Porter-Express[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Porter-Express.exe
Size

48KB
MD5

7eea72a72890f6370c87fedf6e827998
SHA1

0d77f73c58aa3996d962176507c1e2abd0968efd
SHA256

30e622d3700d3eb7ade5c3125683bbf816763b15cce957f9167c8bf76dc5ef1a
SHA512

614260f60d3f8a0d855c8a4dc4c63f23fcc18caaa62fc9c110d9e160edb720cb859f38f0b44d77814e6da2da57da2f57e32f9554049a2ed663de32d612f3cbb3
SSDEEP

1536:Nis7PbVB03VQ49vKNWM5n7urxALWlOyrq9xPhvsjD5nCC6x6kZix:Qs7PRRESWM57urxALWMCkoCJx6k4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume1/OldUserProfile Alessa Domain/salu/Documents/DownLoad/Porter-Express/Porter-Express.exe

Files

Porter-Express.exe
.zip

Password: India@2023@@
Device/HarddiskVolume1/OldUserProfile Alessa Domain/salu/Documents/DownLoad/Porter-Express/Porter-Express.exe
.exe windows:4 windows x86 arch:x86

Password: India@2023@@

c1218da845e83c690a76ff071e83b435

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList

mfc42

ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord3663
ord641
ord765
ord616
ord665
ord2514
ord2621
ord5440
ord6383
ord5450
ord6394
ord5265
ord4376
ord4853
ord4998
ord4710
ord6052
ord4078
ord1775
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5280
ord3798
ord4837
ord4441
ord2648
ord2055
ord5199
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4425
ord3597
ord324
ord4234
ord3698
ord2411
ord2023
ord4218
ord2578
ord6055
ord1776
ord4398
ord5290
ord3402
ord3582
ord1146
ord1168
ord354
ord567
ord2358
ord2298
ord2370
ord1576
ord6199
ord5710
ord6334
ord3790
ord2558
ord1205
ord2642
ord3092
ord4224
ord3317
ord2379
ord755
ord470
ord3499
ord2515
ord355
ord1105
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord924
ord922
ord823
ord537
ord860
ord2818
ord535
ord2764
ord4129
ord926
ord1200
ord858
ord825
ord540
ord800
ord6376
ord2302

msvcrt

__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_acmdln
_XcptFilter
_exit
_onexit
__dllonexit
??1type_info@@UAE@XZ
calloc
fwrite
sprintf
fopen
fclose
fprintf
_open
_lseek
_read
_close
exit
__p___argv
malloc
printf
free
_mbscmp
_setmbcp
_filelength
__CxxFrameHandler
memmove
_CxxThrowException
strncmp

kernel32

PurgeComm
SetupComm
SetCommMask
CreateFileA
CreateEventA
SetCommTimeouts
ClearCommError
GetOverlappedResult
GetLastError
WriteFile
ReadFile
WaitCommEvent
GetVersionExA
GetTickCount
GetModuleHandleA
GetStartupInfoA
GetCommState
SetCommState
CloseHandle
SetThreadPriority
CreateThread

user32

GetClientRect
DrawIcon
EnableWindow
GetSystemMetrics
KillTimer
IsIconic
SendMessageA
LoadIconA
SetTimer

advapi32

RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegEnumKeyExA
RegCloseKey
RegOpenKeyExA

shell32

DragFinish
DragQueryFileA

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
manifest.json

Sharing

General

Malware Config

Signatures

Files

Password: India@2023@@

Password: India@2023@@

c1218da845e83c690a76ff071e83b435

Headers

File Characteristics

Imports

setupapi

mfc42

msvcrt

kernel32

user32

advapi32

shell32

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 231KB

.rsrc Size: 40KB - Virtual size: 56KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 231KB

.rsrc
Size: 40KB - Virtual size: 56KB