af4d259ed7cf81be49ceabdf10b53ec0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

af4d259ed7cf81be49ceabdf10b53ec0N.exe
Size

236KB
MD5

af4d259ed7cf81be49ceabdf10b53ec0
SHA1

556eed3e5c170b75ec697c95c04b169ac8b43ec6
SHA256

27300b1b89dad893b52c610771e83989087e4f694489db36ba02813fa3d73417
SHA512

6ba4c7a3aab6b15a8251c3c9082c92861d7e33e2c452f6ca121c3e9c34a5191b4b3a33458bc09c3a9501cb16bbf5fd48381b71ef2ca8c284a18d52e47b0ee5f0
SSDEEP

6144:nzG1ZkbrV+UOyBZx8F2FnBTDhrFvPRKAANgWZ:9koxC2FBtFvPAA+gW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af4d259ed7cf81be49ceabdf10b53ec0N.exe

Files

af4d259ed7cf81be49ceabdf10b53ec0N.exe
.exe windows:4 windows x86 arch:x86

cb6028aaba2ea63eaaa953b0e46373b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GetUrlCacheHeaderData
UnlockUrlCacheEntryStream
InternetShowSecurityInfoByURL
RetrieveUrlCacheEntryFileW
InternetTimeToSystemTime
FindFirstUrlCacheEntryA
DeleteUrlCacheEntryA
InternetSetCookieA
SetUrlCacheConfigInfoA

comdlg32

LoadAlterBitmap
GetFileTitleW
FindTextW
ReplaceTextW
FindTextA
ChooseColorA
GetFileTitleA
PrintDlgA
GetSaveFileNameA
ChooseFontW
PageSetupDlgA
PageSetupDlgW
PrintDlgW
GetSaveFileNameW
ChooseColorW
ChooseFontA
GetOpenFileNameA
ReplaceTextA

user32

GetParent
SetSysColors
CharUpperA
SetWindowRgn
GetClassLongW
LoadImageA
IsCharAlphaNumericA
GetWindowPlacement
CascadeChildWindows
EnumDisplaySettingsW
GetLastActivePopup
RegisterHotKey

advapi32

CryptSetHashParam
RegConnectRegistryW
RegNotifyChangeKeyValue
LookupAccountSidA
ReportEventA
CryptExportKey
CryptSetProviderExW
CryptSignHashA
RegCreateKeyExW
RegEnumKeyW
CryptEnumProvidersW
RegDeleteKeyA
RegQueryInfoKeyW
LookupAccountSidW
ReportEventW
CryptDestroyHash
RegSetValueExA
CryptHashSessionKey
RegReplaceKeyA
RegSetKeySecurity
LookupSecurityDescriptorPartsA

kernel32

HeapAlloc
VirtualAlloc
HeapFree
IsValidCodePage
Sleep
FreeEnvironmentStringsA
GetModuleFileNameW
IsDebuggerPresent
TlsSetValue
GetCommandLineW
GetOEMCP
GetCurrentThreadId
EnterCriticalSection
RtlUnwind
GetStringTypeA
GetTimeFormatA
LeaveCriticalSection
GetTimeZoneInformation
GetCurrentProcess
CompareStringA
HeapReAlloc
GetUserDefaultLCID
InterlockedExchange
CompareStringW
WideCharToMultiByte
GetFullPathNameA
GetPriorityClass
InterlockedIncrement
LCMapStringA
HeapSize
IsValidLocale
VirtualFree
SetUnhandledExceptionFilter
RtlZeroMemory
SetEnvironmentVariableA
TlsFree
GetSystemTimeAsFileTime
VirtualFreeEx
GetUserDefaultLangID
InterlockedDecrement
GetLocaleInfoW
CreateMutexW
FreeEnvironmentStringsW
TlsAlloc
ExitThread
GetModuleHandleA
GetCommandLineA
SetFileTime
GetFileType
GetProcessHeap
GetDateFormatA
GetVersion
GetProcAddress
DeleteCriticalSection
GetModuleFileNameA
GetLastError
HeapDestroy
GetVersionExA
EnumSystemLocalesA
MultiByteToWideChar
GetStartupInfoW
GetStartupInfoA
SetLastError
LoadLibraryA
GetEnvironmentStrings
SetConsoleCtrlHandler
GetCurrentThread
GetCurrentProcessId
QueryPerformanceCounter
LocalUnlock
GetTickCount
FreeLibrary
GetEnvironmentStringsW
GlobalFlags
SetHandleCount
GetACP
GetCPInfo
VirtualQuery
LCMapStringW
ExitProcess
HeapCreate
GetDiskFreeSpaceExW
SetLocaleInfoW
OutputDebugStringA
WriteFile
GetLocaleInfoA
TlsGetValue
TerminateProcess
UnhandledExceptionFilter
InitializeCriticalSection
RtlFillMemory
GetStringTypeW
GetStdHandle

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb6028aaba2ea63eaaa953b0e46373b8

Headers

File Characteristics

Imports

wininet

comdlg32

user32

advapi32

kernel32

Sections

.text Size: 118KB - Virtual size: 118KB

.data Size: 112KB - Virtual size: 111KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 118KB - Virtual size: 118KB

.data
Size: 112KB - Virtual size: 111KB

.rsrc
Size: 4KB - Virtual size: 4KB