ddd7df06010d30d68189757df3b82d8556eb2c4890aa32ef4f74117e636feb7c[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

ddd7df06010d30d68189757df3b82d8556eb2c4890aa32ef4f74117e636feb7c.exe
Size

100KB
MD5

d5e546233519716fa264d9456bdc266c
SHA1

2d8d1267a92c5f4848921c9e11405561c06104c7
SHA256

ddd7df06010d30d68189757df3b82d8556eb2c4890aa32ef4f74117e636feb7c
SHA512

a6ae07a48f59d38985c41d337b38970ddb407dda10c5cf6fc46e39c2a0d5257bcdaba353330d5214929e4f112634ccdacaba3ab48e028746754bbc0a32ad96cf
SSDEEP

3072:rb8eh5TyMK8uuB2qI65gD+vzur9zzMxoelvWVLmNeQR9ssp:seh5Tydusgq+v6JE+Z5mNfbssp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddd7df06010d30d68189757df3b82d8556eb2c4890aa32ef4f74117e636feb7c.exe

Files

ddd7df06010d30d68189757df3b82d8556eb2c4890aa32ef4f74117e636feb7c.exe
.exe windows:5 windows x86 arch:x86

51c9d9018b231470e86ab6fb8d620a54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
SetWindowLongW
EndDialog
LoadStringW
PostMessageW
SetCursor
ReleaseDC
LoadIconW
DialogBoxParamW
RegisterClipboardFormatW
GetDlgItemTextA
SendDlgItemMessageW
SetDlgItemTextW
SendMessageW
GetWindowLongW
GetParent
LoadCursorW
LoadBitmapW
GetDlgItem
GetDC
SetFocus
LoadImageW
InsertMenuItemW
SetWindowTextW
MessageBoxW
wsprintfW
SystemParametersInfoW
WinHelpW

msvcrt

mbstowcs
wcsstr
wcscpy
_wcsupr
??1type_info@@UAE@XZ
__RTDynamicCast
wcsrchr
wcscat
_onexit
vswprintf
_wcsicmp
?terminate@@YAXXZ
_initterm
_adjust_fdiv
??2@YAPAXI@Z
wcschr
memmove
__dllonexit
??3@YAXPAX@Z
free
_except_handler3
wcstoul
wcslen
wcscmp
malloc

certcli

CAUpdateCertType
CACloseCertType
CASetCertTypeProperty
CAFreeCAProperty
CASetCertTypeKeySpec
CAGetCertTypeKeySpec
CAEnumCertTypesForCA
CAGetCertTypeFlags
CAFindByName
CAUpdateCA
CAGetCertTypeProperty
CAEnumNextCertType
CACertTypeGetSecurity
CASetCertTypeFlags
CAGetCertTypeExtensions
CARemoveCACertificateType
CAAddCACertificateType
CAGetCAProperty
CAFindCertTypeByName
CAFreeCertTypeExtensions
CASetCertTypeExtension
CAEnumCertTypes
CACreateCertType
CACloseCA
CACertTypeSetSecurity
CAFreeCertTypeProperty
CAGetCertTypePropertyEx

kernel32

FileTimeToSystemTime
GlobalUnlock
InterlockedDecrement
GetCurrentProcess
GlobalLock
OutputDebugStringW
CreateFileW
GlobalAlloc
GetCPInfo
RemoveDirectoryA
lstrcpyW
GetLastError
WideCharToMultiByte
GetDateFormatW
GlobalFree
DeleteCriticalSection
GetTickCount
InitializeCriticalSection
lstrlenW
IsBadReadPtr
lstrcmpiW
GetSystemWindowsDirectoryW
InterlockedIncrement
QueryPerformanceCounter
LoadLibraryW
SetUnhandledExceptionFilter
FileTimeToLocalFileTime
GetStartupInfoA
OutputDebugStringA
LocalReAlloc
LocalFree
GetComputerNameW
CloseHandle
SetLastError
GetProcAddress
GetModuleHandleA
GetEnvironmentStringsW
FormatMessageW
GetSystemDefaultLangID
GetModuleFileNameW
GetSystemTimeAsFileTime

advapi32

RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteKeyW
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51c9d9018b231470e86ab6fb8d620a54

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 82KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 82KB

.rsrc
Size: 24KB - Virtual size: 24KB