99d95d2b30e2c814389a000e037581e0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

99d95d2b30e2c814389a000e037581e0N.exe
Size

180KB
MD5

99d95d2b30e2c814389a000e037581e0
SHA1

16e5f9dc91fa882fddf565e655689757795740bb
SHA256

921235a2150a7cd60d0a7876d60b998724fd305b40679f7af682ea6693551fab
SHA512

5febfa3fa2f530c3379e8b573ad311c589300485622f587d722f918e46fae725b434e21ec7d00eb838bbcb42b9a54ff646a68daac8b9d5d84c6694fd6ca7f7cc
SSDEEP

3072:W4ckgiesopPliDrA9G2soBtXAju2PYhJOAKWgb/aF/pb1:vjgiesomDcQCtXWu2uKR/aFN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99d95d2b30e2c814389a000e037581e0N.exe

Files

99d95d2b30e2c814389a000e037581e0N.exe
.exe windows:4 windows x86 arch:x86

a79d5f90d5ea858e98fe9ac178def776

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

GetFileSize
DeleteFileA
GetProcAddress
GetTempPathA
EnumResourceNamesA
SetCurrentDirectoryA
GlobalMemoryStatus
GetCurrentThreadId
GetLastError
GetCurrentDirectoryA
CreateDirectoryA
FindClose
SetErrorMode
LockResource
GetModuleFileNameA
MultiByteToWideChar
GetVersionExA
OpenFile
GlobalLock
ReadFile
WriteFile
LoadLibraryA
FreeLibrary
SetFilePointer
SetEndOfFile
FindResourceA
SizeofResource
LoadResource
CloseHandle
CreateFileA
GlobalFree
GlobalUnlock
GlobalHandle
GlobalAlloc
FindNextFileA
FindFirstFileA
RemoveDirectoryA
CompareStringW
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InterlockedIncrement
InterlockedDecrement
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
CompareStringA
GetACP
GetCPInfo
GetOEMCP
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
RtlUnwind
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
HeapFree
SetEnvironmentVariableA
SetStdHandle
RaiseException

user32

LoadStringA
GetClientRect
SendDlgItemMessageA
GetDesktopWindow
GetDlgItem
ReleaseDC
GetDC
EnableWindow
UpdateWindow
SetDlgItemTextA
GetDlgItemTextA
SetWindowTextA
SendMessageA
DrawTextA
SystemParametersInfoA
MessageBoxA
GetSystemMetrics
GetAsyncKeyState
MessageBeep
DefDlgProcA
GetClassInfoExA
LoadImageA
RegisterClassExA
GetMenu
GetSubMenu
DeleteMenu
GetMenuItemCount
InsertMenuItemA
KillTimer
ShowWindow
SetTimer
EndDialog
CallNextHookEx
GetForegroundWindow
PostMessageA
SetWindowsHookExA
DialogBoxParamA
UnhookWindowsHookEx
UnregisterClassA
GetActiveWindow
GetWindowRect
MoveWindow

gdi32

GetTextExtentPoint32A
DeleteObject
SelectObject

comdlg32

GetSaveFileNameA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

shell32

SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
SHBrowseForFolderA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a79d5f90d5ea858e98fe9ac178def776

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 26KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 26KB

.rsrc
Size: 56KB - Virtual size: 54KB