148157040f96f10e9284a659530017b0N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

148157040f96f10e9284a659530017b0N.exe
Size

2.8MB
MD5

148157040f96f10e9284a659530017b0
SHA1

088ee4c10620f78f3275cf9d77c68e9fbe70872f
SHA256

b1426cca2f19742fd529f846afe177cbdca726b34de76b1b8105f97f61f3620f
SHA512

41a9ee66ebf60ee5f573e4016ef1500cd2fff3c0bb5b46c247b762700338392c66a00b2db61a55795cd56e4ae1675b1cb1c1ad42c8ea8ae61e05940b53ebe53b
SSDEEP

24576:/0US08boO2jS23Tfc84hbhXXr3ihSOXYVBZM7N2Rv1W3X8VhbOc3qMZcBMWzdKSA:cU58bR21Tfc84bnLzTBe7N2V52QB1wVu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
148157040f96f10e9284a659530017b0N.exe

Files

148157040f96f10e9284a659530017b0N.exe
.exe windows:4 windows x86 arch:x86

2a4e07e48eb70b59b051e9fd7d526e8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_DrawIndirect
ImageList_Destroy
FlatSB_GetScrollProp
_TrackMouseEvent

kernel32

GetTempPathW
GetThreadLocale
GetTimeZoneInformation
GetVersionExA
GetVersionExW
GetVolumeInformationW
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomW
GlobalFlags
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
HeapValidate
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsValidCodePage
LCMapStringA
LCMapStringW
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
LocalSize
LockFileEx
LockResource
lstrcmpA
lstrcmpW
lstrlenA
GetTempPathA
MapViewOfFile
MoveFileExW
MulDiv
MultiByteToWideChar
OpenFileMappingW
OpenMutexW
OpenProcess
RaiseException
ReadFile
RemoveDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFileAttributesW
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadExecutionState
SetUnhandledExceptionFilter
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
UnlockFileEx
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringW
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
TlsSetValue
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
GetVersion
RtlUnwind
GetSystemTime
GetSystemInfo
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetCurrentThread
GetCPInfo
GetConsoleOutputCP
GetConsoleCP
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitProcess
EnumResourceTypesW
EnumResourceNamesW
EnumResourceLanguagesW
DuplicateHandle
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateThread
CreateMutexW
CreateFileW
CreateFileMappingW
CreateFileA
ConvertDefaultLocale
CompareStringW
CompareStringA
CloseHandle
AreFileApisANSI
GetStartupInfoW
GetLocalTime
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetCommandLineW
GetConsoleMode
GetLastError
ReleaseMutex
WaitForSingleObject
lstrlenW

user32

InvalidateRgn
IsChild
IsDialogMessageW
IsIconic
IsRectEmpty
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
KillTimer
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
LoadMenuW
LookupIconIdFromDirectoryEx
MapDialogRect
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
OffsetRect
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseCapture
RemovePropW
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetCursor
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetPropW
SetRectEmpty
SetScrollInfo
SetScrollPos
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutW
TrackPopupMenu
UnhookWindowsHookEx
UnregisterClassW
ValidateRect
WinHelpW
GetWindowLongA
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageW
InvalidateRect
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetCursorPos
GetClientRect
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCapture
GetActiveWindow
FillRect
EqualRect
EnumWindows
EndPaint
EndDialog
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextW
DrawTextExW
DrawStateW
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
DefFrameProcA
DefDlgProcW
DefDlgProcA
CreateWindowExW
CreatePopupMenu
CreateIconIndirect
CreateIconFromResourceEx
CreateDialogIndirectParamW
CopyRect
CopyIcon
CopyAcceleratorTableW
ClientToScreen
CheckMenuItem
CharUpperW
CharNextW
CallWindowProcW
CallWindowProcA
CallNextHookEx
IntersectRect
InsertMenuW
InflateRect
GrayStringW
TranslateMessage
UpdateWindow
ShowWindow
RegisterClassA
ReleaseDC
GetDC
AdjustWindowRectEx
AppendMenuW
BeginPaint
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowPlacement
GetMessageTime
GetWindowLongW
GetClassNameW

gdi32

ExcludeClipRect
ExtSelectClipRgn
ExtTextOutW
GetBkColor
GetClipBox
GetClipRgn
GetDIBits
GetMapMode
GetObjectType
GetObjectW
GetPixel
GetRgnBox
GetTextCharsetInfo
GetTextColor
GetTextExtentPoint32W
GetViewportExtEx
Escape
IntersectClipRect
OffsetRgn
OffsetViewportOrgEx
PatBlt
Polygon
PtVisible
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetStretchBltMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StretchDIBits
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateFontIndirectW
CreateDIBSection
CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CombineRgn
BitBlt
GetDeviceCaps
GetWindowExtEx
GetStockObject

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegQueryValueW
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegEnumKeyExW
RegCloseKey

shell32

CommandLineToArgvW
SHEmptyRecycleBinW
ShellExecuteW

ole32

StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
OleUninitialize
OleIsCurrentClipboard
OleInitialize
OleFlushClipboard
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoGetClassObject
CoFreeUnusedLibraries
CoCreateInstance
CLSIDFromString
CLSIDFromProgID

shlwapi

PathFileExistsW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
PathIsUNCW
PathFindFileNameW

Sections

.text
Size: 796KB - Virtual size: 792KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 596KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rcell
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2a4e07e48eb70b59b051e9fd7d526e8b

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 796KB - Virtual size: 792KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 596KB - Virtual size: 592KB

.rcell Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 796KB - Virtual size: 792KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 596KB - Virtual size: 592KB

.rcell
Size: 1.4MB - Virtual size: 1.4MB