5958eb733f78c4dbe28b5affb95c1b2942c1406031026836ed1044311fff9a13

Sharing

Copy URL Twitter E-mail

General

Target

5958eb733f78c4dbe28b5affb95c1b2942c1406031026836ed1044311fff9a13
Size

164KB
MD5

09e56e214b52ab5e4ea2da06a5f4d4ab
SHA1

7386879b78e46dd134ed10d3715257195cc2e57e
SHA256

5958eb733f78c4dbe28b5affb95c1b2942c1406031026836ed1044311fff9a13
SHA512

e3114db4eba73f4a26fd7543a52f2f9cdd2c9608eed101cbcdcb42c48a528678723cacd74468c6479c8626c724f6ee6450041b9c3629f3fced229f519959dd8d
SSDEEP

1536:LTFvjkFNmK05XIwkSb0o59cJPaZYa1ML7j8tS9:/Fr0NmnCq4o/cSSXjr9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5958eb733f78c4dbe28b5affb95c1b2942c1406031026836ed1044311fff9a13

Files

5958eb733f78c4dbe28b5affb95c1b2942c1406031026836ed1044311fff9a13
.exe windows:4 windows x86 arch:x86

c3f210b432c2b05128a8104b20adb8cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
CloseHandle
lstrcmpA
CreateMutexA
GetLastError
GlobalFree
UnhandledExceptionFilter
GetCPInfo
LCMapStringW
LCMapStringA
MultiByteToWideChar
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
LoadLibraryA
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetOEMCP
HeapAlloc
lstrlenA
GlobalUnlock
VirtualAlloc
HeapReAlloc
GetStringTypeW
GetProcAddress
GetACP
GetStringTypeA

user32

SetForegroundWindow
CreateWindowExA
GetClassInfoExA
DestroyWindow
PostMessageA
ShowWindow
ReleaseDC
GetDC
LoadImageA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowPos
RegisterClassA
LoadIconA
GetCursorPos
SetClassLongA
DestroyCursor
PostQuitMessage
MessageBoxA
LoadStringA
InvalidateRect
GetSystemMetrics
SystemParametersInfoA
DialogBoxParamA
BeginPaint
EndPaint
EndDialog
DefWindowProcA
GetDesktopWindow
GetWindow
GetClassNameA
SendMessageA
LoadCursorA

gdi32

GetDIBits
CreatePalette
CreateCompatibleDC
GetDIBColorTable
ExtTextOutA
SetBkMode
SetTextColor
SetTextAlign
SelectObject
CreateFontA
DeleteDC
RealizePalette
BitBlt
DeleteObject
GetDeviceCaps
SelectPalette

shell32

Shell_NotifyIconA

winmm

mixerSetControlDetails
mixerGetNumDevs
mixerGetLineInfoA
mixerGetDevCapsA
mixerClose
mixerGetLineControlsA
mixerGetControlDetailsA
mixerOpen

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c3f210b432c2b05128a8104b20adb8cf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

winmm

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 128KB - Virtual size: 148KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 128KB - Virtual size: 148KB