5a861b645b9d8031546a302b7e2d039db27a73d5b86f26d4210081b61b221621

Sharing

Copy URL Twitter E-mail

General

Target

5a861b645b9d8031546a302b7e2d039db27a73d5b86f26d4210081b61b221621
Size

41KB
MD5

d1caa4b0a5bffa6d2508e1054f0824de
SHA1

453727cdc48a947fab1a990ca3b877ac7c796da6
SHA256

5a861b645b9d8031546a302b7e2d039db27a73d5b86f26d4210081b61b221621
SHA512

7a2c07db154197c2f1d29c1edcd2cf5f4a03f83be36b98ab69a54cc4abce3b509c7d056a2b4dfd45770c4bd1abcf7569f8b7e8093d4d6cfe5201e5b7790d7feb
SSDEEP

768:mmjE/2zfoNDJphDh+AG7JJJw3vekbrstmQqkvXq4o3:3jE/2zWdl+D7JHw/ekvsA4X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a861b645b9d8031546a302b7e2d039db27a73d5b86f26d4210081b61b221621

Files

5a861b645b9d8031546a302b7e2d039db27a73d5b86f26d4210081b61b221621
.exe windows:4 windows x86 arch:x86

6fbecae7444305c683b7d3688d702a63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamW
AppendMenuW
AppendMenuA
CopyIcon
DialogBoxParamA
DrawIcon
LoadMenuA
CloseWindow
IsMenu
CreateIcon
CopyRect
CalcMenuBar
GetMenu
DrawTextW
DrawIconEx
IsWindow
InsertMenuA
GetDlgItem
GetFocus
LoadCursorA
EndDialog
GetWindowTextLengthA
EndDialog
DialogBoxParamW
DrawTextW
GetWindowTextLengthA
InsertMenuA
LoadMenuA
GetWindowTextA
GetFocus
DrawIcon
GetDlgItem
DrawIconEx
CalcMenuBar
CopyRect
AppendMenuW
IsWindow

advapi32

RegEnumKeyA
RegCreateKeyW
RegEnumKeyExW
RegEnumValueA
RegOpenKeyA
RegEnumKeyW
RegReplaceKeyA
RegDeleteValueW
RegQueryInfoKeyW
RegReplaceKeyW
RegEnumValueW
RegCreateKeyExA
RegGetKeySecurity
RegLoadKeyW
RegDeleteValueA
RegCreateKeyExW
RegFlushKey
RegOpenKeyExW
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExW
RegCreateKeyExA
RegQueryValueA
RegDeleteValueA
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumValueW
RegEnumValueA
RegOpenKeyW
RegReplaceKeyA
RegEnumKeyW
RegLoadKeyA
RegFlushKey
RegQueryInfoKeyA
RegReplaceKeyW
RegOpenKeyExA
RegGetKeySecurity
RegQueryValueW
RegCreateKeyW
RegEnumKeyA
RegCreateKeyExW
RegOpenKeyExW

gdi32

RestoreDC
AddFontResourceA
DeleteDC
DeleteObject
GetDCOrgEx
AddFontResourceExA
GetPixel
AbortPath
GetBitmapBits
AddFontResourceW
CopyMetaFileA
ClearBitmapAttributes
CreateSolidBrush
AddFontResourceExW
GetClipBox
ExtTextOutA
CloseFigure
ClearBrushAttributes
AddFontResourceTracking
GetPixel
CloseMetaFile
AddFontMemResourceEx
GetCurrentPositionEx
AbortPath
ExcludeClipRect
CloseFigure
GetPixel
SetTextColor
AddFontResourceW
AddFontResourceExA
CancelDC
RestoreDC
GetCurrentPositionEx
CopyMetaFileA
DeleteDC
GetPixel
ExtTextOutA
AddFontMemResourceEx
ClearBrushAttributes
GetBrushOrgEx
AddFontResourceTracking
GetClipBox
CloseMetaFile

comctl32

ImageList_EndDrag
ImageList_BeginDrag
ImageList_DrawEx
ImageList_GetImageRect
ImageList_LoadImageA
ImageList_Remove
ImageList_GetImageInfo
ImageList_DragMove
ImageList_GetDragImage
ImageList_Merge
ImageList_Copy
ImageList_AddIcon
ImageList_Draw
ImageList_GetIconSize
ImageList_Read

kernel32

Sleep
GlobalFree
GetCPInfo
ExitThread
OpenFile
CopyFileW
DeleteFileW
CopyFileA
CopyFileExW
CreateDirectoryA
ReadConsoleA
GetComputerNameA
GetFileSize
GetLastError
CopyFileExA
OpenFileMappingA
GetLastError
FindFirstFileA
ReadFile
ExitThread
FindAtomA
CreateDirectoryA
WriteFile
GetComputerNameA
OpenFile
DeleteFileW
DeleteAtom
CreateProcessA
GetStdHandle
CopyFileA
CreateThread
DeleteFileA
ReadConsoleA
GetCommandLineA
CopyFileW
Sleep
OpenFileMappingA
GlobalFree

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fbecae7444305c683b7d3688d702a63

Headers

File Characteristics

Imports

user32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 25KB - Virtual size: 60KB

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 25KB - Virtual size: 60KB

.rsrc
Size: 6KB - Virtual size: 8KB