46d640dfc49a0f94e94bee9e508fc680N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

46d640dfc49a0f94e94bee9e508fc680N.exe
Size

6.5MB
MD5

46d640dfc49a0f94e94bee9e508fc680
SHA1

3ad0bfd584c81fb9763d0b73f6857e644ce207c4
SHA256

0aa5eee05113bc92c115005f289cc31ccc71fe070ef0778f31d866afaf35e830
SHA512

b3da0ae4f3da52be18c2fb5b329fb5c668385aad525d8e4c8a7ffe842b30d326a2b96b65985009ff8ccacf9d26c3b48c399f9cd295491352e6c8d6c0a779e05d
SSDEEP

196608:O0sF2Tm2a4Qye2UXhniK6aogiP2sLA0qZG5dmmvaH:psF2Q+e2l3p5MGvmYaH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46d640dfc49a0f94e94bee9e508fc680N.exe

Files

46d640dfc49a0f94e94bee9e508fc680N.exe
.dll windows:6 windows x86 arch:x86

3a226a510befd60b0bf321918d36fab5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadConsoleW
SetStdHandle
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
WriteFile
OutputDebugStringW
GetACP
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapSize
CreateFileW
ExitProcess
GetUserDefaultLCID
IsValidLocale
LCMapStringW
GetProcAddress
GetModuleHandleW
GetStartupInfoW
TlsFree
TerminateProcess
Sleep
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapAlloc
GetCPInfo
TlsAlloc
FindNextFileW
GetOEMCP
GetModuleFileNameA
CreateEventW
CreateFileMappingA
GetLocalTime
ResetEvent
TlsGetValue
GlobalUnlock
MultiByteToWideChar
CompareStringW
GetOverlappedResult
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
TlsSetValue
ExpandEnvironmentStringsA
ConnectNamedPipe
SetHandleInformation
GetCurrentProcess
WaitNamedPipeA
CreateFileA
GetCommandLineW
EnumSystemLocalesW
LocalFree
GetCurrentProcessId
CloseHandle
DeleteCriticalSection
GetFileType
EnterCriticalSection
FlushFileBuffers
GetModuleFileNameW
LeaveCriticalSection
GetLocaleInfoW
GetCommandLineA
ClearCommBreak
SetEnvironmentVariableW
LoadLibraryExW
MapViewOfFile
GetCurrentThreadId
WriteConsoleW
WideCharToMultiByte
EncodePointer
DecodePointer
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
HeapFree
RaiseException
RtlUnwind
GetStdHandle
GetModuleHandleExW

user32

ValidateRect
ShowOwnedPopups
ClientToScreen
DestroyAcceleratorTable
SendDlgItemMessageA
SetCapture
SetParent
CreateMenu
GetKeyboardState
InflateRect
SetPropA
CheckMenuRadioItem
SystemParametersInfoW
SetMenu
IsDlgButtonChecked
PostMessageA
SetScrollInfo
CheckMenuItem
GetSystemMenu
HideCaret
CreateDialogParamA
RemovePropA
GetWindowInfo
GetClientRect
SetFocus
GetWindowTextLengthA
GetDC
GetQueueStatus
ShowCursor
PeekMessageA
EnableMenuItem
SetClassLongA
DrawStateW
GetDesktopWindow
CheckDlgButton
EnableScrollBar
AppendMenuA
InsertMenuA
EnableWindow
LoadCursorA

gdi32

SetLayout
PatBlt
LineTo
MaskBlt
SetBkColor
CopyEnhMetaFileA
GdiFlush
GetEnhMetaFileHeader
SetPixel
CreatePalette
CreateBitmap
GetPaletteEntries
CombineRgn
SetMapMode
CreateBrushIndirect
OffsetRgn
CreateBitmapIndirect
SetPaletteEntries
GetNearestPaletteIndex
GetPixel
GetStockObject
ExtTextOutA
CloseEnhMetaFile
CreateEnhMetaFileW
RestoreDC
TextOutA
SetTextColor
GetCharacterPlacementW
DeleteDC
RectInRegion
GetCharABCWidthsFloatA
SetTextAlign
CreateDIBitmap
SetWinMetaFileBits
CreateSolidBrush
GetMetaFileBitsEx

advapi32

RegCloseKey
RegOpenKeyExA
GetLengthSid

ole32

CoTaskMemFree

Sections

.text
Size: 538KB - Virtual size: 538KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 59.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a226a510befd60b0bf321918d36fab5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 538KB - Virtual size: 538KB

.data Size: 5.9MB - Virtual size: 59.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 538KB - Virtual size: 538KB

.data
Size: 5.9MB - Virtual size: 59.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 13KB