a48ba8591b20ee76d27855cfeaa0c584527d9b8da9c45e92ae2d4ba9088be325N

Sharing

Copy URL Twitter E-mail

General

Target

a48ba8591b20ee76d27855cfeaa0c584527d9b8da9c45e92ae2d4ba9088be325N
Size

200KB
MD5

1fa913900d3bdd4f8358d9ffea869450
SHA1

11bd18ebf94fd954dd4734d6c085d686bf7e65a6
SHA256

a48ba8591b20ee76d27855cfeaa0c584527d9b8da9c45e92ae2d4ba9088be325
SHA512

4229e19ebc26e36da381238f6b13fd4ef558c52a4587cf5e5987df330a0550652ec2ee17d77e83e0320f9d2d39e50dd643765a218ebbf5ccd3488f08e078ed64
SSDEEP

1536:r0kt8EbJUVtJIjop3feTQgCUOz/Tax3F8tVlCj6Z+jr1PjfOmCX21SvcqyK/Wkil:rFtVKtSmTUE6m82In1zOX2AMviw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a48ba8591b20ee76d27855cfeaa0c584527d9b8da9c45e92ae2d4ba9088be325N

Files

a48ba8591b20ee76d27855cfeaa0c584527d9b8da9c45e92ae2d4ba9088be325N
.exe windows:5 windows x86 arch:x86

7140ed1759d25f18d9e546de59fc53a4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
lstrcpyW
lstrlenW
WaitForSingleObject
LoadLibraryA
GetCommandLineA
UnhandledExceptionFilter
TerminateProcess
CloseHandle
Sleep
SetUnhandledExceptionFilter
SetEvent
SetErrorMode
QueryPerformanceCounter
PulseEvent
OpenProcess
MulDiv
LocalFree
LocalAlloc
LoadLibraryW
LoadLibraryExW
GetVolumeInformationW
GetTickCount
GetSystemTimeAsFileTime
GetSystemDirectoryW
GetStartupInfoW
GetStartupInfoA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetLastError
GetDriveTypeW
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCommandLineW
FreeLibrary
FormatMessageW
CreateThread
CreateProcessW
CreateEventW
VirtualAlloc

user32

IsCharAlphaNumericW
CloseClipboard
GetAsyncKeyState
CloseDesktop
ShowCaret
IsCharUpperW
GetShellWindow
GetKBCodePage
GetKeyboardLayout
GetOpenClipboardWindow
CharUpperA
CountClipboardFormats
LoadIconA
IsCharAlphaNumericA
GetMenuCheckMarkDimensions
CharNextW
GetDlgCtrlID
DestroyMenu
LoadCursorFromFileA
GetMenuItemCount
GetDC
IsWindowEnabled
GetCaretBlinkTime
CloseWindow
CreatePopupMenu
GetWindowContextHelpId
GetClipboardViewer
GetMenu
IsGUIThread
EnableMenuItem
GetParent
wsprintfW
WinHelpW
TranslateMessage
ShowWindow
SetWindowLongW
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetCursor
SendMessageW
SendDlgItemMessageW
RegisterClassW
PostMessageW
PeekMessageW
MsgWaitForMultipleObjects
MessageBoxW
LoadStringW
LoadIconW
LoadCursorW
IsDialogMessageW
GetWindowThreadProcessId
GetWindowTextW
GetWindowLongW
GetSystemMetrics
GetSysColor
GetDlgItem
GetClientRect
FindWindowW
EnumWindows
EndDialog
EnableWindow
DrawIconEx
DrawFocusRect
DispatchMessageW
DialogBoxParamW
DestroyWindow
DefDlgProcW
CreateDialogParamW
GetKeyState

gdi32

PathToRegion
DeleteDC
GetROP2
GetDCBrushColor
FlattenPath
GetTextColor
CancelDC
GetPolyFillMode
CreateHalftonePalette
GdiFlush
CreatePatternBrush
SaveDC
GetDCPenColor
GetEnhMetaFileW
AddFontResourceA
GetStretchBltMode
EndPage
ExtTextOutW
FillPath
GetColorSpace
RealizePalette
CreateCompatibleDC
GetMapMode
UpdateColors
SetTextColor
SetBkMode
SetBkColor
GetTextExtentPoint32W
CreateMetaFileA

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExW
RegEnumKeyW
RegCloseKey
RegOpenKeyExA

shell32

ShellExecuteW
SHGetFileInfoW
ExtractIconExW

ole32

CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CLSIDFromString

shlwapi

SHDeleteKeyW
StrToIntW
StrStrIW
StrFormatKBSizeW
StrCpyNW
StrCmpW
StrCpyW

msvcrt

__setusermatherr
memset
memcpy
toupper
exit
_initterm
_exit
_XcptFilter
__getmainargs
__initenv
__p__commode
__p__fmode
__set_app_type
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3

Sections

.text
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7140ed1759d25f18d9e546de59fc53a4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

.text Size: 183KB - Virtual size: 183KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 183KB - Virtual size: 183KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 15KB - Virtual size: 14KB