4c429ea098b40d9705f9afc1be6ffdb3260701db1d3fa1d3140475c7720b52a0N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

4c429ea098b40d9705f9afc1be6ffdb3260701db1d3fa1d3140475c7720b52a0N.exe
Size

555KB
MD5

76a3937bb1dd06a48980108140572350
SHA1

fa82441bbb7eb41b25270c2a880067276b900482
SHA256

4c429ea098b40d9705f9afc1be6ffdb3260701db1d3fa1d3140475c7720b52a0
SHA512

3ab3f10e03399ca1e05bf39683f0d3946e93ca50a7fa1a083905a2bed58c04ab2463ed39334674a69d5d34fe732c1f900c4b0a7d34963ba1f54c0867c361753a
SSDEEP

6144:ARC1nhBqK9FYLHrIzkpSYWcMaYPK3jlvl2Be4RHxvP7wIACPytfAk5MepYz6bXMk:XnhBvyL5SZUN4HD4D0n1BjvrEH7eXU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c429ea098b40d9705f9afc1be6ffdb3260701db1d3fa1d3140475c7720b52a0N.exe

Files

4c429ea098b40d9705f9afc1be6ffdb3260701db1d3fa1d3140475c7720b52a0N.exe
.dll windows:6 windows x86 arch:x86

a9d5392ae2d2e50e36fc10e0c1a352e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetModuleFileNameW
WriteFile
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetStringTypeW
GetStartupInfoW
DeleteCriticalSection
GetFileType
GetStdHandle
HeapSize
WideCharToMultiByte
LoadLibraryExW
HeapReAlloc
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
CloseHandle
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadFile
ReadConsoleW
CreateFileW
SetEndOfFile
ExitThread
SetThreadPriority
EnumResourceNamesW
VirtualQueryEx
IsDebuggerPresent
VirtualAlloc
SetThreadLocale
lstrcpynW
HeapDestroy
GetSystemDirectoryW
GetSystemDefaultUILanguage
GetTempFileNameW
GetFullPathNameW
EnumResourceTypesW
GetExitCodeThread
GetThreadLocale
GetPrivateProfileIntW
CreateDirectoryW
GetFileSize
DeleteFileW
GetDiskFreeSpaceW
VerifyVersionInfoW
HeapCreate
GetTickCount
CompareFileTime
LockResource
GetVersionExW
FormatMessageW
GetDriveTypeW
Sleep
MultiByteToWideChar
AreFileApisANSI
GetProcAddress
GetModuleHandleExW
ExitProcess
GetLastError
HeapFree
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
GetCurrentThreadId
IsProcessorFeaturePresent
HeapAlloc
RaiseException
GetProcessHeap
SetLastError

user32

DrawEdge
BeginPaint
LoadMenuW
GetWindowLongA
ReleaseDC
ScrollWindow
RegisterClassW
GetClientRect
GetWindowTextLengthA
InsertMenuA
GetWindowRect
IsIconic
GetMenuStringW
SetParent
GetDoubleClickTime
GetMenu
GetScrollInfo
CharUpperW
RedrawWindow
GetSysColorBrush
AppendMenuA
IsWindow
FlashWindow
GetSystemMenu
SetKeyboardState
MsgWaitForMultipleObjects
GetKeyState
RemovePropA
MessageBeep
ShowCursor
ReleaseCapture
SetWindowTextW
MapDialogRect
UnionRect
MonitorFromWindow
SetDlgItemTextA
GetParent
GetWindowTextW
GetQueueStatus
GetKeyboardState
SetRect
MessageBoxA
InvalidateRect
DefWindowProcA
DestroyCaret
GetSystemMetrics
EnableWindow
ValidateRect
GetWindow
SetCursor
GetDC
GetDesktopWindow
CheckDlgButton
ScrollWindowEx
InsertMenuW

gdi32

SetTextColor
GetCharacterPlacementW
CreateFontIndirectA
CreateRectRgnIndirect
CreateCompatibleBitmap
TextOutA
CreateBitmap
RealizePalette
GetBitmapBits
TranslateCharsetInfo
LineTo
CreateFontIndirectW
ExcludeClipRect
PolyPolyline
RoundRect
IntersectClipRect
CreateFontA
SelectClipRgn
CreateBrushIndirect
GetObjectType
CreateDIBitmap
ExtCreatePen
MoveToEx
GetTextExtentExPointA
SetTextAlign
PatBlt
GetTextExtentPoint32A
GetDeviceCaps
CopyEnhMetaFileA
GdiFlush
DeleteObject
CreatePenIndirect
DeleteDC
GetDIBits
GetCharWidth32A
SetBkColor

comdlg32

FindTextW

advapi32

RegSetKeySecurity
RegEnumKeyExW
QueryServiceStatus
RegLoadKeyW
RegUnLoadKeyW
ControlService
RegQueryInfoKeyW
EqualSid
ChangeServiceConfigW

shell32

CommandLineToArgvW

oleaut32

SysAllocStringLen
SafeArrayGetLBound
VariantCopy

Sections

.text
Size: 366KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9d5392ae2d2e50e36fc10e0c1a352e3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 366KB - Virtual size: 365KB

.rdata Size: 78KB - Virtual size: 78KB

.data Size: 18KB - Virtual size: 36KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 366KB - Virtual size: 365KB

.rdata
Size: 78KB - Virtual size: 78KB

.data
Size: 18KB - Virtual size: 36KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 15KB - Virtual size: 14KB