202410013293e5f8860831edb9c5f6c64b4da15efloxificedidnymaim

Sharing

Copy URL Twitter E-mail

General

Target

202410013293e5f8860831edb9c5f6c64b4da15efloxificedidnymaim
Size

776KB
MD5

3293e5f8860831edb9c5f6c64b4da15e
SHA1

08ce5795904379b30c7c4344f4a7e1bfe674404a
SHA256

3641748355f7d0f3f3f855e11d624461a03a6a449b2f12e0b66ecebe3102806e
SHA512

41ecdc1e609498108c933d4f85a15d3706d3eb980cdcfb51d42bdb3824be14633550798a9f2c43a51c48e45a4af34e0a4dae786765a28378a9b361ec64f04706
SSDEEP

12288:Ixfele/VflkVzsyVEBrcfHZjefXcSLxxYn+PKaV8hOdiE0kKF/zRz71sBjvrEH7b:miPZjevc2xMjaShqiFRArEH7b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
202410013293e5f8860831edb9c5f6c64b4da15efloxificedidnymaim

Files

202410013293e5f8860831edb9c5f6c64b4da15efloxificedidnymaim
.exe windows:4 windows x86 arch:x86

6883adb282a1c4c04886476020c649a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutGetNumDevs

version

VerLanguageNameA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
HeapFree
HeapAlloc
ExitProcess
GlobalFlags
GetCommandLineA
GetTimeZoneInformation
GetSystemTime
GetACP
HeapReAlloc
HeapSize
GetStartupInfoA
GetLocalTime
HeapCreate
VirtualFree
VirtualAlloc
LocalReAlloc
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetPrivateProfileSectionNamesA
GetPrivateProfileSectionA
EnterCriticalSection
SetErrorMode
GlobalHandle
GlobalUnlock
GlobalFree
GetCurrentThread
GetCurrentProcess
GetWindowsDirectoryA
GetSystemDirectoryA
lstrcmpA
GetDriveTypeA
MulDiv
InterlockedIncrement
FindNextFileA
FindFirstFileA
FindClose
RemoveDirectoryA
SetCurrentDirectoryA
CreateDirectoryA
GetFileAttributesA
SetFileAttributesA
WriteFile
ReadFile
CreateFileA
GetFileSize
SetFilePointer
SetEndOfFile
DeleteFileA
GetTempPathA
GetTempFileNameA
lstrcpyA
lstrlenA
lstrcpynA
ExpandEnvironmentStringsA
GetProcessVersion
GetModuleFileNameA
OpenProcess
CloseHandle
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentProcessId
FreeLibrary
GetVersionExA
GetLastError
SetLastError
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetVersion
GlobalAddAtomA
GetCurrentThreadId
GlobalGetAtomNameA
LockResource
GlobalFindAtomA
GlobalDeleteAtom
SystemTimeToFileTime
FindResourceA
LoadResource
FileTimeToSystemTime
GetFileTime
WideCharToMultiByte
InterlockedDecrement
MoveFileA
GetFullPathNameA
FlushFileBuffers
UnlockFile
LockFile
LocalFileTimeToFileTime
DuplicateHandle
DosDateTimeToFileTime
IsBadStringPtrA
SetFileTime
GetTickCount
lstrcmpiA
FileTimeToLocalFileTime
FileTimeToDosDateTime
LocalUnlock
LocalAlloc
LocalLock
lstrcatA
GlobalReAlloc
IsDBCSLeadByte
TlsFree
TlsGetValue
IsBadReadPtr
TlsSetValue
TlsAlloc
GetPrivateProfileIntA
MultiByteToWideChar
GlobalMemoryStatus
GetSystemDefaultLangID
GetComputerNameA
GetVolumeInformationA
GetPrivateProfileStringA
MoveFileExA
WritePrivateProfileStringA
GetDiskFreeSpaceA
TerminateProcess
Sleep
GetShortPathNameA
GetCurrentDirectoryA
GetLogicalDriveStringsA
LocalFree
CopyFileA
FormatMessageA
GlobalAlloc
CreateProcessA
GlobalLock
SetUnhandledExceptionFilter
HeapDestroy
IsBadWritePtr

