9e07b05bfd8c8a3facb681b1764910d0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

9e07b05bfd8c8a3facb681b1764910d0N.exe
Size

125KB
MD5

9e07b05bfd8c8a3facb681b1764910d0
SHA1

fc905a775efe8b3e5cae853a3f9e6ef6c6653661
SHA256

4e08d16f10be2c8c69fee1d6dee7d4024b191cde8509f235c6a9b2b031e2f109
SHA512

3d7d9eb5424710ba2789110c5fcdce2203e17b0581f29ec406ac5bbc94b11144248fd78503919d850078ea3e263e69c3c064d1f5e5c3080dd92f5aa8cd0d5f97
SSDEEP

1536:/PE7nfoAoeHY2rLmfdEMFFI9vqysNCsKvD7oEzPreMznqlkED2h3SuQJteVqAcLU:/PEq2X0EMHI11sNCpvDBreOOD2h3YU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9e07b05bfd8c8a3facb681b1764910d0N.exe

Files

9e07b05bfd8c8a3facb681b1764910d0N.exe
.dll windows:4 windows x86 arch:x86

a7fdd93e10e5c664bd736838a0559283

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstFileA
GetModuleFileNameA
FindNextFileA
LocalUnlock
LocalHandle
LocalFree
FindClose
LocalLock
LocalReAlloc
CreateFileA
SetFilePointer
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetVersionExA
VirtualQuery
lstrcatA
GetPrivateProfileStringA
GetCurrentThreadId
WriteFile
SetEndOfFile
SetSystemPowerState
GetCurrentProcess
GetLastError
SuspendThread
WritePrivateProfileStringA
DisableThreadLibraryCalls
SetEvent
CreateEventA
CreateThread
CloseHandle
WaitForSingleObject
Sleep
lstrlenA
lstrcpynA
ReadFile
DeleteFileA
lstrcmpiA
LocalAlloc
VirtualProtect

user32

SetWindowsHookExA
SetActiveWindow
GetWindowLongA
IsWindow
SetWindowLongA
GetSystemMetrics
CallNextHookEx
EnableWindow
PtInRect
GetCursorPos
GetClientRect
SetWindowPos
GetSysColor
GetWindowTextA
KillTimer
SetTimer
EnableMenuItem
GetSubMenu
SetDlgItemTextA
ReleaseCapture
GetCapture
CheckMenuRadioItem
IsWindowVisible
UnhookWindowsHookEx
CallWindowProcA
FrameRect
DestroyMenu
LoadMenuA
MessageBoxIndirectA
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageA
CheckDlgButton
EnumThreadWindows
WindowFromPoint
SetMenuDefaultItem
CreateDialogParamA
MapWindowPoints
SystemParametersInfoA
SetPropA
LoadImageA
ReleaseDC
GetDC
GetPropA
InsertMenuItemA
FindWindowA
CreatePopupMenu
SetCapture
TrackPopupMenuEx
CreateWindowExA
SetFocus
MessageBoxA
ExitWindowsEx
EnumWindows
SetWindowTextA
DestroyWindow
GetParent
BeginPaint
GetDlgItem
GetWindowRect
ScreenToClient
EndPaint
GetDlgItemTextA
GetFocus
InvalidateRect
WindowFromDC
wsprintfA
FillRect
DrawTextA
GetMenuItemID
GetMenuItemCount
GetKeyState
DeleteMenu
SendMessageA
PostMessageA
ShowWindow
SetParent
EndDialog

shell32

DragAcceptFiles
DragFinish
DragQueryFileA

gdi32

DeleteObject
DeleteDC
GetPixel
SetBkMode
CreateCompatibleDC
MoveToEx
SelectObject
SetBkColor
CreateBrushIndirect
LineTo
CreatePen
SetTextColor
GetNearestColor
BitBlt
SetStretchBltMode
StretchBlt
CreateRectRgn
CombineRgn
FillRgn
CreateSolidBrush
CreateHatchBrush

comdlg32

GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken

comctl32

ord17

Exports

Exports

winampGetGeneralPurposePlugin

Sections

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7fdd93e10e5c664bd736838a0559283

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

comdlg32

advapi32

comctl32

Exports

Exports

Sections

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 54KB - Virtual size: 61KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 6KB - Virtual size: 5KB

.rmnet Size: 56KB - Virtual size: 60KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 54KB - Virtual size: 61KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 6KB - Virtual size: 5KB

.rmnet
Size: 56KB - Virtual size: 60KB