Setup_02024[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Setup_02024.exe
Size

142.4MB
MD5

f280df683e7f8a77fc1bfab6fa690a8e
SHA1

3327c913abf51738ebaaaabad645f3fd0d18a395
SHA256

c9d5e48466295f593d1cb6ac20005847b5475807276550c69c17b10420fed684
SHA512

445f28c404661882b80847638c8ff6b889b322a48a0b258580da531df0acf9b8d0637520e98083ede2aef69056f47bd2671b0981b14165db543be1244d2c519a
SSDEEP

196608:S/y4mp6lBo5/aGu03iYVUwJeekHCB8G4ulgpujV5C8rphiEzD:YYPu03dSwJiCB8LuyeS8loEP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Setup_02024.exe

Files

Setup_02024.exe
.exe windows:6 windows x86 arch:x86

ace20a751910b10ef6c3150601349824

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW

kernel32

EnumSystemLocalesW
LCMapStringEx
InitializeCriticalSectionEx
SetFilePointer
CreateThread
FindFirstFileA
GetFileAttributesW
RaiseException
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
GetCurrentDirectoryA
CreateDirectoryA
GetSystemTimeAsFileTime
HeapAlloc
GetSystemWow64DirectoryW
Sleep
GetConsoleMode
ExitProcess
DecodePointer
CreateDirectoryW
GetLastError
GetCommandLineA
InitializeSListHead
GetTickCount64
SetFileTime
TlsGetValue
GetFileInformationByHandle
SetLastError
SetEvent
GetCurrentDirectoryW
SetFileAttributesA
FindClose
HeapFree
LocalFree
GetCurrentProcess
CreateEventA
DeleteFileA
DeleteFileW
GetProcessHeap
GetEnvironmentStringsW
TlsFree
GetCommandLineW
RtlUnwind
LoadLibraryW
GetNativeSystemInfo
GetOEMCP
FreeEnvironmentStringsW
DeleteCriticalSection
VirtualProtect
GetSystemInfo
SetFileAttributesW
UnhandledExceptionFilter
GetCurrentProcessId
GetStringTypeW
AreFileApisANSI
FindFirstFileExW
VirtualFree
FindNextFileA
GetUserDefaultLCID
HeapSize
RemoveDirectoryA
FlushFileBuffers
FreeLibrary
GetTempPathA
GetProcessAffinityMask
GetACP
RemoveDirectoryW
FormatMessageA
GlobalMemoryStatus
FreeLibraryAndExitThread
SetStdHandle
MultiByteToWideChar
WriteConsoleW
GetFileSize
GetFileAttributesA
IsValidLocale
CreateFileA
VirtualAlloc
QueryPerformanceCounter
WideCharToMultiByte
GetConsoleOutputCP
EnterCriticalSection
GetVersionExA
SetUnhandledExceptionFilter
TlsAlloc
GetLocaleInfoW
SetEndOfFile
CloseHandle
LoadLibraryExW
ExitThread
GetProcAddress
lstrlenW
CreateSemaphoreA
WriteFile
GetStdHandle
FindFirstFileW
GetTempPathW
GetStartupInfoW
FormatMessageW
GetSystemDirectoryW
GetModuleHandleExW
GetTickCount
WaitForSingleObject
IsBadReadPtr
IsDebuggerPresent
GetModuleFileNameW
CreateFileW
InitializeCriticalSection
GetFileType
HeapReAlloc
IsProcessorFeaturePresent
LeaveCriticalSection
ReadFile
LoadLibraryA
GetModuleFileNameA
FindNextFileW
ReleaseSemaphore
EncodePointer
SetFilePointerEx
TlsSetValue
LCMapStringW
TerminateProcess
GetModuleHandleA
IsValidCodePage
ResetEvent
GetCurrentThreadId
lstrcatW

user32

LoadStringA
DialogBoxParamW
SendMessageA
PostMessageA
SetWindowTextW
DestroyWindow
CharUpperA
EndDialog
GetDlgItem
GetWindowLongA
LoadIconA
MessageBoxW
DialogBoxParamA
ShowWindow
CharUpperW
LoadStringW
SetWindowTextA
SetWindowLongA
KillTimer
SetTimer

shell32

SHGetSpecialFolderPathW

oleaut32

SysAllocStringLen
SysStringLen
VariantClear

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Sections

.text
Size: 937KB - Virtual size: 937KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6.2MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ace20a751910b10ef6c3150601349824

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

shell32

oleaut32

advapi32

ole32

Sections

.text Size: 937KB - Virtual size: 937KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 6.2MB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 937KB - Virtual size: 937KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 6.2MB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 19KB - Virtual size: 18KB