f4be1a987a90d7c8dd525f2964257d40N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

f4be1a987a90d7c8dd525f2964257d40N.exe
Size

6.5MB
MD5

f4be1a987a90d7c8dd525f2964257d40
SHA1

cb9f0c2200f128f95e74467dbe20064f5d2bc88a
SHA256

07195fee92de9c8815ae13aaaf32e254c87e1ab4e771ff4d0a3a177426c8ac7f
SHA512

6d9e4ea92f7daa8d617472ae6ae2a5d9611d3fc85770151315e46293536391d5a1e039171928f37c274694ec949baf2d264e07b7633a684f37c16a3c3f4e1edf
SSDEEP

196608:iGCf0gZL51it4BEtswPSEwKxCYzqnpkPmzbWm9qvxqVVsC:uCt4BaslswkPmzbWZvw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4be1a987a90d7c8dd525f2964257d40N.exe

Files

f4be1a987a90d7c8dd525f2964257d40N.exe
.dll windows:6 windows x86 arch:x86

4147b4e511ab03ccd0bfaa8cecb2a171

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
CreateFileW
SetEnvironmentVariableA
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
GetFileAttributesExW
GetExitCodeProcess
WaitForSingleObject
LoadLibraryExW
SetFilePointerEx
ReadFile
GetConsoleCP
FlushFileBuffers
GetModuleFileNameW
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetModuleFileNameA
GetFileType
GetOEMCP
GetACP
IsDebuggerPresent
GetProcessHeap
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
SetConsoleTextAttribute
GetStdHandle
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
EnumSystemLocalesW
GetSystemTime
LocalFree
CloseHandle
DeleteCriticalSection
GetModuleHandleA
CreateEventW
CreateNamedPipeA
RaiseException
GetStartupInfoW
CreateProcessA
GetFileAttributesA
GetCommandLineW
CreateEventA
Sleep
GetLocaleInfoW
OpenProcess
ClearCommBreak
SetCommBreak
WaitNamedPipeA
GetCommState
GetDateFormatW
ExpandEnvironmentStringsW
IsValidCodePage
Beep
GetSystemTimeAdjustment
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentThread
QueryPerformanceCounter
GetCurrentProcess
GetLocaleInfoA
GetConsoleMode
GetUserDefaultLCID
IsValidLocale
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
RtlUnwind
HeapFree
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
CompareStringW
LCMapStringW
SetConsoleMode

user32

DrawFrameControl
GetSystemMenu
SetTimer
KillTimer
RemovePropA
GetDoubleClickTime
WaitMessage
ShowCursor
InflateRect
CreateDialogIndirectParamA
OffsetRect
CheckMenuRadioItem
EnableMenuItem
DestroyCursor
IsDlgButtonChecked
InsertMenuA
EnableWindow
GetDlgItemTextA
DestroyIcon
ValidateRect
CopyRect
GetWindowThreadProcessId
DestroyWindow
SetCursor
LoadStringA
MessageBeep
GetDC
ReleaseDC
DrawStateW
GetDesktopWindow
MessageBoxW
SystemParametersInfoA
BeginDeferWindowPos
RegisterClassW
ValidateRgn

gdi32

EndPage
SetLayout
GetWindowOrgEx
SetTextColor
Polygon
SetBkColor
DeleteObject
GetPaletteEntries
CreateBrushIndirect
ExtCreateRegion
StretchDIBits
CreateBitmapIndirect
GetCurrentPositionEx
GetDIBColorTable
GetTextExtentExPointA
CreatePatternBrush
CreatePen
SetTextAlign
GetPixel
SetWinMetaFileBits
ExtTextOutA
CreatePolygonRgn
StretchBlt
GetDIBits
CopyEnhMetaFileA
CreateBitmap
SelectClipRgn
CreateCompatibleDC
RealizePalette
GetTextExtentPointW
SetViewportExtEx
GetStockObject
RestoreDC
SetStretchBltMode

advapi32

RegCloseKey
AdjustTokenPrivileges
InitializeSecurityDescriptor

ole32

CoTaskMemFree

Sections

.text
Size: 562KB - Virtual size: 561KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4147b4e511ab03ccd0bfaa8cecb2a171

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 562KB - Virtual size: 561KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 5KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 562KB - Virtual size: 561KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 5KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 13KB