a05806f9060f1f2de61cec62599ef7558dc0b8e4b0a62cc71a1d8e762d91ee1f[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

a05806f9060f1f2de61cec62599ef7558dc0b8e4b0a62cc71a1d8e762d91ee1f.exe
Size

355KB
MD5

d80e625211db0a05bb8346f1fc2551f9
SHA1

2eab153918e144c22eb00d2f47e8757f21b39211
SHA256

a05806f9060f1f2de61cec62599ef7558dc0b8e4b0a62cc71a1d8e762d91ee1f
SHA512

69261b12ffa2568f20752dab17cc48fe97598f4f640eba4d0dd54b0ab44ff6be529a97eadc1ef23d8758fd70d53c54fa9a764b9f4de86465e4004dffafd461cd
SSDEEP

6144:JnYGYzfdtj1alRL2ERw4UAJrx2A41E7vc7YI6Na2UX:JnYGYj/j428rx2ApvcUPbU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a05806f9060f1f2de61cec62599ef7558dc0b8e4b0a62cc71a1d8e762d91ee1f.exe

Files

a05806f9060f1f2de61cec62599ef7558dc0b8e4b0a62cc71a1d8e762d91ee1f.exe
.exe windows:5 windows x86 arch:x86

00d679ebdf6e5a1162882b53660d628e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
WaitForMultipleObjectsEx
CreateEventA
CreateWaitableTimerA
SetWaitableTimer
CancelWaitableTimer
GetModuleHandleW
FindResourceA
GetVersionExA
VerifyVersionInfoW
MultiByteToWideChar
WriteConsoleW
SetFilePointerEx
HeapReAlloc
HeapSize
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetProcessHeap
GetStringTypeW
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
CreatePipe
FindNextFileA
FindFirstFileExA
FindClose
DecodePointer
GetFileType
LCMapStringW
HeapFree
GetACP
ExitProcess
WideCharToMultiByte
GetModuleFileNameA
WriteFile
GetStdHandle
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
LoadLibraryExW
FreeLibrary
TlsFree
LocalFileTimeToFileTime
SystemTimeToFileTime
GetSystemInfo
GetLocalTime
GetSystemTime
MulDiv
Beep
SetHandleInformation
CloseHandle
LoadResource
Sleep
WaitForSingleObject
SetEvent
GetLastError
HeapAlloc
HeapCreate
LocalFree
GetProcAddress
LocalAlloc
VerSetConditionMask
TlsSetValue
CreateFileW
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualQuery
EncodePointer
SetLastError
RtlUnwind
RaiseException
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter

user32

wsprintfA
ExitWindowsEx
DefWindowProcA
DefWindowProcW
SendMessageA
PostQuitMessage
CallWindowProcA
EnumDisplaySettingsA
LoadIconA
LoadCursorA
FindWindowExA
FindWindowA
GetParent
SetClassLongA
SetWindowLongA
FillRect
GetSysColorBrush
GetSysColor
HideCaret
GetCursorPos
SetCursor
MessageBoxA
GetWindowRect
GetClientRect
GetWindowTextW
SetScrollRange
SetScrollPos
EndPaint
BeginPaint
ReleaseDC
GetDC
SetForegroundWindow
SwitchToThisWindow
SetMenuDefaultItem
GetMenuItemInfoA
InsertMenuItemA
TrackPopupMenu
AppendMenuA
GetSubMenu
CreatePopupMenu
LoadMenuA
GetSystemMetrics
SetDlgItemTextA
GetDlgItem
CreateDialogIndirectParamA
BringWindowToTop
SetWindowPos
MoveWindow
ShowWindow
DestroyWindow
CreateWindowExA
GetClassInfoA
UnregisterClassA
RegisterClassW

gdi32

TextOutW
TextOutA
CreateDIBSection
GetTextMetricsA
SetTextAlign
SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32A
GetTextExtentPointA
GetStockObject
GetDeviceCaps
DeleteObject
DeleteDC
CreateICA
CreateFontIndirectA
CreateCompatibleDC
ExtTextOutW

comdlg32

ChooseFontA

ole32

CoCreateInstance
CoInitialize

oleaut32

SafeArrayCreateVector
SafeArrayAccessData
SafeArrayDestroy
SysAllocString
OleLoadPicturePath

ws2_32

gethostname

netapi32

NetApiBufferFree
NetWkstaTransportEnum
NetWkstaUserEnum
NetWkstaUserGetInfo
NetWkstaSetInfo
NetWkstaGetInfo

userenv

UnregisterGPNotification
UnloadUserProfile

opengl32

glGetIntegerv
glTexImage2D
glBindTexture
glGenTextures
glTexParameteri

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

U�g�uK
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

00d679ebdf6e5a1162882b53660d628e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

ws2_32

netapi32

userenv

opengl32

setupapi

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 4KB - Virtual size: 7KB

.text Size: 5KB - Virtual size: 5KB

.gfids Size: 512B - Virtual size: 288B

.rsrc Size: 204KB - Virtual size: 203KB

.reloc Size: 5KB - Virtual size: 5KB

U�g�uK Size: 16KB - Virtual size: 20KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 4KB - Virtual size: 7KB

.text
Size: 5KB - Virtual size: 5KB

.gfids
Size: 512B - Virtual size: 288B

.rsrc
Size: 204KB - Virtual size: 203KB

.reloc
Size: 5KB - Virtual size: 5KB

U�g�uK
Size: 16KB - Virtual size: 20KB