user32

CheckMenuItem
EnableMenuItem
MapWindowPoints
GetSysColor
GetFocus
SetMenuItemBitmaps
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetKeyState
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SystemParametersInfoA
GetWindowPlacement
SetActiveWindow
CreateDialogIndirectParamA
GetParent
SetFocus
IsWindowEnabled
ShowWindow
SetWindowPos
MoveWindow
GetMenuState
IsDialogMessageA
LoadBitmapA
ModifyMenuA
ReleaseCapture
GetDlgItem
DrawFocusRect
FillRect
PtInRect
GetCursorPos
ValidateRect
GetMessageA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
UnhookWindowsHookEx
GetWindowTextLengthA
LoadStringA
WaitForInputIdle
SetDlgItemTextA
SetWindowTextA
SetForegroundWindow
EndDialog
DialogBoxParamA
GetActiveWindow
GetClassNameA
CharUpperA
OemToCharA
CharNextA
CharPrevA
CharUpperBuffA
SetCursor
IsIconic
DrawIcon
DestroyIcon
ExitWindowsEx
LoadCursorA
UpdateWindow
RedrawWindow
GetDesktopWindow
GetWindowTextA
EnumWindows
GetWindowThreadProcessId
PostMessageA
MessageBoxA
MsgWaitForMultipleObjects
GetSystemMetrics
EnableWindow
InvalidateRect
GetClientRect
GetDC
ReleaseDC
GetWindowRect
LoadIconA
TranslateMessage
DispatchMessageA
PeekMessageA
PostQuitMessage
IsWindow
BeginPaint
GetMenuCheckMarkDimensions
ClientToScreen
DrawTextA
EndPaint
TabbedTextOutA
GrayStringA
DestroyMenu
GetDlgCtrlID
GetWindowLongA
DefWindowProcA
SetWindowLongA
GetClassInfoA
RegisterClassA
CreateWindowExA
SendMessageA
DestroyWindow
wsprintfA
RegisterWindowMessageA
GetSysColorBrush
ShowOwnedPopups
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
SendDlgItemMessageA
GetNextDlgTabItem
UnregisterClassA

gdi32

DeleteObject
CreateFontIndirectA
GetObjectA
CreateSolidBrush
StretchDIBits
RealizePalette
CreatePalette
DeleteDC
CreateICA
GetTextMetricsA
SetBkMode
SetBkColor
GetStockObject
GetClipBox
GetBkColor
CreateBitmap
SetTextColor
RestoreDC
SelectObject
SaveDC
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
Rectangle
ScaleWindowExtEx
SelectPalette
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
CreateCompatibleDC
BitBlt
GetDeviceCaps
RemoveFontResourceA
AddFontResourceA

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

OpenServiceA
LookupPrivilegeValueA
AdjustTokenPrivileges
EnumServicesStatusA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegEnumValueA
RegConnectRegistryA
RegCloseKey
LookupAccountSidA
CreateServiceA
CloseServiceHandle
DeleteService
StartServiceA
ControlService
QueryServiceStatus
GetServiceDisplayNameA
OpenSCManagerA
UnlockServiceDatabase
FreeSid
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
GetUserNameA

shell32

SHChangeNotify
DragFinish
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation
DragQueryFileA

comctl32

ord17

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

LoadTypeLi
RegisterTypeLi

wsock32

WSAStartup
WSACleanup
getsockname
select
socket
gethostbyname
recv
bind
send
setsockopt
recvfrom
sendto
accept
inet_addr
listen
closesocket
shutdown
htonl
ntohs
inet_ntoa
ioctlsocket
connect
WSAGetLastError
htons

netapi32

Netbios

Sections

.text
Size: 520KB - Virtual size: 518KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6883adb282a1c4c04886476020c649a0

Headers

File Characteristics

Imports

winmm

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

wsock32

netapi32

Sections

.text Size: 520KB - Virtual size: 518KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 48KB - Virtual size: 62KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 520KB - Virtual size: 518KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 48KB - Virtual size: 62KB

.rsrc
Size: 28KB - Virtual size: 25KB