ef1f308d178e560d255c29c4dafad266532757bfd94b3a64b1d217f278d354d1[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

ef1f308d178e560d255c29c4dafad266532757bfd94b3a64b1d217f278d354d1.exe
Size

342KB
MD5

d681099c8ab72669a37a768b0b22c994
SHA1

d7105662d47396e7a2a942b997fc426adddbf409
SHA256

ef1f308d178e560d255c29c4dafad266532757bfd94b3a64b1d217f278d354d1
SHA512

8dd39a5155897a42fe4a8ee6bc9a24010c7291b41068aec8bdbb0dd5691d69bdb037798b877ce8f0c50069bb8dac15beb13b79cb82cd4b0240e937ad8a8bba7a
SSDEEP

6144:wXlht2MMRWTj7ZA8t1MIPKkDpUo/UfAEUtGtuq/2qZWxrEEwrErsMYH:8MRKt71KkDaWSAE5tuq/2xxrEEwAsM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef1f308d178e560d255c29c4dafad266532757bfd94b3a64b1d217f278d354d1.exe

Files

ef1f308d178e560d255c29c4dafad266532757bfd94b3a64b1d217f278d354d1.exe
.exe windows:5 windows x86 arch:x86

1ba913e6eb0ee11691e5f9d277727a52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetSystemPaletteUse
GetDCBrushColor
GetClipRgn
GetFontUnicodeRanges
GetTextCharset
GetFontLanguageInfo
GetTextColor
GetBkColor
GetTextAlign
GetMapMode
SetTextColor
GetTextCharsetInfo
GetPixelFormat
GetTextCharacterExtra
SetPixel
SetTextCharacterExtra
GetSystemPaletteUse
UpdateColors
GetObjectType
GetRandomRgn
GetMetaRgn
GetPolyFillMode
GetStretchBltMode

user32

GetKeyboardType
EndPaint
BeginPaint
GetMenuItemCount
GetDialogBaseUnits
IsWindowEnabled
GetMenuContextHelpId
GetMenu
GetDlgItem
GetMenuItemID
WindowFromDC
GetWindowLongA
GetCursor
SetFocus
EnableWindow
RemovePropA
GetMenuState
SendMessageA
GetDC
GetForegroundWindow
EndDialog
SetDlgItemTextA
GetInputState
GetMenuCheckMarkDimensions
SetWindowTextA
CheckDlgButton
GetWindowDC
DrawTextA
GetScrollPos
LoadIconA
GetQueueStatus
GetPropA
ShowWindow
GetWindowContextHelpId

kernel32

SetEnvironmentVariableA
CompareStringW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
CreateFileW
HeapReAlloc
GetStringTypeW
HeapSize
WriteConsoleW
LCMapStringW
Sleep
GetTimeZoneInformation
ReadFile
MultiByteToWideChar
SetEndOfFile
SetStdHandle
GetDriveTypeW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
RtlUnwind
SetHandleCount
EnterCriticalSection
LockResource
GetProcAddress
MoveFileA
DeleteFileA
GetDriveTypeA
GlobalFlags
GlobalSize
LocalFlags
GetCurrentProcess
GetProcessHeap
SizeofResource
GetCurrentProcessId
SetFilePointer
GetStdHandle
GetVersion
GetModuleHandleA
FlushFileBuffers
GetFileTime
GlobalHandle
GetTickCount
GetCurrentThreadId
IsProcessorFeaturePresent
GetLastError
IsDebuggerPresent
CreateThread
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EncodePointer
DecodePointer
TerminateProcess
HeapFree
HeapAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileExA
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
HeapCreate
HeapDestroy
WriteFile
GetModuleFileNameW
GetFullPathNameA
CloseHandle
GetFileInformationByHandle
PeekNamedPipe
GetFileType
CreateFileA
GetCurrentDirectoryW
SetCurrentDirectoryW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
FatalAppExitA

Sections

.text
Size: 271KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ba913e6eb0ee11691e5f9d277727a52

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 271KB - Virtual size: 271KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 6KB - Virtual size: 17KB

.reloc Size: 21KB - Virtual size: 21KB

.text
Size: 271KB - Virtual size: 271KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 6KB - Virtual size: 17KB

.reloc
Size: 21KB - Virtual size: 21KB