97823d2cdc8e2d4cbbbc682f77dd4fb0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

97823d2cdc8e2d4cbbbc682f77dd4fb0N.exe
Size

6.5MB
MD5

97823d2cdc8e2d4cbbbc682f77dd4fb0
SHA1

c6200d2510896a703de1283d79cfdbcc86fceb51
SHA256

b077ef5f21cfe386384c7ae3367efbc733ed42a706ebc5857e727e7405e0fd1f
SHA512

3d31ee5b47c0edb22a86b25bf85df1d232dfeeea9a505b4bd805c8565d1821a4adad70ad6a65186d0b4adde4add1ed8d9b3a91aa923c3a12ec948d176047bc40
SSDEEP

196608:kc7wgL2Yu1DwfJdp2nw6BHo6hLdsOuLxO/kgPto:1bCLpwf3p2nw6BHLdPCIV1o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97823d2cdc8e2d4cbbbc682f77dd4fb0N.exe

Files

97823d2cdc8e2d4cbbbc682f77dd4fb0N.exe
.dll windows:6 windows x86 arch:x86

d8e1477ca9ea0cbe6d5d48364e289b26

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileA
UnmapViewOfFile
GetDriveTypeW
LoadLibraryExW
GetCurrentProcess
SetEnvironmentVariableW
GetCurrentThread
GetSystemTimeAsFileTime
GetPrivateProfileStringW
GetUserDefaultLangID
CreateEventA
FormatMessageW
Beep
MulDiv
TerminateProcess
GetModuleFileNameW
GetOverlappedResult
MultiByteToWideChar
FlushFileBuffers
VerifyVersionInfoW
GetThreadLocale
GetDiskFreeSpaceW
ResetEvent
GetFileType
CreateEventW
GetModuleHandleA
IsDebuggerPresent
FindNextFileW
CloseHandle
GetVersion
EnumSystemLocalesW
FillConsoleOutputCharacterA
GetTempFileNameW
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
GetStdHandle
Sleep
SetConsoleTextAttribute
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetOEMCP
IsValidCodePage
GetProcessHeap
HeapSize
GetDateFormatW
TlsFree
GetWindowsDirectoryW
GetEnvironmentVariableW
WinExec
DeleteCriticalSection
GetModuleFileNameA
GlobalFree
SetThreadPriority
GetACP
GetExitCodeProcess
GetVersionExW
InitializeCriticalSectionAndSpinCount
SetCommTimeouts
VirtualFree
SetCommBreak
WaitNamedPipeA
GetCommState
SetDllDirectoryW
FindResourceW
FillConsoleOutputAttribute
GetModuleHandleExW
ExitProcess
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetStringTypeW
GetLastError
HeapReAlloc
HeapFree
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
GetCurrentThreadId
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
GetStartupInfoW
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
SetConsoleMode

user32

SetMenuItemInfoW
ClientToScreen
DrawIconEx
EnumWindows
CreateIconIndirect
CheckMenuRadioItem
GetClassNameW
DrawMenuBar
ValidateRgn
CopyRect
GetDlgCtrlID
SendMessageW
GetWindow
RegisterWindowMessageW
GetKeyState
LoadStringA
AttachThreadInput
GetDC
DrawStateW
GetDesktopWindow
GetMenuItemCount
SetDlgItemTextW
DestroyIcon
GetMonitorInfoW

gdi32

SetWindowOrgEx
GetRgnBox
RectInRegion
Ellipse
GetTextExtentPointW
GetNearestPaletteIndex
GetMetaFileBitsEx
CreateHatchBrush
SetPolyFillMode
CloseEnhMetaFile

comdlg32

GetOpenFileNameW

advapi32

ControlService
OpenSCManagerW
RegCloseKey
RegLoadKeyW
AdjustTokenPrivileges
RegConnectRegistryW
QueryServiceStatus

shell32

CommandLineToArgvW

ole32

CoTaskMemFree

oleaut32

SysAllocStringLen
VariantClear

Sections

.text
Size: 575KB - Virtual size: 574KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8e1477ca9ea0cbe6d5d48364e289b26

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 575KB - Virtual size: 574KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 575KB - Virtual size: 574KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 12KB