4150a23557f34b6de9e0a1b1f05cd120N

Sharing

Copy URL Twitter E-mail

General

Target

4150a23557f34b6de9e0a1b1f05cd120N
Size

2.4MB
MD5

4150a23557f34b6de9e0a1b1f05cd120
SHA1

fc70405d7b08c135ab730a5216ff108aa8a10be4
SHA256

ed7c66bdb162121ab8f8e2bbd6fc8c97733e4176f612d6a2d5722b8fd4013e42
SHA512

e94a4887856255173c0424c536002605a98e4b9037eb1136392b9b81229426a0e446df5a33cb52645e6904f055061bc7222bdf5ef5b47ae59723936f0985c454
SSDEEP

3072:DqvrjMi1VM9P5VotkiLIONag///YtVu/rFv0PKQ2S2Bpr45oa90/tbq:DSrjrgNKkXLHq6PKQVst/Nq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4150a23557f34b6de9e0a1b1f05cd120N

Files

4150a23557f34b6de9e0a1b1f05cd120N
.exe windows:4 windows x86 arch:x86

3ec4d68d7f49737af78cdf3686a23772

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

sndPlaySoundA

kernel32

FileTimeToLocalFileTime
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
TerminateProcess
GetOEMCP
FileTimeToSystemTime
HeapSize
GetACP
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
RaiseException
HeapReAlloc
GetCPInfo
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetVersionExA
GetModuleFileNameA
lstrlenA
GetWindowsDirectoryA
GetSystemDirectoryA
GlobalAlloc
WritePrivateProfileStringA
GetProcessVersion
GlobalFlags
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalFree
SetLastError
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GlobalFindAtomA
GetModuleHandleA
FreeLibrary
GetFileType
GlobalLock
GlobalUnlock
GlobalDeleteAtom
GetCurrentThread
lstrcmpA
GlobalHandle
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GlobalAddAtomA
GetVersion
lstrcmpiA
GetVolumeInformationA
GetFullPathNameA
lstrcpynA
MultiByteToWideChar
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
UnlockFile
SetEndOfFile
FlushFileBuffers
LockFile
CloseHandle
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
lstrcpyA
GetLastError
MulDiv
HeapDestroy
GetSystemDefaultLangID
HeapCreate
SetHandleCount
GetStdHandle
GlobalFree

user32

CallWindowProcA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
RegisterClassA
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
ScreenToClient
AdjustWindowRectEx
GetSysColor
MapWindowPoints
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadStringA
CreateDialogIndirectParamA
EndDialog
GetClassNameA
GetSysColorBrush
SetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetPropA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetForegroundWindow
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
CallNextHookEx
ValidateRect
GetCursorPos
SetWindowsHookExA
ShowOwnedPopups
PostQuitMessage
BringWindowToTop
IsWindowVisible
IsIconic
GetFocus
CopyRect
GetDlgItem
GetKeyState
SetWindowPos
GetSubMenu
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetActiveWindow
ShowWindow
IsWindow
GetDesktopWindow
GetWindow
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
CharUpperA
EnableWindow
GetClientRect
PeekMessageA
TranslateMessage
DispatchMessageA
InvalidateRect
PtInRect
GetDC
ReleaseDC
SendMessageA
PostMessageA
wsprintfA
MessageBoxA
RemovePropA
GetMessageTime
GetMessagePos
GetMenuState
LoadIconA
SetWindowLongA
GetSystemMetrics
LoadCursorA
SetCursor
UpdateWindow
GetMenuItemCount
GetDlgCtrlID
EqualRect
UnregisterClassA

gdi32

DeleteObject
StretchDIBits
Rectangle
SelectPalette
CreateHatchBrush
CreatePen
CreateSolidBrush
SelectObject
DeleteDC
PatBlt
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateFontA
SetBkColor
GetTextExtentPoint32A
GetMapMode
CreateBitmap
SetMapMode
GetObjectA
SetDIBits
DPtoLP
AddFontResourceA
RemoveFontResourceA
CreatePalette
GetClipBox
SetTextColor
SaveDC
RestoreDC
SetBkMode
GetStockObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetDeviceCaps
RealizePalette

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA

shell32

ShellExecuteA
DragFinish
DragQueryFileA

comctl32

ord17

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3ec4d68d7f49737af78cdf3686a23772

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 19KB

Size: 2.2MB - Virtual size: 2.2MB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 19KB