d4d407ed542a6da55506720db71394c0N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

d4d407ed542a6da55506720db71394c0N.exe
Size

274KB
MD5

d4d407ed542a6da55506720db71394c0
SHA1

bc52bc62d9d9b7ef5ea9cdcbe41ece332e72c8cc
SHA256

b5ec96e40e51a4cada32c4ece63cfecb22519ee486b0e10f25cdf415b417627b
SHA512

b4e09d770eefdedabce515f06dd78921f6da39bc2e0a3b9429721e2a59ca76809e570136c3fb55cd5f5848aea931287ff1501001b16de7e272c45fb06200c660
SSDEEP

3072:YyYAg0FuA1bJksNuG45gIR8vwGBRxIeJ3zNBZXMnQ3G9ovkYBRFk2BM49o:CAOA1GguUxBkUNfcnQ4URFDM49o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4d407ed542a6da55506720db71394c0N.exe

Files

d4d407ed542a6da55506720db71394c0N.exe
.exe windows:5 windows x86 arch:x86

21d6434089e2fa3b1bdb8b6f5265866f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

gdi32

CreateCompatibleDC
RealizePalette
SelectPalette
CreateDIBitmap
TranslateCharsetInfo
GetTextExtentPointA
SetBkMode
SetTextColor
GetObjectA
CreateFontIndirectA
CreateSolidBrush
SelectObject
BitBlt
DeleteDC
DeleteObject
GetStockObject
GetSystemPaletteEntries
CreatePalette
GetDeviceCaps

kernel32

FreeEnvironmentStringsW
VirtualAlloc
IsValidLanguageGroup
SetHandleInformation
FormatMessageA
DeleteCriticalSection
lstrcatW
MapViewOfFile
CloseHandle
CreateFileA
ExitProcess
GetFileType
GetSystemTime
GetFileSize
GetStdHandle
RaiseException
ReadFile
RtlUnwind
SetEndOfFile
SetFilePointer
WriteFile
GetCommandLineA
GetLastError
GetModuleHandleA
MultiByteToWideChar
TlsGetValue
TlsSetValue
WideCharToMultiByte
LocalAlloc
LocalFree
VirtualFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
IsBadCodePtr
LCMapStringA
LCMapStringW
GetStringTypeW
GetStringTypeA
IsBadReadPtr
FindClose
VirtualQuery
VirtualProtect
FindFirstFileA
SearchPathA
lstrcpynA
SetEvent
ResetEvent
QueryPerformanceCounter
SystemTimeToFileTime
HeapFree
HeapAlloc
SetStdHandle
TerminateProcess
GetStartupInfoA
GetVersion
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsAlloc
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
SetUnhandledExceptionFilter
GetCPInfo
GetACP
GetEnvironmentStringsW
GetOEMCP
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
SizeofResource
LoadResource
MoveFileA
GetPrivateProfileSectionA
WritePrivateProfileStringA
GetTempFileNameA
GetWindowsDirectoryA
SetErrorMode
GetTempPathA
GetPrivateProfileIntA
ExpandEnvironmentStringsA
lstrcmpiA
GetTickCount
GetExitCodeThread
CreateThread
CopyFileA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenA
GetPrivateProfileStringA
lstrcpyA
GetLocaleInfoA
GetCurrentThread
GetCurrentProcess
GetExitCodeProcess
RemoveDirectoryA
GetFileAttributesA
CreateDirectoryA
GetDriveTypeA
OpenFile
_lclose
GetDiskFreeSpaceA
FlushFileBuffers
IsValidCodePage
GetSystemInfo
WaitForSingleObject
lstrlenW
DeleteFileA
SetCurrentDirectoryA
SetLastError
GlobalHandle
GetSystemDefaultLCID
lstrcmpA
GetModuleFileNameA
CreateProcessA
FindResourceA
FreeLibrary
SetFileAttributesA
LockResource
CreateFileMappingA
UnmapViewOfFile
LoadLibraryA
GetProcAddress
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
CompareStringA
Sleep
GetVersionExA
CompareStringW
CreateEventA
lstrcatA
QueryPerformanceFrequency
InterlockedIncrement
InterlockedDecrement
GetSystemTimeAsFileTime
GetModuleHandleW
TlsFree
IsDebuggerPresent
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

Sections

.data
Size: 5KB - Virtual size: 144.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 114KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21d6434089e2fa3b1bdb8b6f5265866f

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.data Size: 5KB - Virtual size: 144.3MB

.code Size: 153KB - Virtual size: 153KB

.rsrc Size: 114KB - Virtual size: 116KB

.data
Size: 5KB - Virtual size: 144.3MB

.code
Size: 153KB - Virtual size: 153KB

.rsrc
Size: 114KB - Virtual size: 116KB