04a0d78d7dd296f6a28bd26f85763fd0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

04a0d78d7dd296f6a28bd26f85763fd0N.exe
Size

2.7MB
MD5

04a0d78d7dd296f6a28bd26f85763fd0
SHA1

8d68fc9d1ea187e1eac61225706112c31c40cb2f
SHA256

ae58aa2a5bda145cd186b3758c68967a87c8034022ac6d66981e5551d5acbf53
SHA512

5a0aa49ed221f2fda32a8ff6ca2d7e0588fde4a45fbc1e510a2f83c6ea9cb7b7a8e164bc3ae12fdb0b4e77ddabd14d400f2dd9e67182c119a9fb347be52c2d49
SSDEEP

49152:dNEaU9jFf50tH0N895E0nq6Ulqi4M7JXzHRJxNAYbcQMRcwoJCFBMDiRWjp:/En9hfKg6UsQ7kF8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04a0d78d7dd296f6a28bd26f85763fd0N.exe

Files

04a0d78d7dd296f6a28bd26f85763fd0N.exe
.exe windows:4 windows x86 arch:x86

76541649907ae5f218b6dca61a44f7df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

libgcc_s_dw2-1

_Unwind_Resume
__deregister_frame_info
__divdi3
__moddi3
__register_frame_info
__udivdi3
__umoddi3

gdi32

ChoosePixelFormat
DescribePixelFormat
GetDeviceCaps
SetPixelFormat
SwapBuffers

kernel32

CreateFileW
DeleteCriticalSection
EnterCriticalSection
FormatMessageW
FreeLibrary
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
SetThreadAffinityMask
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteConsoleW

msvcrt

__dllonexit
__doserrno
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__pioinfo
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_filelengthi64
_fileno
_fileno
_fmode
_fstat64
_initterm
_iob
_lock
_lseeki64
_onexit
_setjmp3
_setmode
_unlock
_wchmod
_wfopen
_wrename
_write
_wstat64
_wunlink
_wutime64
abort
acos
atan
atoi
atol
calloc
exit
fclose
feof
ferror
fflush
fgetpos
fopen
fprintf
fputc
fputws
fread
free
frexp
fseek
fsetpos
ftell
fwrite
getenv
localeconv
longjmp
malloc
mbtowc
memchr
memcmp
memcpy
memmove
memset
qsort
rand
realloc
setlocale
setvbuf
signal
sprintf
srand
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strrchr
strstr
strtol
time
tolower
toupper
vfprintf
wcslen
wctomb

opengl32

glBindTexture
glBlendFunc
glClear
glClearColor
glColorPointer
glCopyTexSubImage2D
glDeleteTextures
glDisable
glDrawArrays
glEnable
glEnableClientState
glFlush
glGenTextures
glGetError
glGetIntegerv
glGetString
glGetTexImage
glLoadIdentity
glLoadMatrixf
glMatrixMode
glPopAttrib
glPopClientAttrib
glPopMatrix
glPushAttrib
glPushClientAttrib
glPushMatrix
glReadPixels
glTexCoordPointer
glTexImage2D
glTexParameteri
glTexSubImage2D
glVertexPointer
glViewport
wglCreateContext
wglDeleteContext
wglGetCurrentContext
wglGetProcAddress
wglMakeCurrent
wglShareLists

user32

AdjustWindowRect
CallWindowProcW
ChangeDisplaySettingsW
ClientToScreen
CreateIcon
CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyIcon
DestroyWindow
DispatchMessageW
EnumDisplaySettingsW
FlashWindowEx
GetAsyncKeyState
GetCapture
GetClientRect
GetCursorPos
GetDC
GetForegroundWindow
GetSystemMetrics
GetWindowLongW
GetWindowRect
GetWindowThreadProcessId
LoadCursorW
MapVirtualKeyW
PeekMessageW
RegisterClassW
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageW
SetCapture
SetCursor
SetCursorPos
SetForegroundWindow
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
TrackMouseEvent
TranslateMessage
UnregisterClassW

