724e9c34c1410f47118ec00f28c995f0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

724e9c34c1410f47118ec00f28c995f0N.exe
Size

650KB
MD5

724e9c34c1410f47118ec00f28c995f0
SHA1

734757f87f9b4eab2dbec6ce90aaa52b362d6607
SHA256

bbc6ec2aa37e43907c44249f3e3148fd4e686b4fdec355bfb226a6f7d42e3b7d
SHA512

3fcb8d2b6d426c97e197b90e5881cc62b27a7800e883c8baa9c94c5504ec0134967c87311b85cbcc107597ee05df708510c9472fb676bcabe5b349b338c80c5c
SSDEEP

12288:J6MWhq8S/I++ZkNtBYcn9U59Q9ZqLG9j4mCaljySwa00/N:0nYL8ZkNtlK9uESylaRN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
724e9c34c1410f47118ec00f28c995f0N.exe

Files

724e9c34c1410f47118ec00f28c995f0N.exe
.exe windows:4 windows x86 arch:x86

87f2f7d3b2ebad862aa5e74b4a043a9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellHookProc
SHGetFileInfoA
ExtractAssociatedIconW
SHQueryRecycleBinW
SHGetDiskFreeSpaceA

kernel32

InterlockedExchange
GetFileType
EnumTimeFormatsW
CompareStringA
OpenWaitableTimerW
GetStartupInfoA
TlsFree
TlsAlloc
GetModuleHandleA
GetTickCount
CreateMutexA
MultiByteToWideChar
HeapReAlloc
GetStdHandle
InitializeCriticalSection
HeapAlloc
LCMapStringW
GetStringTypeA
GetSystemTime
InterlockedIncrement
QueryPerformanceCounter
InterlockedDecrement
LocalFlags
GetCurrentProcess
GetEnvironmentStrings
GetLocalTime
GetStartupInfoW
LeaveCriticalSection
FlushFileBuffers
TerminateProcess
GetCurrentProcessId
OpenMutexA
ReadFile
WideCharToMultiByte
GetTimeZoneInformation
GetCPInfo
GetCurrentThread
VirtualQuery
GetCommandLineW
GetModuleFileNameA
GetSystemTimeAsFileTime
CompareStringW
LocalReAlloc
HeapFree
SetHandleCount
GetVersion
LCMapStringA
FreeEnvironmentStringsA
FindClose
GetVersionExA
GetStringTypeW
LoadLibraryA
GetModuleFileNameW
TlsGetValue
GetCommandLineA
GetLastError
SetStdHandle
CloseHandle
GetEnvironmentStringsW
GetProcAddress
HeapDestroy
ExitProcess
CreateFileW
IsBadWritePtr
WriteFile
RtlUnwind
FreeEnvironmentStringsW
SetEnvironmentVariableA
UnhandledExceptionFilter
OpenSemaphoreW
SetFilePointer
VirtualAlloc
TlsSetValue
VirtualFree
DeleteCriticalSection
EnterCriticalSection
HeapCreate
GetCurrentThreadId
SetLastError

gdi32

FrameRgn
GetStretchBltMode
SetROP2
SetEnhMetaFileBits
EnumObjects
PaintRgn
PolyDraw
StretchDIBits
ExtSelectClipRgn
EndPage
RectVisible
GetPolyFillMode
SetViewportExtEx
DeleteObject
GetOutlineTextMetricsA
CreateDCW
CreateDIBPatternBrushPt
GetPixel
SetDIBits
GetColorAdjustment
SetDIBColorTable
CreateDiscardableBitmap

user32

RegisterClassExA
CreateAcceleratorTableW
CreateWindowStationW
ChangeMenuA
TranslateAcceleratorA
FindWindowExW
GetScrollPos
CreateDesktopA
RegisterClassA
DdeDisconnect
ShowScrollBar

comctl32

InitCommonControlsEx

Sections

.text
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87f2f7d3b2ebad862aa5e74b4a043a9e

Headers

File Characteristics

Imports

shell32

kernel32

gdi32

user32

comctl32

Sections

.text Size: 472KB - Virtual size: 472KB

.rdata Size: 46KB - Virtual size: 72KB

.data Size: 109KB - Virtual size: 108KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 472KB - Virtual size: 472KB

.rdata
Size: 46KB - Virtual size: 72KB

.data
Size: 109KB - Virtual size: 108KB

.rsrc
Size: 21KB - Virtual size: 20KB