547c4ac0d7cb0df58302a5832b12de91423383035dedf3a8984f45db629349d7

Sharing

Copy URL

Twitter E-mail

General

Target

547c4ac0d7cb0df58302a5832b12de91423383035dedf3a8984f45db629349d7
Size

6.4MB
MD5

bcae07ba57f5e49d9a70fc026c247ac7
SHA1

de6c03716ae94c393aa2a7114db676a6ab1290cd
SHA256

547c4ac0d7cb0df58302a5832b12de91423383035dedf3a8984f45db629349d7
SHA512

35e10659c4f21575100a1aff5272b323b029969c63c7e0b0e839c6e56d057c6788ecfbdb0886f8d80160b3e5ac3efd430cc6ba9bfc4de1e0f726530705879dbf
SSDEEP

196608:9+R2IfGW+yv8hHA/aoqon81/r3mQNeZUr3oP:9lXNOyH+YTwUr3m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
547c4ac0d7cb0df58302a5832b12de91423383035dedf3a8984f45db629349d7

Files

547c4ac0d7cb0df58302a5832b12de91423383035dedf3a8984f45db629349d7
.dll windows:6 windows x86 arch:x86

6ab14462f5b5f8baaf79b5871c23777d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
GetModuleFileNameW
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
GetStdHandle
GetOEMCP
GetACP
IsValidCodePage
GetProcessHeap
HeapSize
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LoadLibraryExW
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
CreateFileW
GetVersion
FileTimeToLocalFileTime
IsDebuggerPresent
GetSystemInfo
VerifyVersionInfoW
ExitThread
VerSetConditionMask
GetFileSize
EncodePointer
DeviceIoControl
ResumeThread
GetFileAttributesW
SetThreadPriority
ReadProcessMemory
SignalObjectAndWait
CompareFileTime
SetErrorMode
GetModuleFileNameA
FindFirstFileW
GetLocaleInfoW
LCMapStringW
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent

user32

CheckRadioButton
GetDlgItemInt
CreateDialogParamA
CharNextW
KillTimer
GetKeyState
LoadIconA
RemovePropA
SetFocus
GetKeyboardLayout
SetRect
PeekMessageA
GetSysColorBrush
IsDlgButtonChecked
GetMenuItemCount
RemoveMenu
GetKeyboardType
RegisterClassW
SetDlgItemTextW
EnableWindow
GetWindow
SetCursor
GetMessageA
MessageBeep
SetParent
GetClientRect
DrawEdge
WaitMessage
GetDC
GetWindowLongA
ReleaseDC
DefWindowProcA
GetDesktopWindow
EnumChildWindows
CreateCaret

gdi32

DeleteDC
CopyEnhMetaFileA
CreatePenIndirect
SaveDC
GetDIBColorTable
GetTextExtentExPointA
SetTextAlign
IntersectClipRect
GetPixel
GetStockObject
GetTextExtentPoint32W
MaskBlt
SelectObject
SetPaletteEntries
Polyline
RectVisible
CreateDIBitmap
GetBitmapBits

comdlg32

GetSaveFileNameW

advapi32

InitializeSecurityDescriptor
OpenSCManagerW
RegUnLoadKeyW
OpenServiceW
RegConnectRegistryW

ole32

CoInitialize

oleaut32

SafeArrayGetUBound
VariantInit
SafeArrayCreate

Sections

.text
Size: 488KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ab14462f5b5f8baaf79b5871c23777d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

Sections

.text Size: 488KB - Virtual size: 488KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 488KB - Virtual size: 488KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 12KB - Virtual size: 11KB