winmm

joyGetDevCapsW
joyGetPosEx
timeBeginPeriod
timeEndPeriod
timeGetDevCaps

libstdc++-6

_ZNKSs12find_last_ofEPKcjj
_ZNKSs7compareEPKc
_ZNKSt12__basic_fileIcE7is_openEv
_ZNKSt5ctypeIcE13_M_widen_initEv
_ZNSbIwSt11char_traitsIwESaIwEE12_S_constructEjwRKS1_
_ZNSbIwSt11char_traitsIwESaIwEE4_Rep10_M_destroyERKS1_
_ZNSbIwSt11char_traitsIwESaIwEE4_Rep10_M_disposeERKS1_
_ZNSbIwSt11char_traitsIwESaIwEE4_Rep9_S_createEjjRKS1_
_ZNSbIwSt11char_traitsIwESaIwEE6appendEPKwj
_ZNSbIwSt11char_traitsIwESaIwEE6appendERKS2_
_ZNSbIwSt11char_traitsIwESaIwEE6assignEPKwj
_ZNSbIwSt11char_traitsIwESaIwEE6assignERKS2_
_ZNSbIwSt11char_traitsIwESaIwEE7reserveEj
_ZNSi4readEPci
_ZNSi5seekgExSt12_Ios_Seekdir
_ZNSi5tellgEv
_ZNSo3putEc
_ZNSo5flushEv
_ZNSo5seekpESt4fposIiE
_ZNSo5writeEPKci
_ZNSo9_M_insertIPKvEERSoT_
_ZNSo9_M_insertIbEERSoT_
_ZNSo9_M_insertImEERSoT_
_ZNSo9_M_insertIyEERSoT_
_ZNSolsEs
_ZNSs12_M_leak_hardEv
_ZNSs12_S_constructEjcRKSaIcE
_ZNSs4_Rep10_M_destroyERKSaIcE
_ZNSs4_Rep10_M_disposeERKSaIcE
_ZNSs6assignERKSs
_ZNSs7reserveEj
_ZNSsC1EPKcRKSaIcE
_ZNSsC1ERKSs
_ZNSsC1ERKSsjj
_ZNSt12__basic_fileIcED1Ev
_ZNSt13basic_filebufIcSt11char_traitsIcEE4openEPKcSt13_Ios_Openmode
_ZNSt13basic_filebufIcSt11char_traitsIcEE5closeEv
_ZNSt13basic_filebufIcSt11char_traitsIcEEC1Ev
_ZNSt13basic_filebufIcSt11char_traitsIcEED1Ev
_ZNSt13basic_ostreamIwSt11char_traitsIwEE9_M_insertImEERS2_T_
_ZNSt14basic_ifstreamIcSt11char_traitsIcEED1Ev
_ZNSt14basic_ofstreamIcSt11char_traitsIcEED1Ev
_ZNSt15basic_streambufIcSt11char_traitsIcEE5imbueERKSt6locale
_ZNSt15basic_streambufIcSt11char_traitsIcEE5uflowEv
_ZNSt15basic_streambufIcSt11char_traitsIcEE6setbufEPci
_ZNSt15basic_streambufIcSt11char_traitsIcEE6xsgetnEPci
_ZNSt15basic_streambufIcSt11char_traitsIcEE6xsputnEPKci
_ZNSt15basic_streambufIcSt11char_traitsIcEE7seekoffExSt12_Ios_SeekdirSt13_Ios_Openmode
_ZNSt15basic_streambufIcSt11char_traitsIcEE7seekposESt4fposIiESt13_Ios_Openmode
_ZNSt15basic_streambufIcSt11char_traitsIcEE9pbackfailEi
_ZNSt15basic_streambufIcSt11char_traitsIcEE9showmanycEv
_ZNSt15basic_streambufIcSt11char_traitsIcEE9underflowEv
_ZNSt19basic_ostringstreamIwSt11char_traitsIwESaIwEED1Ev
_ZNSt6localeC1Ev
_ZNSt6localeD1Ev
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZNSt8ios_baseC2Ev
_ZNSt8ios_baseD2Ev
_ZNSt9basic_iosIcSt11char_traitsIcEE4initEPSt15basic_streambufIcS1_E
_ZNSt9basic_iosIcSt11char_traitsIcEE5clearESt12_Ios_Iostate
_ZNSt9basic_iosIwSt11char_traitsIwEE4initEPSt15basic_streambufIwS1_E
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt16__ostream_insertIwSt11char_traitsIwEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt16__throw_bad_castv
_ZSt17__throw_bad_allocv
_ZSt18_Rb_tree_decrementPSt18_Rb_tree_node_base
_ZSt18_Rb_tree_incrementPKSt18_Rb_tree_node_base
_ZSt18_Rb_tree_incrementPSt18_Rb_tree_node_base
_ZSt19__throw_logic_errorPKc
_ZSt20__throw_length_errorPKc
_ZSt24__throw_out_of_range_fmtPKcz
_ZSt28_Rb_tree_rebalance_for_erasePSt18_Rb_tree_node_baseRS_
_ZSt29_Rb_tree_insert_and_rebalancebPSt18_Rb_tree_node_baseS0_RS_
_ZTISt15basic_streambufIcSt11char_traitsIcEE
_ZTTSt14basic_ifstreamIcSt11char_traitsIcEE
_ZTTSt14basic_ofstreamIcSt11char_traitsIcEE
_ZTTSt19basic_ostringstreamIwSt11char_traitsIwESaIwEE
_ZTVN10__cxxabiv117__class_type_infoE
_ZTVN10__cxxabiv120__si_class_type_infoE
_ZTVN10__cxxabiv121__vmi_class_type_infoE
_ZTVSo
_ZTVSt13basic_filebufIcSt11char_traitsIcEE
_ZTVSt14basic_ifstreamIcSt11char_traitsIcEE
_ZTVSt14basic_ofstreamIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIwSt11char_traitsIwEE
_ZTVSt15basic_stringbufIwSt11char_traitsIwESaIwEE
_ZTVSt19basic_ostringstreamIwSt11char_traitsIwESaIwEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZTVSt9basic_iosIwSt11char_traitsIwEE
_ZdaPv
_ZdlPv
_Znaj
_Znwj
__cxa_begin_catch
__cxa_call_unexpected
__cxa_end_catch
__cxa_guard_abort
__cxa_guard_acquire
__cxa_guard_release
__cxa_pure_virtual
__cxa_rethrow
__gxx_personality_v0

