dceb2d4b47d0a44b0e0e18b102c11e03ac836331c6b1bd90700e924215bb10c8N

Sharing

Copy URL Twitter E-mail

General

Target

dceb2d4b47d0a44b0e0e18b102c11e03ac836331c6b1bd90700e924215bb10c8N
Size

161KB
MD5

f2a2dc5588f84d973a2e2889cb356370
SHA1

97432e0fbf97510ddd75856030d1f969bf481da5
SHA256

dceb2d4b47d0a44b0e0e18b102c11e03ac836331c6b1bd90700e924215bb10c8
SHA512

217b8923de25f1fa26dea83644ce299efe4d52e53c99ab8b29909c7987335f4f6841f2474300e578b825f9639cac3b6a85423a15a28a19136ace260eed473213
SSDEEP

3072:JNgdkB/Gd0dwrzfSzrjshC7/susirUvne5r3/0x7rjUdyO:nB+u6HfSr+C7UWrP8jUdyO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dceb2d4b47d0a44b0e0e18b102c11e03ac836331c6b1bd90700e924215bb10c8N

Files

dceb2d4b47d0a44b0e0e18b102c11e03ac836331c6b1bd90700e924215bb10c8N
.exe windows:4 windows x86 arch:x86

5232ef9d7c7e392845af31e05db05532

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

CreateFileW
DeleteFileW
HeapAlloc
GetStringTypeA
TlsAlloc
GetLastError
GetModuleHandleW
lstrcmpA
GetModuleHandleA
GetStartupInfoW
WriteConsoleInputVDMA
UnhandledExceptionFilter
ReadFile
HeapDestroy
GetCommandLineW
WriteConsoleA
GetLocaleInfoA
GetACP
GetFileSize
LocalFree
GetCurrentThreadId
GetConsoleMode
LeaveCriticalSection
TlsFree
WriteFile
MulDiv
GetThreadLocale
GetProcessHandleCount
GetModuleFileNameA
FreeLibrary
RaiseException
CreateProcessW
WideCharToMultiByte
WaitForSingleObject
CloseHandle
GetCommandLineA
Sleep
GetOEMCP
SetLastError
GetFileAttributesW
FlushInstructionCache
CreateFileA
VirtualFree
GetCurrentProcess
GetModuleFileNameW
InterlockedIncrement
ExitProcess
EnumResourceNamesA
FreeEnvironmentStringsA
SetFilePointer
GetStringTypeW
GetCPInfo
GetSystemTimeAsFileTime
LocalAlloc
SetStdHandle
HeapReAlloc
InterlockedCompareExchange
InterlockedDecrement
GetProcessHeap
TlsGetValue
WritePrivateProfileSectionW
SetUnhandledExceptionFilter
SetHandleCount
HeapSize
GetStdHandle
HeapCreate
InterlockedExchange
TlsSetValue
GetTickCount
GetVersionExA
GetVersion
FreeEnvironmentStringsW
QueryPerformanceCounter
GetEnvironmentStringsW
LoadLibraryW
GetStartupInfoA
SizeofResource
InitializeCriticalSection
LCMapStringA
GetProcAddress
LoadLibraryExW
GetFileType
CreateFileMappingW
DeleteCriticalSection
IsProcessorFeaturePresent
GetConsoleCP
FlushFileBuffers
lstrcmpiW
LCMapStringW
lstrlenA
RtlUnwind
LoadResource
GetDriveTypeW
CreateSemaphoreW
IsDebuggerPresent
LoadLibraryA
WriteConsoleW
FindResourceW
VirtualAlloc
LockResource
GetCurrentProcessId
CopyFileW
GetSystemDirectoryW
GetVersionExW
GetConsoleOutputCP
HeapFree
GetEnvironmentStrings
lstrlenW

msvfw32

ICInfo

shell32

SHGetSpecialFolderLocation
ShellExecuteW
SHGetPathFromIDListW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoInitialize

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

user32

EndPaint
CreateWindowExW
SystemParametersInfoW
LoadCursorW
DispatchMessageW
SetWindowPos
GetWindow
GetClientRect
GetDC
RegisterClassExW
MapWindowPoints
TranslateMessage
GetWindowTextLengthW
GetDlgItemTextW
BeginPaint
GetClassInfoExW
SetCapture
GetWindowRect
PeekMessageW
SetDlgItemTextW
DestroyWindow
GetWindowInfo
GetDlgItem
GetParent
SetWindowTextW
MessageBoxW
EndDialog

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5232ef9d7c7e392845af31e05db05532

Headers

File Characteristics

Imports

version

kernel32

msvfw32

shell32

ole32

gdi32

user32

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 72KB - Virtual size: 71KB

.idive Size: 1024B - Virtual size: 248KB

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 72KB - Virtual size: 71KB

.idive
Size: 1024B - Virtual size: 248KB