012cf4491e9593b5fdd7857f0ac73aa45b115b97330333282bbe43ed9d514528

Sharing

Copy URL

Twitter E-mail

General

Target

012cf4491e9593b5fdd7857f0ac73aa45b115b97330333282bbe43ed9d514528
Size

359KB
MD5

cd8d523a86e5966ad71539c73cfc3708
SHA1

a50e78985ab15c7d4e5dd4857e2f1844cfe79e92
SHA256

012cf4491e9593b5fdd7857f0ac73aa45b115b97330333282bbe43ed9d514528
SHA512

78e539dcc0fdd6403d96a99daf6450cf5f9f7832cac9a14ad64b6f1ce7271ae3323e47929c6a2f5ce674cac401524ad4bf8cf9c4ab16330cd5dc639dba016003
SSDEEP

6144:ee1m+Sv4asRVHUac6Bek/cpr2YV2NiNhXfVDPTkJ5rjjLl1c6z2Sjk6Zl:eedRuaNBeTtV2MhXfVDPTCrjXl1cc2Sx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
012cf4491e9593b5fdd7857f0ac73aa45b115b97330333282bbe43ed9d514528

Files

012cf4491e9593b5fdd7857f0ac73aa45b115b97330333282bbe43ed9d514528
.exe windows:5 windows x86 arch:x86

986aedd9d3002d3baf91de524908f3ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetClipRgn
SetPixel
SetTextJustification
SetTextAlign
SetTextColor
UpdateColors
GetGraphicsMode
GetMetaRgn
GetPixelFormat
GetNearestColor
GetDCPenColor
GetTextColor
GetTextCharacterExtra
SetSystemPaletteUse
GetDeviceCaps
GetDCBrushColor
GetNearestPaletteIndex
GetObjectType
GetFontUnicodeRanges
GetTextCharset
GetFontLanguageInfo
GetStretchBltMode
GetSystemPaletteUse
GetRandomRgn
SetTextCharacterExtra
GetBkColor
GetPolyFillMode
GetTextAlign
GetTextCharsetInfo

user32

SetWindowTextA
MoveWindow
GetWindowDC
GetDialogBaseUnits
GetInputState
ShowWindow
CallWindowProcA
GetQueueStatus
GetMenuItemCount
EndPaint
GetDC
PostMessageA
IsWindowEnabled
LoadIconA
CheckDlgButton
GetScrollPos
GetWindowLongA
GetMenuContextHelpId
GetMenuState
WindowFromDC
GetMenuCheckMarkDimensions
EnableWindow
GetWindowContextHelpId
SetFocus
GetMenu
GetDlgItem
GetDlgItemInt
GetForegroundWindow
GetPropA
RemovePropA
EndDialog
DrawTextA
BeginPaint
GetCursor
IsWindowUnicode
SendMessageA
SetDlgItemTextA

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
ReadFile
GetProcessHeap
SetEndOfFile
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoA
GetLocaleInfoW
HeapSize
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetHandleCount
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
GetStdHandle
IsDebuggerPresent
LoadResource
GetModuleHandleA
FindResourceA
CloseHandle
IsProcessorFeaturePresent
GetCurrentThreadId
GetProcAddress
GlobalHandle
GetLastError
GetFileTime
GetTickCount
SetFilePointer
WriteFile
GlobalSize
FlushFileBuffers
QueryPerformanceCounter
DeleteFileA
MoveFileA
FindClose
GlobalFlags
LockResource
GetCurrentProcess
GetCurrentProcessId
GetVersion
SizeofResource
LocalFlags
GetFileType
GetSystemTimeAsFileTime
HeapFree
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
ExitProcess
GetCommandLineA
GetStartupInfoA
EnterCriticalSection
LeaveCriticalSection
RaiseException
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
FatalAppExitA
VirtualAlloc
HeapReAlloc
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetModuleFileNameA
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA

Sections

.text
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

986aedd9d3002d3baf91de524908f3ed

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 286KB - Virtual size: 286KB

.rdata Size: 41KB - Virtual size: 41KB

.data Size: 7KB - Virtual size: 16KB

.reloc Size: 23KB - Virtual size: 22KB

.text
Size: 286KB - Virtual size: 286KB

.rdata
Size: 41KB - Virtual size: 41KB

.data
Size: 7KB - Virtual size: 16KB

.reloc
Size: 23KB - Virtual size: 22KB