45379d10964b01b3ea09b7e15d3ca1a0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

45379d10964b01b3ea09b7e15d3ca1a0N.exe
Size

6.4MB
MD5

45379d10964b01b3ea09b7e15d3ca1a0
SHA1

6fe0f024647a1151bc3ac4473942422d6296ca16
SHA256

e62a97fb37d687c5f2fe447973376b711203d09d822d86208dccf3eba119384f
SHA512

58aa9998f75f4ac42eec31a5f3b9cba4ef5b0a71039ee139465b0890bf8cf2a41351a1c250fa167e38f29bbc5daa0cfcbc8a791f2be56354ea52ec2ab86e16e6
SSDEEP

98304:BRBKiDYGMMh0lNslePu+3b60xh07FX1LmmzcHt8vuYpPS2U4:BRwiDY+h1lZKbbS0vNmpa2U4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45379d10964b01b3ea09b7e15d3ca1a0N.exe

Files

45379d10964b01b3ea09b7e15d3ca1a0N.exe
.dll windows:6 windows x86 arch:x86

d6f86c9a28de0fbec4aaf893595cb263

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetWindowsDirectoryA
GetUserDefaultLangID
LoadLibraryW
SizeofResource
GetVersionExW
ExitThread
SetThreadPriority
GetStartupInfoW
FlushFileBuffers
GlobalFree
LoadLibraryA
QueryDosDeviceW
FindNextFileA
IsDebuggerPresent
GetStringTypeW
GetWindowsDirectoryW
GetVersion
GetThreadTimes
SignalObjectAndWait
GetFileAttributesA
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
LoadLibraryExW
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
CloseHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetModuleFileNameA
SetHandleInformation
HeapFree
QueryPerformanceCounter
SetDllDirectoryW
CreateFileA
EncodePointer
GetFullPathNameW
ExpandEnvironmentStringsW
DeleteFileA
ResumeThread
VirtualProtect
FindFirstFileA
TerminateProcess
CreateProcessA
TlsFree
IsProcessorFeaturePresent
Sleep
GetSystemDirectoryW
SetCommTimeouts
SetCommState
UnmapViewOfFile
GetTickCount
GetLogicalDrives
SystemTimeToTzSpecificLocalTime
SetErrorMode
GetFileType
GetModuleFileNameW
WriteFile
GetStdHandle
GetOEMCP
GetACP
IsValidCodePage
GetProcessHeap
HeapSize
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
MultiByteToWideChar
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
GetCurrentThreadId
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
GetModuleHandleW
GetProcAddress
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ExitProcess
GetModuleHandleExW

user32

CheckMenuItem
GetMenu
SystemParametersInfoW
MonitorFromWindow
IsRectEmpty
SetDlgItemTextW
SendMessageW
SetWindowTextW
EnableScrollBar
GetWindow
GetDC
GetDesktopWindow
GetDlgItemTextW
EndMenu
DestroyIcon
SetMenuItemInfoW
GetWindowThreadProcessId

gdi32

Arc
SetViewportOrgEx
GetMetaFileBitsEx
CreateHatchBrush
StretchBlt
PtInRegion
CreateBitmapIndirect
GetObjectW
CloseEnhMetaFile
ExtFloodFill
CreateFontIndirectW
StretchDIBits
GetBkColor
GetCharABCWidthsW
SetWindowOrgEx

advapi32

OpenServiceW
RegSetKeySecurity
RegGetKeySecurity
RegOpenKeyExA
SetSecurityDescriptorDacl
AdjustTokenPrivileges
StartServiceW
OpenSCManagerW
OpenProcessToken

shell32

ExtractIconExW

ole32

CoTaskMemFree

oleaut32

SysAllocStringLen
SafeArrayCreate
VariantCopy
SysFreeString
SafeArrayGetLBound
SysReAllocStringLen

Sections

.text
Size: 522KB - Virtual size: 521KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 6.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6f86c9a28de0fbec4aaf893595cb263

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 522KB - Virtual size: 521KB

.data Size: 5.9MB - Virtual size: 6.7MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 522KB - Virtual size: 521KB

.data
Size: 5.9MB - Virtual size: 6.7MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 12KB