0fe982fe26c27017968e47dbb194dd9c0bead3d5b47e46117831680eedef7a6e

Sharing

Copy URL Twitter E-mail

General

Target

0fe982fe26c27017968e47dbb194dd9c0bead3d5b47e46117831680eedef7a6e
Size

196KB
MD5

9174f45b474079e5ba8c0d02fdea8188
SHA1

2bb32cdd69c13d89af66a4fe23a2530fcf187342
SHA256

0fe982fe26c27017968e47dbb194dd9c0bead3d5b47e46117831680eedef7a6e
SHA512

edd6afb15f19fc9e2c9398f48ee3d5e099f75f02962174900bcb1cdbc809d816c2f51c74372a9176592116150a3bd361e318dc2da6020bbb29e32114575f3511
SSDEEP

3072:NuAOBaPYjGvIzW0PYMRCI2kTC0rFKAprSNsC7yVhT5SOedrHRMD0Iz:NmBaPwGOPYWh2/EdZC7uFSlr8dz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fe982fe26c27017968e47dbb194dd9c0bead3d5b47e46117831680eedef7a6e

Files

0fe982fe26c27017968e47dbb194dd9c0bead3d5b47e46117831680eedef7a6e
.dll windows:4 windows x86 arch:x86

384ca50260f8448dde639bbf62428f68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

VirtualProtect
LocalAlloc
EnumUILanguagesW
GetPrivateProfileSectionW
GetSystemDefaultUILanguage
SetLastError
GetVersion
VirtualFree
VirtualAlloc
GetLocaleInfoW
GetPrivateProfileStringW
UnmapViewOfFile
GetDiskFreeSpaceW
SetErrorMode
GetFileSize
GetFileType
GetComputerNameW
ResetEvent
SetEvent
WaitForMultipleObjects
OpenEventW
CreateThread
SetEndOfFile
SetFileTime
GetVolumeInformationW
WaitForSingleObject
ExitProcess
CreateProcessA
CreateProcessW
FindClose
FindNextFileW
FindFirstFileW
GetShortPathNameW
GetFullPathNameW
GetTempPathW
CreateDirectoryW
GetWindowsDirectoryW
SetFilePointer
FreeLibrary
GetDriveTypeW
GetLogicalDriveStringsW
MoveFileExW
MoveFileW
CopyFileW
GlobalSize
GlobalFree
GlobalUnlock
GlobalAlloc
HeapValidate
HeapCompact
HeapFree
HeapCreate
GetProcessHeap
GlobalMemoryStatus
GetSystemInfo
GetLastError
GetStartupInfoA
GetModuleHandleA
TerminateProcess
GetCommandLineW
HeapSetInformation
MultiByteToWideChar
RaiseException
CreateMutexW
CloseHandle
HeapDestroy
HeapReAlloc
HeapSize
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetVersionExA
lstrlenW
Sleep
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
OpenProcess
LockResource
FindResourceW
FindResourceExW
MulDiv
ProcessIdToSessionId
DeleteFileW
GetFileAttributesW
ExpandEnvironmentStringsW
GetModuleHandleW
CreateActCtxA
lstrcmpW
LocalFree
GetLogicalDriveStringsA
GetEnvironmentVariableA
GetDateFormatW
GetLocalTime
CreateToolhelp32Snapshot
GetCalendarInfoA
InterlockedExchange
GetProcAddress
LoadLibraryA

shell32

ExtractIconExW
ShellExecuteExW
ShellExecuteW

ole32

CoTaskMemFree
CreateStreamOnHGlobal
CoInitialize
GetHGlobalFromStream

version

GetFileVersionInfoW
GetFileVersionInfoSizeW

msvcrt

free
bsearch
wcsspn
wcsrchr
malloc
wcscspn
exit
wcschr
memset

shlwapi

SHSetValueW

uxtheme

IsThemeActive
GetCurrentThemeName

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

384ca50260f8448dde639bbf62428f68

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

ole32

version

msvcrt

shlwapi

uxtheme

Sections

.text Size: 12KB - Virtual size: 10KB

.data Size: 12KB - Virtual size: 75KB

.rdata Size: 8KB - Virtual size: 7KB

.rsrc Size: 156KB - Virtual size: 154KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 10KB

.data
Size: 12KB - Virtual size: 75KB

.rdata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 156KB - Virtual size: 154KB

.reloc
Size: 4KB - Virtual size: 1KB