9f543dddb7b7079b094be3b08a87ed50N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

9f543dddb7b7079b094be3b08a87ed50N.exe
Size

4.9MB
MD5

9f543dddb7b7079b094be3b08a87ed50
SHA1

a60b75bc47498465bb00654279e2e1d5c8d5f055
SHA256

fe2cd3540faeddba7a408a9db4964dac46945abf42fe72105f65d9439015fe58
SHA512

309ab92247dba914c666096bcf344dfed8ac6a204b47ccd2bb27408714e20af1b154a082d4bbb3644768635b30ade1f548f7bfd592e3aff28763d9e47ec11944
SSDEEP

24576:DFO10fxRH3spvlb5dazK2HsdpdB6K///su6ZW8uYNvCT8AmZfUh3CRb12LqJt2Pn:

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f543dddb7b7079b094be3b08a87ed50N.exe

Files

9f543dddb7b7079b094be3b08a87ed50N.exe
.exe windows:5 windows x64 arch:x64

8996cb89eab1af9aea8635a94ea836e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

memset
wcslen
wcscpy
wcscat
strlen
malloc
free

kernel32

QueryPerformanceCounter
QueryPerformanceFrequency
FlushFileBuffers
GetFileSize
GetFileTime
GetFileType
ReadFile
ReadFileEx
SetFilePointer
SetFileTime
WriteFile
WriteFileEx
DisableThreadLibraryCalls
FreeLibrary
FreeLibraryAndExitThread
GetProcAddress
LoadResource
LockResource
FreeResource
CreateRemoteThread
CreateThread
ExitProcess
ExitThread
FlushInstructionCache
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetExitCodeProcess
GetExitCodeThread
GetPriorityClass
GetProcessPriorityBoost
GetProcessShutdownParameters
GetProcessTimes
GetProcessVersion
GetThreadContext
GetThreadPriority
GetThreadPriorityBoost
GetThreadTimes
IsProcessorFeaturePresent
OpenProcess
ResumeThread
SetPriorityClass
SetProcessPriorityBoost
SetProcessShutdownParameters
SetThreadContext
SetThreadIdealProcessor
SetThreadPriority
SetThreadPriorityBoost
SuspendThread
SwitchToThread
TerminateProcess
TerminateThread
GetLastError
GetModuleHandleW
LoadLibraryW
LoadLibraryExW
HeapCreate
HeapDestroy
Sleep
HeapAlloc
FreeConsole
DeleteCriticalSection
AllocConsole
GetStdHandle
GetConsoleScreenBufferInfo
SetConsoleCtrlHandler
SetConsoleTitleW
InitializeCriticalSection
WriteConsoleW
HeapFree
MultiByteToWideChar
WideCharToMultiByte
HeapReAlloc

user32

GetSysColor
WindowFromPoint
IsWindow
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
GetWindowThreadProcessId
GetPropW
GetParent
GetMessageExtraInfo
GetMessagePos
GetMessageTime
GetMessageW

gdi32

AnimatePalette
CreateHalftonePalette
CreatePalette
GetColorAdjustment
GetEnhMetaFilePaletteEntries
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
GetSystemPaletteUse
RealizePalette
ResizePalette
SelectPalette
SetColorAdjustment
SetPaletteEntries
SetSystemPaletteUse
UnrealizeObject
UpdateColors

advapi32

OpenProcessToken
OpenThreadToken
SetThreadToken

opengl32

wglGetLayerPaletteEntries
wglRealizeLayerPalette
wglSetLayerPaletteEntries

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime
timeGetDevCaps
timeGetSystemTime

Sections

.code
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 267B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8996cb89eab1af9aea8635a94ea836e6

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

opengl32

winmm

Sections

.code Size: 4.8MB - Virtual size: 4.8MB

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 267B

.pdata Size: 512B - Virtual size: 204B

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 13KB - Virtual size: 12KB

.code
Size: 4.8MB - Virtual size: 4.8MB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 267B

.pdata
Size: 512B - Virtual size: 204B

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 13KB - Virtual size: 12KB