aa156370eedded2eb1354e908b9a4ad119dc03f61bcd57e4435b077d9dcaeb99

Sharing

Copy URL Twitter E-mail

General

Target

aa156370eedded2eb1354e908b9a4ad119dc03f61bcd57e4435b077d9dcaeb99
Size

5.7MB
MD5

545016356df23480ee2d5b04d0c582f8
SHA1

894188f1d2a73c1495fec4947c573b7a64595911
SHA256

aa156370eedded2eb1354e908b9a4ad119dc03f61bcd57e4435b077d9dcaeb99
SHA512

673223b840012051f73619b565499db0f543c255ecb98ef503a69c25eb9d56e44e8125588d43ced4f7e3b2363d8d7e3bf2cf13087df633ece76ba231da663afd
SSDEEP

98304:Pn2FKN9w3yk3EG7ayelQhwigT7fZmwHh9h9c7I1hXZ6amjojFf2pC0xRHjJdktQ:P2FK7wC/iYQWtT7FB9h9h1hXZ6auM92

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa156370eedded2eb1354e908b9a4ad119dc03f61bcd57e4435b077d9dcaeb99

Files

aa156370eedded2eb1354e908b9a4ad119dc03f61bcd57e4435b077d9dcaeb99
.exe windows:6 windows x86 arch:x86

b49d63a544a31e4fcf206990d34c463b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
LoadLibraryExW
LeaveCriticalSection
EnterCriticalSection
IsDebuggerPresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
GetCPInfo
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
WriteFile
GetModuleFileNameW
GetStartupInfoW
DeleteCriticalSection
GetFileType
GetStdHandle
GetCurrentThreadId
SetLastError
GetProcessHeap
HeapFree
HeapSize
OutputDebugStringW
FlushFileBuffers
GetConsoleCP
SetStdHandle
SetFilePointerEx
WriteConsoleW
GetDateFormatW
CreateThread
LCMapStringW
GetVersionExA
GetStringTypeW
FreeEnvironmentStringsW
FindNextFileA
GetLocalTime
IsValidCodePage
GlobalUnlock
MultiByteToWideChar
CreateFileW
GetTimeFormatW
GetConsoleMode
WideCharToMultiByte
GetCommandLineA
SetCommState
GlobalLock
SetHandleInformation
QueryPerformanceCounter
HeapAlloc
UnmapViewOfFile
GetSystemTime
LocalFree
GetModuleHandleA
GetOEMCP
RtlUnwind
EncodePointer
DecodePointer
GetLastError
HeapReAlloc
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
GetProcAddress
CloseHandle

user32

SetWindowRgn
HideCaret
GetWindowRect
IsIconic
ChangeDisplaySettingsW
SetCapture
GetParent
RemovePropA
CreateMenu
DrawEdge
RegisterWindowMessageA
InsertMenuItemW
GetDC
LoadAcceleratorsW
ShowCursor
CreateDialogIndirectParamA
GetWindowPlacement
SetPropA
GetScrollInfo
BringWindowToTop
ReleaseDC
SetClassLongA
GetDlgItem
CheckDlgButton
CreateCaret
PostMessageA
UnhookWindowsHookEx
GetSystemMetrics
SetCaretPos
ValidateRgn
DestroyIcon
DrawFrameControl
TranslateMDISysAccel
CopyRect
MoveWindow
DestroyWindow
PostQuitMessage
KillTimer
SetScrollRange
WinHelpA
GetKeyboardLayout
DestroyCursor
GetSysColor
ShowWindow
FlashWindow
AdjustWindowRect
CheckMenuItem
IsRectEmpty

gdi32

GetWindowOrgEx
GetTextExtentPoint32A
SetWindowExtEx
SetTextColor
GetCharacterPlacementW
Polygon
StretchBlt
GetDIBits
ExcludeClipRect
GetEnhMetaFileHeader
GetPaletteEntries
Rectangle
ExtCreateRegion
SaveDC
RealizePalette
StretchDIBits
GetTextExtentPointW
GetBkColor
GetCharWidth32A
GetTextExtentPointA
CreateICA
GetPixel
SetWinMetaFileBits
CloseEnhMetaFile
UpdateColors
Arc
GetRgnBox
CreateDCA
UnrealizeObject
Ellipse
EnumFontFamiliesA
GetSystemPaletteEntries
TextOutA
CreateDIBitmap

advapi32

RegEnumKeyA
RegCreateKeyExA
RegDeleteKeyA
RegSetValueExA

Sections

.text
Size: 339KB - Virtual size: 339KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b49d63a544a31e4fcf206990d34c463b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 339KB - Virtual size: 339KB

.data Size: 5.4MB - Virtual size: 5.4MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 339KB - Virtual size: 339KB

.data
Size: 5.4MB - Virtual size: 5.4MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 6KB - Virtual size: 6KB