStdHandle
WriteFile
GetCommandLineA
GetCommandLineW
GetACP
HeapAlloc
HeapFree
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileType
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ReadFile
ReadConsoleW
HeapReAlloc
HeapSize
GetTimeZoneInformation
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetProcessHeap
WriteConsoleW

advapi32

CryptReleaseContext
CryptAcquireContextA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CryptGenRandom

Sections

.text
Size: 688KB - Virtual size: 687KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff77fcfb8ab4b75b44edc89d49ad201f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 688KB - Virtual size: 687KB

.rdata Size: 180KB - Virtual size: 180KB

.data Size: 32KB - Virtual size: 40KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 46KB - Virtual size: 46KB

.text
Size: 688KB - Virtual size: 687KB

.rdata
Size: 180KB - Virtual size: 180KB

.data
Size: 32KB - Virtual size: 40KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 46KB - Virtual size: 46KB