dfa617de957dc1029bdd6f91da38b350N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

dfa617de957dc1029bdd6f91da38b350N.exe
Size

5.8MB
MD5

dfa617de957dc1029bdd6f91da38b350
SHA1

502781b848ca0afc8691a0ed55a8adcad519bc37
SHA256

beeaa0f0ab7b540e9fb8204f30a1dc7fc06a43de34d0c5b656377bf7c0e18364
SHA512

f42530fdc6ec02aa73bd6da4769e668516a31128371f1ae206a9a6b3b910bd426dbca16f46284acc795c7cf2ac27a541860d5f4eef6a3be03bce7fa562907217
SSDEEP

98304:uADevQbLFR7OwOGdKx0CZARPee8QgKvxWMpLV5U7EnsudT1pspDBdxwlPvWPr5uP:usbLawO8Kx0CZAxJ89MdV3n5T1qpfxgH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa617de957dc1029bdd6f91da38b350N.exe

Files

dfa617de957dc1029bdd6f91da38b350N.exe
.exe windows:6 windows x86 arch:x86

b7e19fbbe6fb8d605ba189c4ab6a3555

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
IsDebuggerPresent
GetModuleHandleW
TlsFree
TlsGetValue
TerminateProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
WriteFile
GetModuleFileNameW
GetStartupInfoW
DeleteCriticalSection
GetFileType
GetStdHandle
GetCurrentThreadId
SetLastError
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
MultiByteToWideChar
LoadLibraryExW
GetACP
GetOEMCP
GetCPInfo
LCMapStringW
OutputDebugStringW
FlushFileBuffers
GetConsoleCP
UnmapViewOfFile
GetConsoleMode
SetFilePointerEx
WriteConsoleW
CloseHandle
GetCurrentProcessId
TlsAlloc
GetCurrentDirectoryA
FreeEnvironmentStringsW
SetStdHandle
IsValidCodePage
FindFirstFileA
WideCharToMultiByte
TlsSetValue
GetCommandLineA
FormatMessageA
ConnectNamedPipe
GetModuleHandleExW
WaitNamedPipeA
GetCommState
GetLocaleInfoA
GetDateFormatW
LocalFree
GetThreadTimes
GetStringTypeW
SetCurrentDirectoryA
GetSystemTimeAdjustment
GetEnvironmentStringsW
GetCurrentProcess
QueryPerformanceCounter
EncodePointer
DecodePointer
GetLastError
HeapReAlloc
GetCommandLineW
RaiseException
RtlUnwind
IsProcessorFeaturePresent
ExitProcess
GetProcAddress
CreateFileW

user32

ToAsciiEx
GetMessageA
DestroyAcceleratorTable
SetTimer
IsIconic
SetCapture
SendMessageA
DrawEdge
SetScrollRange
InsertMenuItemW
GetDC
GetQueueStatus
LoadAcceleratorsW
GetKeyboardState
IsDialogMessageW
SetPropA
SetRect
AppendMenuW
PeekMessageW
EnableMenuItem
SetClassLongA
RedrawWindow
DestroyCaret
CheckDlgButton
AppendMenuA
RemoveMenu
FlashWindow
CheckRadioButton
SetCaretPos
ValidateRgn
SetMenuItemInfoA
GetCaretBlinkTime
RegisterClassA
MoveWindow
EndPaint
ClientToScreen
PostQuitMessage
CreateIconIndirect
WaitMessage
GetCapture
OffsetRect
GetScrollInfo
UnregisterClassA
CreateWindowExA
DestroyCursor
BeginDeferWindowPos
InsertMenuA
UpdateWindow
EndDeferWindowPos
CheckMenuItem
TranslateMDISysAccel

gdi32

CreatePolygonRgn
SetMetaFileBitsEx
SetViewportOrgEx
SetTextColor
CreateFontA
SetBkColor
CreateHalftonePalette
UnrealizeObject
CreatePenIndirect
CreateRectRgnIndirect
RectInRegion
GetCharWidthA
ExtTextOutW
OffsetRgn
SaveDC
GetBkColor
GetCurrentPositionEx
SelectPalette
GetDIBColorTable
SetStretchBltMode
EnumFontFamiliesA
GetNearestPaletteIndex
Polyline
GetClipBox
RoundRect
ExtSelectClipRgn
CreateDIBitmap
GetTextExtentPoint32A
SetWindowExtEx
GetCharWidthW
GetCharacterPlacementW
GetBkMode
DeleteDC
SetPixel
DeleteObject
GetPaletteEntries
CreateBitmapIndirect
GetSystemPaletteEntries
CreateICW
TextOutA
GetTextMetricsA

advapi32

RegQueryValueExA
CopySid
RegEnumKeyA
GetUserNameA

Sections

.text
Size: 359KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7e19fbbe6fb8d605ba189c4ab6a3555

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 359KB - Virtual size: 359KB

.data Size: 5.4MB - Virtual size: 5.4MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 7KB - Virtual size: 6KB

.text
Size: 359KB - Virtual size: 359KB

.data
Size: 5.4MB - Virtual size: 5.4MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 7KB - Virtual size: 6KB