84431bbd79095a1548c39b1ebb04d57e6a721acad7da504b2f4143f4cab546b5N

Sharing

Copy URL

Twitter E-mail

General

Target

84431bbd79095a1548c39b1ebb04d57e6a721acad7da504b2f4143f4cab546b5N
Size

744KB
MD5

f8756485bd008599f88e386f791d2fd0
SHA1

1e5a096dbfb2d81720fee7d01e2480f89a49981f
SHA256

84431bbd79095a1548c39b1ebb04d57e6a721acad7da504b2f4143f4cab546b5
SHA512

715b35a43cbe9b5b30bcae99313cda06f6fcb124af2bbbe8fd11fabd4cd48927c3afdfb24fd2998840b940e23a979511a3bdc0fdea340d50f63a8528dfd03250
SSDEEP

12288:Wa/VKb4Wfv5RhNy8PVOR0yURBHdFIKpXsZb6PRAcr3fSzg6Ri8u4QEDp9uo:hHW5RhNy8PVOR0bRB9FItb6PR1rJUFuO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84431bbd79095a1548c39b1ebb04d57e6a721acad7da504b2f4143f4cab546b5N

Files

84431bbd79095a1548c39b1ebb04d57e6a721acad7da504b2f4143f4cab546b5N
.exe windows:4 windows x86 arch:x86

db08c0f547b0d991fc6260cdd5f38a74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetStockObject
GetDeviceCaps
DeleteObject
CreateCompatibleDC

advapi32

RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

kernel32

GetCurrentThreadId
GetLastError
GetTickCount
GetCommandLineA
GetVersion
GetCurrentThread
GetCurrentProcessId
GetModuleHandleA
ExitProcess
VirtualAlloc
Sleep
VirtualFree
HeapCreate
SizeofResource
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
ReadFile
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
WideCharToMultiByte
GetCommandLineW
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GlobalFree
lstrlenA
LoadLibraryExW
InterlockedIncrement
CreateFileA
TlsSetValue
CreateFileW
FindNextFileA
FindFirstFileA
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
LCMapStringW
GetFileSize
GetVersionExA
VirtualProtect
TlsAlloc
QueryPerformanceCounter
GetOEMCP
lstrcmpiA
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
WriteConsoleA
SetUnhandledExceptionFilter
GetSystemDirectoryA
MulDiv
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
TlsGetValue
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
InterlockedDecrement
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
GetCPInfo
SetStdHandle
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetStdHandle

user32

GetSysColor
MessageBoxA
SetDlgItemTextA
EndDialog
GetFocus
ReleaseDC
GetDesktopWindow
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
SetWindowTextA
SetWindowLongA
ReleaseCapture
PostMessageA
GetWindowRect
GetSystemMetrics
BeginPaint
SetFocus
SystemParametersInfoA
RegisterClassA
IsIconic
SetForegroundWindow
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
DestroyWindow
ClientToScreen
SendMessageA
GetCursorPos
GetDC
PeekMessageA
EndPaint
SetWindowPos
PostQuitMessage
DestroyMenu
InvalidateRect
DrawTextA
CallWindowProcA
GetSubMenu
SetCursor

msvcrt

_exit
_cexit
_controlfp
exit

Sections

.text
Size: 707KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db08c0f547b0d991fc6260cdd5f38a74

Headers

File Characteristics

Imports

gdi32

advapi32

kernel32

user32

msvcrt

Sections

.text Size: 707KB - Virtual size: 1.0MB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 11KB - Virtual size: 11KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 707KB - Virtual size: 1.0MB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 18KB - Virtual size: 18KB