f815a76a46034e200a7be1ccc319174da6bebed8426df7adac6374b5abc94f47

Sharing

Copy URL

Twitter E-mail

General

Target

f815a76a46034e200a7be1ccc319174da6bebed8426df7adac6374b5abc94f47
Size

411KB
MD5

a6c0c2c5893f15a37d88a927a92b881c
SHA1

cd3070f539d0f703075e15539ffaf237656c1c61
SHA256

f815a76a46034e200a7be1ccc319174da6bebed8426df7adac6374b5abc94f47
SHA512

961c62fe043737ef1d90a880d4d4d1cdba91cdfcc3aea4d3edd8194a24f09a049264cd43639827ff5c136509c0fd996fb6a4b7361ded288a77ace1416ee436f5
SSDEEP

6144:lu0JAyVTEYSR8gf3zAoFSb4QJbN6VKfXWshnV1xbmh9Mo6dfw7:W4TEYSRDEjb4QJbN6sfXWIbbI9Mo6dfM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f815a76a46034e200a7be1ccc319174da6bebed8426df7adac6374b5abc94f47

Files

f815a76a46034e200a7be1ccc319174da6bebed8426df7adac6374b5abc94f47
.exe windows:5 windows x86 arch:x86

503fbc51ccae0c463ba2af457eb818a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMenu
EmptyClipboard
AppendMenuA
BeginPaint
CallWindowProcA
CharNextA
CharPrevA
CheckDlgButton
CloseClipboard
CreateDialogParamA
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
DrawTextA
EnableMenuItem
EnableWindow
EndDialog
EndPaint
ExitWindowsEx
FillRect
FindWindowExA
GetClassInfoA
GetClientRect
GetDC
GetDlgItem
GetDlgItemTextA
GetMessagePos
GetSysColor
GetSystemMetrics
GetWindowLongA
InvalidateRect
DialogBoxParamA
GetWindowRect

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetFileInfoA
SHFileOperationA
SHBrowseForFolderA
ShellExecuteA

ole32

OleInitialize
CoTaskMemFree
CoCreateInstance
OleUninitialize

advapi32

RegEnumKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
SetFileSecurityA

kernel32

GetOEMCP
GetACP
RtlUnwind
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
GetStdHandle
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
VirtualAlloc
HeapCreate
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStartupInfoA
GetProcessHeap
GetVersionExA
HeapFree
HeapAlloc
HeapReAlloc
CloseHandle
CompareFileTime
GetLocaleInfoA
HeapSize
LoadLibraryA
LCMapStringA
LCMapStringW
GetStringTypeA
VirtualFree
GetStringTypeW
FreeEnvironmentStringsA
DeleteFileA
QueryPerformanceCounter
GetCPInfo
SetHandleCount
Sleep
GetSystemDirectoryA
GetFileType
UnhandledExceptionFilter
SearchPathA
GetModuleHandleA
WritePrivateProfileStringA
WriteFile
WaitForSingleObject
SetFileTime
SetFilePointer
SetFileAttributesA
SetErrorMode
SetCurrentDirectoryA
RemoveDirectoryA
ReadFile
MultiByteToWideChar
MulDiv
MoveFileA
LoadLibraryExA
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVersion
GetTickCount
GetTempPathA
GetTempFileNameA
GetShortPathNameA
GetProcAddress
GetPrivateProfileStringA
GetModuleFileNameA
GetLastError
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetExitCodeProcess
GetDiskFreeSpaceA
GetCurrentProcess
GetCommandLineA
FreeLibrary
FindNextFileA
FindFirstFileA
FindClose
ExitProcess
CreateThread
CreateProcessA
CreateFileA
CreateDirectoryA
CopyFileA

Sections

.text
Size: 382KB - Virtual size: 382KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

503fbc51ccae0c463ba2af457eb818a7

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

kernel32

Sections

.text Size: 382KB - Virtual size: 382KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 13KB - Virtual size: 156KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 382KB - Virtual size: 382KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 13KB - Virtual size: 156KB

.rsrc
Size: 4KB - Virtual size: 3KB