99601dbe29c2db13da910a28ac337970N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

99601dbe29c2db13da910a28ac337970N.exe
Size

3.0MB
MD5

99601dbe29c2db13da910a28ac337970
SHA1

327224bc9883494f65276fc76a28adac1f7049fa
SHA256

20cae789d3ebeebb2d6cca916a18406987b879aaab09af7ec3a4d135973c1314
SHA512

50c6f5a550afb87ce5babd14f8a830a7f3f1049e667d286177514fb27981d982c680ee6a04584a64be4996bfcf3a65950142a6e0b0e7ee2c0cce7e2749bff223
SSDEEP

98304:p2ZimDV1HkEhYFXKkyypiJ2lNSpI4r6P2wnVzXcOK3BjIrXo8aVqefUzk7G4Nztk:G7G2I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99601dbe29c2db13da910a28ac337970N.exe

Files

99601dbe29c2db13da910a28ac337970N.exe
.dll windows:4 windows x86 arch:x86

c0a7a62bd7694c3c8427c01e6446db3a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GetLastError
Sleep
GetTickCount

user32

GetWindowTextA
DestroyWindow
GetDC
ReleaseDC
CreateWindowExA
SetWindowLongA
SendMessageA
AppendMenuA
GetSysColor
CallWindowProcA
InvalidateRect
GetDoubleClickTime
PeekMessageA
DispatchMessageA
MessageBoxA
CreatePopupMenu
TrackPopupMenu
GetWindowRect
GetWindowLongA
DestroyMenu
FillRect
DrawTextA
GetAsyncKeyState
GetCursorPos
GetMessageTime
GetSystemMetrics
RegisterClassA
LoadCursorA
UnregisterClassA
SetCursor
GetCursor
BringWindowToTop
GetUpdateRect
BeginPaint
EndPaint
DefWindowProcA
SetWindowTextA
PostMessageA
GetDlgItem
LoadBitmapA
GetClassNameA
SetWindowPos
MapWindowPoints
SetFocus
GetParent

gdi32

CreatePenIndirect
DeleteObject
SetTextColor
SetBkMode
GetCurrentObject
SelectObject
MoveToEx
LineTo
Polyline
CreateSolidBrush
CreateBitmap
GetObjectA
DPtoLP
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
GetTextExtentPoint32A
SetBkColor
CreateBrushIndirect
Pie
Arc
ExtFloodFill
GetPixel
SetPixel
Ellipse
GetStockObject
Polygon
CreateRectRgn
SelectClipRgn
SetROP2
CreateFontIndirectA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

DragQueryFileA

ole32

OleInitialize
RegisterDragDrop
CoCreateInstance
OleUninitialize
RevokeDragDrop

msvcrt

_stricmp
strchr
strncmp
free
realloc
malloc
strstr
_purecall
sprintf
_ftol
fopen
fprintf
fclose
_CIsinh
_CIpow
__CxxFrameHandler
??3@YAXPAX@Z
??2@YAPAXI@Z
strncpy
floor
_CIfmod
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
strrchr

Exports

Exports

main

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c0a7a62bd7694c3c8427c01e6446db3a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

.reloc Size: 20KB - Virtual size: 17KB

.text Size: 160KB - Virtual size: 160KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

.reloc
Size: 20KB - Virtual size: 17KB

.text
Size: 160KB - Virtual size: 160KB