2681b49540181dcfc759a4aeabbbd790N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2681b49540181dcfc759a4aeabbbd790N.exe
Size

168KB
MD5

2681b49540181dcfc759a4aeabbbd790
SHA1

caadc4121e634d7d630d8e2063112dc930ed4155
SHA256

c663ce8336f766cfa4d11c46c459ddb91e83d888f73254eb032fdb21a44d8c6d
SHA512

972850d85e10bf39b1057e4775420e193de8ed741210f900e7f2a78ac00e719d517cd1760c0e8bc68662fb4b7ad09d5a3712210ada508b849e69b87bea4333d1
SSDEEP

3072:79yQOG9iPK7vIHTDMWj1bdKZReWw51cYLxp2GPle2:iKjIHTDz5KZUPbLdo2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2681b49540181dcfc759a4aeabbbd790N.exe

Files

2681b49540181dcfc759a4aeabbbd790N.exe
.exe windows:4 windows x86 arch:x86

080a05f78b6ea4fe2c9160d9bdfd4ee2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\CODE\9_SURENAME\1_projects\output\Release\pdb\UpdateExtra.pdb

Imports

idlostinfo

?FindItem@CLostInfoSet@@QAEPAU_tagLOSSUSERREC@@PBD@Z
??0CLostInfoSet@@QAE@XZ
??1CLostInfoSet@@UAE@XZ

kernel32

TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetFileAttributesA
GetFileTime
lstrcmpW
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GlobalFlags
GetCPInfo
GetOEMCP
ExitProcess
RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
TerminateProcess
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetTimeZoneInformation
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
EnterCriticalSection
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
InterlockedIncrement
WideCharToMultiByte
InterlockedDecrement
GetModuleFileNameA
CreateDirectoryA
WaitForSingleObject
ReleaseMutex
CreateMutexA
OutputDebugStringA
CloseHandle
WritePrivateProfileStringA
CopyFileA
LocalAlloc
lstrlenA
FormatMessageA
GetLastError
MultiByteToWideChar
SetFileAttributesA
MapViewOfFile
CreateFileMappingA
GetVersion
GetDriveTypeA
lstrcmpiA
CompareStringA
CompareStringW
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetCurrentThread
GetCurrentThreadId
GlobalDeleteAtom
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
SetErrorMode
lstrcatA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetTickCount
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
SetLastError
GlobalFree
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynA
LocalFree
GetCurrentDirectoryA
SetCurrentDirectoryA
DeleteFileA
LoadLibraryA
GetProcAddress
FreeLibrary
CreateProcessA
GetExitCodeProcess
GetCommandLineA

user32

ShowWindow
SetWindowTextA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetCursor
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
wsprintfA
CharUpperA
PostMessageA
GetWindow
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
SetWindowsHookExA
CallNextHookEx
GetMessageA
DestroyMenu
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetSystemMetrics
RegisterClipboardFormatA
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
MessageBoxA
SendMessageA
PostQuitMessage
UnregisterClassA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
LoadCursorA
UnhookWindowsHookEx
GetWindowTextA
ValidateRect
GetCursorPos
PeekMessageA
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageA
TranslateMessage

gdi32

GetClipBox
DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
SetMapMode
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
SetTextColor
SetBkColor
RestoreDC
SaveDC
ScaleViewportExtEx
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegCloseKey
RegQueryValueA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegOpenKeyA
RegCreateKeyA
RegSetValueExA
RegQueryValueExA

comctl32

ord17

shlwapi

PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA

ole32

CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
CoUninitialize

oleaut32

SysAllocString
SysFreeString
VariantInit
VariantChangeType
VariantClear
GetErrorInfo

Sections

.text
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

080a05f78b6ea4fe2c9160d9bdfd4ee2

Headers

File Characteristics

PDB Paths

Imports

idlostinfo

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 120KB - Virtual size: 117KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 4KB - Virtual size: 152B

.text
Size: 120KB - Virtual size: 117KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 4KB - Virtual size: 152B