bb759c8eae8872e80a81c12077bdaed3d90d139c4fb28a51d035b8752b1b6d7dN

Sharing

Copy URL Twitter E-mail

General

Target

bb759c8eae8872e80a81c12077bdaed3d90d139c4fb28a51d035b8752b1b6d7dN
Size

593KB
MD5

1c2c524ecd9462d8ac1745a9b8d6d3c0
SHA1

08ffa9552bcede0301e8bc899ee99cb8e20ea3ad
SHA256

bb759c8eae8872e80a81c12077bdaed3d90d139c4fb28a51d035b8752b1b6d7d
SHA512

d6bb8e633229575bf3d782b5fd69df63efc9dace0a3861707351c843bac76919ff872841127121660fe086ac6ef802a87b99f17ef60f8c189cb24402c7f45ac1
SSDEEP

12288:/l2QaP5cDzWvRFeOmPGQqah2IHEM4f+MM8CJBMVLe/wKvF:92QKcDzCRFBYVRjHEQMt/SvF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb759c8eae8872e80a81c12077bdaed3d90d139c4fb28a51d035b8752b1b6d7dN

Files

bb759c8eae8872e80a81c12077bdaed3d90d139c4fb28a51d035b8752b1b6d7dN
.exe windows:4 windows x86 arch:x86

205db725f6178507f0cfea9c5bc50c2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

sensapi

IsNetworkAlive

wininet

InternetSetCookieA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

comctl32

ord17

kernel32

LoadLibraryExA
GetModuleHandleA
lstrlenW
MultiByteToWideChar
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
CreateProcessA
CopyFileA
DeleteFileA
GetSystemDirectoryA
LoadLibraryA
RemoveDirectoryA
Sleep
GetCurrentThreadId
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
GlobalAlloc
GetTickCount
SetLastError
LockResource
MulDiv
GlobalUnlock
GlobalLock
lstrcmpA
GetDiskFreeSpaceA
FindClose
FindNextFileA
FindFirstFileA
CreateFileA
GlobalFree
GlobalHandle
MoveFileExA
GetWindowsDirectoryA
FreeResource
lstrcpyA
CreateDirectoryA
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
FileTimeToSystemTime
GetFileTime
WriteFile
UnmapViewOfFile
MoveFileA
GetSystemTime
TlsSetValue
TlsGetValue
SetFilePointer
RaiseException
GetCurrentProcessId
OutputDebugStringA
lstrcatA
GetProcAddress
TlsAlloc
DeleteCriticalSection
VirtualQuery
IsBadWritePtr
GetCurrentThread
WaitForMultipleObjects
ResumeThread
TerminateThread
ReleaseSemaphore
ResetEvent
PulseEvent
ReleaseMutex
CreateSemaphoreA
CreateMutexA
ReadFile
SetEndOfFile
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
QueryPerformanceCounter
GetTimeZoneInformation
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
GetStringTypeW
GetStringTypeA
TlsFree
HeapSize
TerminateProcess
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetLocalTime
GetDateFormatA
GetTimeFormatA
GetVersionExA
GetStartupInfoA
GetSystemTimeAsFileTime
HeapReAlloc
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
LocalFree
GetThreadLocale
FreeLibrary
GetLastError
InterlockedIncrement
CreateEventA
CreateThread
SetEvent
WaitForSingleObject
CloseHandle
InterlockedDecrement
FormatMessageA
lstrlenA
GetFileSize
LocalAlloc
GetLocaleInfoA
GetACP
InterlockedExchange
SetUnhandledExceptionFilter
InitializeCriticalSection
CompareStringA
CompareStringW
SetEnvironmentVariableA

user32

LoadStringA
EnumWindows
KillTimer
MsgWaitForMultipleObjects
EndDialog
CheckRadioButton
UnregisterClassA
wsprintfA
PostThreadMessageA
CharNextA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowLongA
GetWindowLongA
SendMessageA
GetWindowRect
ShowWindow
RedrawWindow
DefWindowProcA
DestroyWindow
SetDlgItemTextA
LoadBitmapA
MoveWindow
GetSystemMetrics
SetCursor
GetForegroundWindow
MessageBoxA
MapDialogRect
SetWindowContextHelpId
PostMessageA
DialogBoxIndirectParamA
RegisterWindowMessageA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
GetActiveWindow
RegisterClassExA
GetClassInfoExA
LoadCursorA
CreateWindowExA
CreateAcceleratorTableA
GetParent
GetClassNameA
SetWindowPos
GetDlgItem
DestroyAcceleratorTable
GetFocus
IsChild
GetWindow
SetFocus
BeginPaint
EndPaint
CallWindowProcA
GetDesktopWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
GetClientRect
FillRect
SetCapture
ReleaseCapture
GetSysColor
CreateDialogParamA
DialogBoxParamA
SendDlgItemMessageA
IsWindow

gdi32

DeleteObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetDeviceCaps
GetObjectA
GetStockObject
CreateSolidBrush
CreateFontIndirectA
SelectObject

advapi32

RegEnumKeyExA
RegQueryInfoKeyA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegEnumKeyA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA

shell32

ShellExecuteA

ole32

CreateStreamOnHGlobal
OleLockRunning
StringFromGUID2
CoInitialize
CoUninitialize
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoRegisterClassObject
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
OleInitialize
OleUninitialize
StringFromCLSID
CoTaskMemRealloc

oleaut32

LoadRegTypeLi
SysFreeString
SysAllocStringByteLen
SysStringByteLen
VarUI4FromStr
SysAllocStringLen
SysAllocString
SysStringLen
OleCreateFontIndirect
VariantClear
VariantInit
LoadTypeLi

shlwapi

StrToIntA
StrRChrA

Sections

Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

205db725f6178507f0cfea9c5bc50c2e

Headers

File Characteristics

Imports

sensapi

wininet

version

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

Size: 392KB - Virtual size: 392KB

Size: 197KB - Virtual size: 197KB