467d1d350e1010f99d578e6ccbb7dd30N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

467d1d350e1010f99d578e6ccbb7dd30N.exe
Size

328KB
MD5

467d1d350e1010f99d578e6ccbb7dd30
SHA1

843428490815d696359147e8b9a95b31b2019b6f
SHA256

62daf85e18bc2e7e0e5bd39708ed465f6c9a5a00cd8759f3bab38821f81b5a4e
SHA512

58fa6bb4e752356d450998748960db70d3e3fd4f35e86bb81f405881b0bae7a8d19eee746c7d981d66f03f277185c852052a2f7a98ccbfa23cad0bbec2a55e09
SSDEEP

6144:scYdJacrq0eb3mHUeCAO3HfsAZHXXhBiQQy:BYdJajPLmHDCRHJXht

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
467d1d350e1010f99d578e6ccbb7dd30N.exe

Files

467d1d350e1010f99d578e6ccbb7dd30N.exe
.exe windows:4 windows x86 arch:x86

422941287c14459566924b0855649959

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
EndUpdateResourceA
UpdateResourceA
BeginUpdateResourceA
lstrlenW
GetModuleHandleA
MultiByteToWideChar
lstrlenA
GetModuleFileNameA
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
LockResource
GetTickCount
CopyFileA
GetTempFileNameA
GetTempPathA
DeleteFileA
Sleep
lstrcpynW
MulDiv
GetACP
GetLocaleInfoA
SetEndOfFile
LoadLibraryA
GetFileAttributesA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CreateFileA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
WriteFile
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
ReadFile
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
SetUnhandledExceptionFilter
GetOEMCP
GetCPInfo
LCMapStringW
LCMapStringA
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetProcAddress
UnmapViewOfFile
CreateFileMappingA
MapViewOfFileEx
CloseHandle
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitProcess
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
HeapReAlloc
GetThreadLocale
GetVersionExA
RaiseException
InterlockedExchange

user32

SetWindowLongA
wsprintfA
LoadImageA
RegisterWindowMessageA
ShowWindow
RegisterClassExA
LoadCursorA
GetClassInfoExA
UnregisterClassA
DispatchMessageA
TranslateMessage
ReleaseDC
GetDC
GetWindowTextLengthA
GetWindowTextA
GetActiveWindow
LoadStringW
IsWindowVisible
SetFocus
PostQuitMessage
PostMessageA
SendMessageA
SetForegroundWindow
TranslateAcceleratorA
GetDlgItemTextA
EndDialog
GetWindow
GetWindowRect
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
SetWindowTextA
SetDlgItemTextA
GetDlgItem
GetParent
MessageBoxA
CharNextA
LoadStringA
LoadMenuA
LoadAcceleratorsA
DialogBoxParamA
CallWindowProcA
GetWindowLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
PeekMessageA
GetMessageA

gdi32

DeleteDC
GetDeviceCaps
CreateFontA
DeleteObject

comdlg32

FindTextA
GetSaveFileNameA
GetOpenFileNameA
ReplaceTextA

advapi32

RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegOpenKeyExA
RegDeleteKeyA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
ShellExecuteA

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoInitialize

oleaut32

VarUI4FromStr

shlwapi

PathFileExistsA

comctl32

ord6
InitCommonControlsEx

Sections

.text
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

422941287c14459566924b0855649959

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

comctl32

Sections

.text Size: 152KB - Virtual size: 151KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 104KB - Virtual size: 100KB

.text
Size: 152KB - Virtual size: 151KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 104KB - Virtual size: 100KB