seterra (1)[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

seterra (1).exe
Size

851KB
MD5

07e70c435bd5f839fee89079afc72340
SHA1

95587f84742f7dc8accfbf4017fd047cf9add7a3
SHA256

9c8c9ebfe3a89cc9328220aec05723876ea00d1413691997b52a555dc3a6d64b
SHA512

bed74720d28087d6de7dcc2c9305799a11b4a633949d130b88c5da96eb0dfca47c782e6dc063fb3e24c8f0564d82f7c9f1ad13886fde12b70cdf42a88b3bf8d1
SSDEEP

24576:kk30oW2QoxJUirqFxRtY4H9mMp4KJIvIK:k80n2Ql9v8M6v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
seterra (1).exe

Files

seterra (1).exe
.exe windows:4 windows x86 arch:x86

47c089c66b5605ae8379746751d16b97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
_lclose
_lopen
_lcreat
lstrcpyA
GetProcAddress
LoadLibraryA
lstrlenA
GetWindowsDirectoryA
GlobalHandle
_lwrite
GetVersionExA
WinExec
_llseek
_lread
GlobalUnlock
GlobalFree
GlobalAlloc
SetErrorMode
GetModuleFileNameA
GlobalLock
GetLastError
GetCurrentProcess
GetStdHandle
GetFileType
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
WriteFile
DeleteFileA
GetEnvironmentStrings
FreeEnvironmentStringsW
UnhandledExceptionFilter
RtlUnwind
FreeEnvironmentStringsA
VirtualFree
HeapCreate
VirtualAlloc
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
GetEnvironmentStringsW
GetVersion
GetFileAttributesA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapDestroy

user32

ExitWindowsEx
MessageBoxA
LoadIconA
RegisterClassA
LoadCursorA
ShowWindow
UpdateWindow
SetWindowPos
wsprintfA
ReleaseDC
GetDC
PostQuitMessage
BeginPaint
EndPaint
DefWindowProcA
SendMessageA
InvalidateRect
GetClientRect
CreateWindowExA

gdi32

DeleteObject
GetStockObject
GetDeviceCaps
RealizePalette
SelectPalette
SelectObject
PatBlt
CreateSolidBrush
CreatePalette

Exports

Exports

_MainWndProc@16
_StubFileWrite@12

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 937B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47c089c66b5605ae8379746751d16b97

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 1024B - Virtual size: 937B

.data Size: 5KB - Virtual size: 5KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 924B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 1024B - Virtual size: 937B

.data
Size: 5KB - Virtual size: 5KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 924B

.reloc
Size: 2KB - Virtual size: 1KB