f2574f6588e32a3d97988edb359a4f0a9a2df8f36caf8a0e2597d46bb2551985[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

f2574f6588e32a3d97988edb359a4f0a9a2df8f36caf8a0e2597d46bb2551985.exe
Size

3.7MB
MD5

5d0d9b62f15ded57c97565886e205f5d
SHA1

4c78396513ca9dcd4025f8139fa1901e7e805a31
SHA256

f2574f6588e32a3d97988edb359a4f0a9a2df8f36caf8a0e2597d46bb2551985
SHA512

f54594e079932316d6c3307ec3deca615347417f521dc7f181755c72c8d4b25571a64fe83add5152d7f18d21c46ae0f3e48de60cbf78dc9f91ecadbde2687721
SSDEEP

98304:Vo0jjg7S73dss9o36knn0ZXzBRP1CPwv3uguG2:Kwg7S73dxOkBt1CPwv3uguH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2574f6588e32a3d97988edb359a4f0a9a2df8f36caf8a0e2597d46bb2551985.exe

Files

f2574f6588e32a3d97988edb359a4f0a9a2df8f36caf8a0e2597d46bb2551985.exe
.exe windows:4 windows x86 arch:x86

557874f7b26f2da9fb97270c9fd51dac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup

kernel32

SetErrorMode
GetCurrentProcess
ReadFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
DeleteFileA
RtlUnwind
HeapFree
GetTimeZoneInformation
GetSystemTime
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
TerminateProcess
GetACP
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
WaitForSingleObject
FreeLibrary
GetModuleHandleA
ReleaseMutex
GetLocalTime
CreateMutexA
CloseHandle
OpenMutexA
GetModuleFileNameA
Sleep
CreateThread
GetLongPathNameA
GetVersionExA
WriteFile
CreateFileA
SizeofResource
LockResource
LoadResource
FindResourceA
GetProcAddress
LocalAlloc
InterlockedExchange
RaiseException
GetLastError
LoadLibraryA
LocalFree
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GlobalFree
GlobalUnlock
GlobalLock
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
lstrcpynA
GetCurrentThread
lstrcmpA
GlobalAlloc
SetLastError
MulDiv
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GlobalFlags
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
GetProfileStringA

user32

IsWindowVisible
CopyRect
ScreenToClient
AdjustWindowRectEx
SetFocus
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
ReleaseDC
GetDC
LoadStringA
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageA
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
DestroyMenu
GetClassNameA
PtInRect
GetSysColorBrush
InflateRect
MessageBoxA
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetParent
SystemParametersInfoA
BringWindowToTop
InvalidateRect
RedrawWindow
LoadMenuA
GetSubMenu
GetCursorPos
PostMessageA
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
LoadBitmapA
LoadIconA
KillTimer
LoadCursorA
SetCursor
SetTimer
EnableWindow
GetFocus
SendMessageA
GetTopWindow
IsWindowUnicode
CharNextA
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
GetWindowRect

gdi32

CreateCompatibleDC
GetTextExtentPointA
BitBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateSolidBrush
GetDeviceCaps
DeleteObject
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
PatBlt
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateDIBitmap

comdlg32

GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegQueryInfoKeyA
RegFlushKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA

shell32

ShellExecuteA

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 320KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

557874f7b26f2da9fb97270c9fd51dac

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 320KB - Virtual size: 318KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 36KB - Virtual size: 55KB

.rsrc Size: 3.2MB - Virtual size: 3.2MB

.rmnet Size: 100KB - Virtual size: 98KB

.text
Size: 320KB - Virtual size: 318KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 36KB - Virtual size: 55KB

.rsrc
Size: 3.2MB - Virtual size: 3.2MB

.rmnet
Size: 100KB - Virtual size: 98KB