19fd5bb97a238ce7b00e014e663da10643f18eb2f21f6f23347cc4f052d94137[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

19fd5bb97a238ce7b00e014e663da10643f18eb2f21f6f23347cc4f052d94137.exe
Size

120KB
MD5

d3b1d743c4c26cdcf679e778f2a12a0e
SHA1

9e515ad15fbcad95bbeda70c18ae674f369a0d7b
SHA256

19fd5bb97a238ce7b00e014e663da10643f18eb2f21f6f23347cc4f052d94137
SHA512

67128cf0883505c18f3f0d4e80f8c0144ab9829b512f0678304cfb20644810adca0de5e276ecdfd248073f7014071441a57b63bc263ea51ec3116bf59930c4a4
SSDEEP

1536:UqaN5pq1hhFfSdt5GTJgxAV095WvH7f06GduYh+YTHB7WGWgwW8kKtRLN:UtqzSdjV0vHLRuh+27WGWgwW8kKt1N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19fd5bb97a238ce7b00e014e663da10643f18eb2f21f6f23347cc4f052d94137.exe

Files

19fd5bb97a238ce7b00e014e663da10643f18eb2f21f6f23347cc4f052d94137.exe
.exe windows:4 windows x86 arch:x86

bcea7c7aae0ad6fd7ca263cd1cd36ef6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

shutdown
WSAAsyncGetHostByAddr
WSAAsyncSelect
getsockname
WSAGetLastError
gethostbyaddr
getsockopt
inet_ntoa
setsockopt
recv
recvfrom
sendto
send
WSAAsyncGetHostByName
closesocket
select
accept
listen
ioctlsocket
socket
connect
WSACleanup
WSAStartup
gethostbyname
gethostname
inet_addr
htons
bind
htonl

kernel32

GetModuleFileNameA
GetTempPathA
TerminateThread
GetPrivateProfileIntA
GetTickCount
CreateThread
WinExec
GlobalFree
GetVersion
SetEvent
GlobalLock
GlobalAlloc
LocalFree
LocalAlloc
lstrlenA
lstrcpyA
Sleep
GetVersionExA
GlobalMemoryStatus
CreateEventA
CreateMutexA
GetPrivateProfileStringA
OutputDebugStringA
WaitForSingleObject
ReleaseMutex
CopyFileA
WriteFile
ReadFile
DeleteFileA
GlobalUnlock
GlobalSize
CreateFileA
FlushFileBuffers
LCMapStringW
CompareStringA
GetLastError
SetConsoleCtrlHandler
GetProcAddress
HeapSize
GetCurrentProcess
TerminateProcess
HeapReAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
HeapFree
RtlUnwind
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RemoveDirectoryA
CreateDirectoryA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
LCMapStringA
SetStdHandle
MultiByteToWideChar
GetStringTypeA
CloseHandle
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
CompareStringW
GetFileSize
SetFilePointer
SetEnvironmentVariableA
LoadLibraryA

user32

LoadIconA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RegisterClassExA
LoadCursorA
DialogBoxParamA
MessageBoxA
PostQuitMessage
EndPaint
DefWindowProcA
FindWindowA
DestroyWindow
EnableWindow
GetDlgItem
MessageBoxIndirectA
GetWindowLongA
SetWindowLongA
GetClassInfoA
RegisterClassA
CreateWindowExA
wsprintfA
IsRectEmpty
IntersectRect
UnionRect
IsWindow
SendMessageA
SendDlgItemMessageA
DrawTextA
InvalidateRect
UpdateWindow
GetDC
GetClientRect
ReleaseDC
SetDlgItemTextA
PostMessageA
KillTimer
SetTimer
SetWindowTextA
GetSystemMetrics
BeginPaint
GetWindowRect
ScreenToClient
FillRect
ShowWindow

gdi32

GetBkColor
DeleteDC
DeleteObject
CreateSolidBrush
SetBkColor
SetMapMode
SetTextColor
SetBkMode
CreateFontIndirectA
GetObjectA
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
CreateDIBitmap
CreateBitmap

advapi32

RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

ole32

CoCreateGuid

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bcea7c7aae0ad6fd7ca263cd1cd36ef6

Headers

File Characteristics

Imports

wsock32

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 12KB - Virtual size: 76KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 12KB - Virtual size: 76KB

.rsrc
Size: 4KB - Virtual size: 2KB