64c2353888c22f42678020f1d1a98d828c1a96edaa9a13e64c2d40d1a9db6017

Sharing

Copy URL Twitter E-mail

General

Target

64c2353888c22f42678020f1d1a98d828c1a96edaa9a13e64c2d40d1a9db6017
Size

6.4MB
MD5

f31eb6d48b52d0fe29849ba223264945
SHA1

927b9061b130e7421d67f7a9e45326025a544f18
SHA256

64c2353888c22f42678020f1d1a98d828c1a96edaa9a13e64c2d40d1a9db6017
SHA512

873ef5a07181de47db0ce0173d563c3eeecfdfd241d0956bfd0726c7d9d8c0bdaca225d19d176d22bcf0c9c937dd77bf07a447364d8fc536320ba718a48576c1
SSDEEP

196608:nDi/cXcLaA2J5Mw8+pi0pgL/1LubrIXto6hk9:G/cXcLaAIMw8+p/CL7C9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64c2353888c22f42678020f1d1a98d828c1a96edaa9a13e64c2d40d1a9db6017

Files

64c2353888c22f42678020f1d1a98d828c1a96edaa9a13e64c2d40d1a9db6017
.dll windows:6 windows x86 arch:x86

b7ac25e199d13e4dc54663120d4ca399

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetStdHandle
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapSize
GetModuleHandleExW
ExitProcess
GetCurrentProcessId
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
GetStartupInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteFile
GetModuleFileNameW
CloseHandle
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ReadFile
SetFilePointerEx
LoadLibraryExW
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
CreateFileW
GetVersion
GetUserDefaultUILanguage
EnumResourceTypesW
QueryDosDeviceW
ExitThread
FileTimeToSystemTime
ReadProcessMemory
EnumResourceNamesW
LoadLibraryW
GetPrivateProfileStringW
FindResourceW
GetFullPathNameW
VirtualAlloc
VerifyVersionInfoW
HeapDestroy
GetFileSize
SuspendThread
LockResource
GetSystemDefaultUILanguage
EnumSystemLocalesW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess

user32

HideCaret
MapDialogRect
CharNextW
PostMessageW
LoadIconA
CharLowerBuffW
DrawEdge
ShowCursor
OffsetRect
SetPropA
ScrollWindow
DestroyCaret
IsWindow
RemoveMenu
FlashWindow
GetKeyboardType
InsertMenuA
SetWindowTextA
GetDlgItemTextW
GetWindowTextA
DialogBoxParamA
SetMenuItemInfoW
SetTimer
GetKeyState
GetParent
GetKeyboardState
GetWindowPlacement
GetKeyboardLayout
SetRect
InvalidateRect
ReleaseDC
GetMenuItemCount
ScrollWindowEx
RegisterClassW
RegisterClassA
GetDC
GetQueueStatus
GetWindowLongW
GetDesktopWindow
CheckDlgButton
InsertMenuW
SystemParametersInfoA
EnableWindow
ValidateRect
TranslateMDISysAccel
LoadCursorA

gdi32

EndPage
PatBlt
MaskBlt
GetCharacterPlacementW
CreateFontA
SetDIBColorTable
CreateHalftonePalette
SetPixel
GetPaletteEntries
CreateRectRgnIndirect
GetDIBColorTable
GetTextExtentExPointA
CreateRectRgn
GetTextExtentPointA
GetCharABCWidthsFloatA
GetClipBox
IntersectClipRect
CreateDIBitmap
ExtTextOutA
RestoreDC
CreateSolidBrush
SetTextColor
DeleteDC
CreateFontIndirectA
CreateCompatibleDC
RealizePalette
GetCharWidth32A
RectVisible
ExtCreatePen
GetDIBits
CreateCompatibleBitmap
Rectangle
UpdateColors
SetBkColor

comdlg32

GetSaveFileNameW

advapi32

RegEnumKeyExW
ControlService
EqualSid

shell32

ExtractIconExW

oleaut32

SafeArrayPtrOfIndex

Sections

.text
Size: 514KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7ac25e199d13e4dc54663120d4ca399

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 514KB - Virtual size: 514KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 5KB - Virtual size: 4KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 514KB - Virtual size: 514KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 5KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 11KB