d77aca4282fed414d70959186372251565abbd29f261219e544d778224dd3a7d

Sharing

Copy URL

Twitter E-mail

General

Target

d77aca4282fed414d70959186372251565abbd29f261219e544d778224dd3a7d
Size

231KB
MD5

5b2c1302039d496f0f970f559b201dfe
SHA1

796d10701e5d1dc3e49119322cabc46c5619d272
SHA256

d77aca4282fed414d70959186372251565abbd29f261219e544d778224dd3a7d
SHA512

5a685fe98463e7150dbd23cd5ad01c12ccadb03d5eab16099bc0e34d04cd524dcf5be2d2e41a0b0f525242d0539a95d9fcb93dae140291a1ee994c478768e708
SSDEEP

6144:9PIeJarlToZNDlkPNvabl9uxX0Xp85VBLc4vm+fbcn8Klh3vOCU:9QxX0Xp8lc428EJ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d77aca4282fed414d70959186372251565abbd29f261219e544d778224dd3a7d

Files

d77aca4282fed414d70959186372251565abbd29f261219e544d778224dd3a7d
.exe windows:5 windows x86 arch:x86

9560d59c2cef19184939598de0a078ba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
HeapReAlloc
GetStringTypeW
LCMapStringW
GetConsoleMode
GetConsoleCP
SetFilePointer
HeapSize
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
WriteFile
ExitProcess
IsValidCodePage
SetStdHandle
WriteConsoleW
GetLocaleInfoA
GetLastError
LoadLibraryW
lstrcatA
GetProcAddress
HeapAlloc
CreateEventA
WaitForSingleObject
OpenProcess
GetCurrentProcess
DuplicateHandle
CloseHandle
FindResourceExA
LoadResource
SizeofResource
LockResource
UpdateResourceA
FreeResource
EnumResourceTypesA
GetCurrentDirectoryW
lstrlenA
GetOEMCP
GetACP
GetCPInfo
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
CreateFileW
UnhandledExceptionFilter
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
GetCurrentThreadId
SetLastError
GetModuleHandleW
InterlockedIncrement
GetSystemDefaultLCID
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DecodePointer
EncodePointer
IsProcessorFeaturePresent
HeapFree
GetStartupInfoW
HeapSetInformation
MultiByteToWideChar
GetModuleHandleA
GetStdHandle
GetCommandLineA
RtlUnwind
RaiseException

user32

EndPaint
GetIconInfo
DestroyWindow
TrackMouseEvent
BeginPaint
PostQuitMessage
DefWindowProcA
IsDlgButtonChecked
GetDlgItemTextA
GetParent
MapWindowPoints
SetDlgItemInt
GetClientRect
GetDC
OffsetRect
GetSystemMetrics
GetWindowRect
FillRect
EndDialog
GetWindowDC
IsWindowEnabled
GetFocus
ClientToScreen
ReleaseDC
GetCursorPos
SendMessageA
ScreenToClient
InvalidateRgn
GetKeyboardLayout
CreatePopupMenu
TrackPopupMenuEx
DestroyMenu
GetDlgItem
CreateWindowExA
GetWindowLongA
CreateMenu
DlgDirListA

gdi32

CreateRectRgn
SetTextColor
TextOutA
SelectObject
CreateCompatibleDC
DeleteDC
GetObjectA
CombineRgn
CreatePen
CreateSolidBrush
Rectangle
SetBkColor
BitBlt
DeleteObject
ExcludeClipRect
SelectClipRgn
SetTextJustification
GetTextExtentPoint32A

comdlg32

GetOpenFileNameA

advapi32

SetTokenInformation
FreeSid
AllocateAndInitializeSid

shell32

SHBindToParent
SHParseDisplayName
SHGetMalloc
SHGetSpecialFolderLocation
SHGetFileInfoA
DragQueryFileA

ole32

OleInitialize
RegisterDragDrop
CLSIDFromProgID
CoGetClassObject
CoCreateInstance

oleaut32

SysAllocStringByteLen
VariantInit

iphlpapi

NotifyRouteChange

shlwapi

PathUnquoteSpacesA

secur32

InitSecurityInterfaceA

opengl32

glEnable
glBlendFunc
glLightfv
glClearColor
glMatrixMode

glu32

gluOrtho2D

imm32

ImmGetDescriptionA

uxtheme

DrawThemeBackground

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 110KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9560d59c2cef19184939598de0a078ba

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

iphlpapi

shlwapi

secur32

opengl32

glu32

imm32

uxtheme

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 110KB - Virtual size: 118KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 110KB - Virtual size: 118KB

.rsrc
Size: 3KB - Virtual size: 3KB