4e47c30f273cea5d6d3cafb730c1172850f9e912914a665db8dba359242e8453

Sharing

Copy URL

Twitter E-mail

General

Target

4e47c30f273cea5d6d3cafb730c1172850f9e912914a665db8dba359242e8453
Size

9.9MB
MD5

731d78be32d165a2dce4ff17eacf3d14
SHA1

865e3f155e9987669a8349d69b78892b4af77120
SHA256

4e47c30f273cea5d6d3cafb730c1172850f9e912914a665db8dba359242e8453
SHA512

262bb6c0c91986c43ac75513fc9b812a5abf509a463bca00ce5489f523fd60ab1ca324c3a885aaea84a892c4db1c98a7ae75373b57d7804daec98161c276e34a
SSDEEP

98304:karJSh4Q26+2RF0EuBtAtwdlj7l+8jkTlYGFFRFTMh1YfTaSBV90YHmCimviq9:k2yF05Bcgi8jkTuedTMhCaQV90qZimZ9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4e47c30f273cea5d6d3cafb730c1172850f9e912914a665db8dba359242e8453

Files

4e47c30f273cea5d6d3cafb730c1172850f9e912914a665db8dba359242e8453
.exe windows:5 windows x86 arch:x86

d5257a6af06cc7f19f3b2e599221f71f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
SetForegroundWindow
SetFocus
GetParent
ReleaseDC
DestroyWindow
UnregisterClassW
SendMessageW
SetCursor
DefWindowProcW
SetWindowLongW
PostMessageW
ChangeDisplaySettingsW
PeekMessageW
TranslateMessage
DispatchMessageW
GetForegroundWindow
IsWindow
SystemParametersInfoW
SetWindowTextW
GetFocus
GetDC
GetMessageW
FindWindowW
GetClientRect
CharNextW
EnumDisplayMonitors
GetWindowRect
EnumDisplaySettingsW
RegisterClassW
LoadIconW
LoadCursorW
KillTimer
SetTimer
GetAsyncKeyState
GetSystemMetrics
GetCursorPos
WaitMessage
OpenClipboard
GetClipboardData
CloseClipboard
PostQuitMessage
SetWindowPos
CreateWindowExW
DialogBoxParamW
AdjustWindowRectEx
GetDesktopWindow

winmm

timeGetTime
timeGetDevCaps
timeBeginPeriod
timeEndPeriod

d3d8

Direct3DCreate8

dsound

ord11

comctl32

InitCommonControlsEx

kernel32

QueryPerformanceCounter
GetModuleHandleW
GetCommandLineW
CreateFileW
GetFileSize
FlushFileBuffers
CloseHandle
ReadFile
WriteFile
SetFilePointer
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalHandle
GlobalFree
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
InterlockedExchange
MultiByteToWideChar
GetStringTypeW
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetProcAddress
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
GetCPInfo
GetFileAttributesW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileExW
FindNextFileW
GetCurrentThread
HeapFree
HeapAlloc
RaiseException
RtlUnwind
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapSize
InitializeCriticalSectionAndSpinCount
FreeLibrary
LoadLibraryW
GetLocaleInfoW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
SetThreadAffinityMask
GetCurrentProcessId
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
HeapReAlloc
SetStdHandle
SetEndOfFile
GetProcessHeap
GetTimeZoneInformation
WriteConsoleW
CreateFileA
CompareStringW
SetEnvironmentVariableA
GetSystemPowerStatus
GetVersionExW
QueryPerformanceFrequency
GetSystemInfo
GetLastError
CreateDirectoryW
GetModuleFileNameW
GetTickCount
FormatMessageA
LoadLibraryA
GetSystemTimeAsFileTime

gdi32

CreateCompatibleBitmap
BitBlt
DeleteDC
GetObjectW
SelectObject
DeleteObject
GetClipBox
CreateCompatibleDC
GetDIBits
GetStockObject

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetFolderPathW

ole32

CoUninitialize
CoInitialize

dinput8

DirectInput8Create

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5257a6af06cc7f19f3b2e599221f71f

Headers

DLL Characteristics

File Characteristics

Imports

user32

winmm

d3d8

dsound

comctl32

kernel32

gdi32

advapi32

shell32

ole32

dinput8

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 335KB - Virtual size: 335KB

.data Size: 72KB - Virtual size: 4.1MB

.rsrc Size: 43KB - Virtual size: 42KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 335KB - Virtual size: 335KB

.data
Size: 72KB - Virtual size: 4.1MB

.rsrc
Size: 43KB - Virtual size: 42KB