4b1048623b2779d57e4707ee3fbf1500N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

4b1048623b2779d57e4707ee3fbf1500N.exe
Size

1.5MB
MD5

4b1048623b2779d57e4707ee3fbf1500
SHA1

c87ebe174498e75e0213f7228230ef0bb6a8adff
SHA256

2c39889c055bf2af74c78caba2ff0ccc5629165ac7c4b681c9c866bdfba9057f
SHA512

e18ff81ea6f91cfbe0919dbfdbe3ce28dc14880cb14b853cd35e890effa5a03877e77035517e193104b423d43235404895be003a691dce6992a1efdd34d101e2
SSDEEP

49152:MPTT6Tv2VgXRgIAWDb+AhszB4UP4V2TmSqUagbC:MvRmXRgIAWDbU1d4V20Uag+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b1048623b2779d57e4707ee3fbf1500N.exe

Files

4b1048623b2779d57e4707ee3fbf1500N.exe
.exe windows:5 windows x86 arch:x86

f1940daa18eae9cc96968f57d00dcd35

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetExitCodeProcess
CreateProcessA
CreateDirectoryA
RemoveDirectoryA
GetTempFileNameA
CopyFileA
SetFileAttributesA
GetFullPathNameA
FindClose
FindNextFileA
FindFirstFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
SetFileTime
GetShortPathNameA
FormatMessageA
GetDiskFreeSpaceA
GetSystemDirectoryA
GetVersionExA
FreeLibrary
LocalFree
LocalAlloc
lstrcmpiA
GetProcessHeap
HeapSize
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
LoadLibraryA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetConsoleMode
GetConsoleCP
GetStdHandle
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
GetProcAddress
CreateFileA
WriteFile
lstrlenA
DeleteFileA
MoveFileA
SetEndOfFile
CloseHandle
SetFilePointer
ReadFile
GetFileSize
SearchPathA
GetModuleFileNameA
GetCommandLineA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
FlushFileBuffers
GetLocalTime
HeapFree
HeapAlloc
GetModuleHandleW
ExitProcess
GetStartupInfoA
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
HeapCreate

user32

wsprintfA
GetMessageA
IsDialogMessageA
LoadIconA
LoadCursorA
RegisterClassA
DefWindowProcA
PostQuitMessage
EnumWindows
DestroyWindow
FindWindowA
RegisterWindowMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
GetWindowTextA
SetWindowTextA
FlashWindow
IsIconic
SetForegroundWindow
CreateWindowExA
MessageBoxA
LoadImageA
CreateDialogParamA
SendMessageA
InvalidateRect
SetDlgItemTextA
EnableWindow
GetDlgItem
ShowWindow
GetClientRect
IsRectEmpty
BeginPaint
FillRect
ReleaseDC
EndPaint
SetRect
SetRectEmpty
PostMessageA
GetSystemMetrics
GetWindowRect
SetWindowPos

gdi32

GetStockObject
CreateSolidBrush
SetBkMode
Rectangle
SetTextColor
ExtTextOutA
DeleteObject
GetTextExtentPoint32A

advapi32

RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegFlushKey
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1940daa18eae9cc96968f57d00dcd35

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 111KB - Virtual size: 110KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 6KB - Virtual size: 1.0MB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 111KB - Virtual size: 110KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 6KB - Virtual size: 1.0MB

.rsrc
Size: 8KB - Virtual size: 7KB