openal32

alBufferData
alDeleteBuffers
alDeleteSources
alGenBuffers
alGenSources
alGetBufferi
alGetEnumValue
alGetSource3f
alGetSourcef
alGetSourcei
alIsExtensionPresent
alListener3f
alListenerf
alListenerfv
alSource3f
alSourcePause
alSourcePlay
alSourceStop
alSourcef
alSourcei
alcCloseDevice
alcCreateContext
alcDestroyContext
alcIsExtensionPresent
alcMakeContextCurrent
alcOpenDevice

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 731KB - Virtual size: 730KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76541649907ae5f218b6dca61a44f7df

Headers

File Characteristics

Imports

advapi32

libgcc_s_dw2-1

gdi32

kernel32

msvcrt

opengl32

user32

winmm

libstdc++-6

openal32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.data Size: 1024B - Virtual size: 636B

.rdata Size: 731KB - Virtual size: 730KB

/4 Size: 142KB - Virtual size: 141KB

.bss Size: - Virtual size: 13KB

.idata Size: 13KB - Virtual size: 12KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

/14 Size: 512B - Virtual size: 120B

/29 Size: 14KB - Virtual size: 14KB

/41 Size: 2KB - Virtual size: 1KB

/55 Size: 3KB - Virtual size: 2KB

/67 Size: 512B - Virtual size: 56B

/80 Size: 512B - Virtual size: 128B

/91 Size: 8KB - Virtual size: 8KB

/102 Size: 1024B - Virtual size: 744B

.text
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 1024B - Virtual size: 636B

.rdata
Size: 731KB - Virtual size: 730KB

/4
Size: 142KB - Virtual size: 141KB

.bss
Size: - Virtual size: 13KB

.idata
Size: 13KB - Virtual size: 12KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

/14
Size: 512B - Virtual size: 120B

/29
Size: 14KB - Virtual size: 14KB

/41
Size: 2KB - Virtual size: 1KB

/55
Size: 3KB - Virtual size: 2KB

/67
Size: 512B - Virtual size: 56B

/80
Size: 512B - Virtual size: 128B

/91
Size: 8KB - Virtual size: 8KB

/102
Size: 1024B - Virtual size: 744B