40678437e7c89439d40513d5ac8f829753b93c0007b6b935ee5b062e2c3f062cN[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

40678437e7c89439d40513d5ac8f829753b93c0007b6b935ee5b062e2c3f062cN.exe
Size

290KB
MD5

aa03be1f0f6474da7b79ba5e5981c0e0
SHA1

b39ca84607b6dc0f7ab2bbff69da4c68e923aaaa
SHA256

40678437e7c89439d40513d5ac8f829753b93c0007b6b935ee5b062e2c3f062c
SHA512

a160a7266ac3d5508ccbab489871153da424d5db98ac3dd6f235632558667150282596d4ffa1ef195d279606563d215358e22de46e88ffaad15d525da9acee23
SSDEEP

6144:1587XCektnluPEsw/eZfXOPB7V1Cfo9FKZ:1MpktnEjGsfOp3a/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40678437e7c89439d40513d5ac8f829753b93c0007b6b935ee5b062e2c3f062cN.exe

Files

40678437e7c89439d40513d5ac8f829753b93c0007b6b935ee5b062e2c3f062cN.exe
.exe windows:5 windows x86 arch:x86

09f9f0025bb6da0f4e7b79a4a7dc4076

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
IsDBCSLeadByte
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
PeekConsoleInputA
ReadConsoleInputA
ReadFile
RemoveDirectoryW
RtlUnwind
ScrollConsoleScreenBufferA
SearchPathW
SetConsoleCtrlHandler
GetVersionExA
SetConsoleMode
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetStdHandle
Sleep
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrcatW
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA
lstrlenW
GetVersion
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatW
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetSystemInfo
GetSystemDirectoryW
GetSystemDefaultLCID
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetShortPathNameW
GetProcessHeap
GetProcAddress
GetOEMCP
GetNumberOfConsoleInputEvents
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileSize
GetFileAttributesW
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
Beep
GetDriveTypeA
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleScreenBufferInfo
GetConsoleMode
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushFileBuffers
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
ExpandEnvironmentStringsW
ExitProcess
EnumSystemLocalesA
DosDateTimeToFileTime
DeleteFileW
CreateThread
CreateProcessW
CreateProcessA
CreateFileW
CreateFileA
CreateDirectoryW
CopyFileW
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
SetConsoleCursorPosition

user32

SendMessageTimeoutW
SendIMEMessageExW
ScreenToClient
RemovePropW
RegisterClassW
PostQuitMessage
PeekMessageW
OpenClipboard
MsgWaitForMultipleObjects
MessageBoxIndirectW
LockSetForegroundWindow
LoadStringW
LoadStringA
LoadImageW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindowEnabled
IsWindow
InvalidateRect
InSendMessage
ImpersonateDdeClientWindow
IMPSetIMEW
GrayStringA
GetWindowRect
GetWindowLongW
GetSystemMetrics
GetSystemMenu
GetSysColor
GetMessagePos
GetKeyboardLayoutList
GetDlgItem
GetDC
SendMessageW
GetClassInfoW
FindWindowExW
FillRect
ExitWindowsEx
EnumWindows
EnumThreadWindows
EnumPropsW
EnumDesktopsW
EndPaint
EndDialog
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DispatchMessageW
DialogBoxParamW
DestroyWindow
DefWindowProcW
CreateWindowExW
CreatePopupMenu
CreateMDIWindowW
CreateDialogParamW
CloseClipboard
CheckDlgButton
CharUpperW
CharUpperBuffA
CharPrevW
CharPrevA
CharNextW
CharNextA
CallWindowProcW
SetClassLongW
SetClipboardData
SetCursor
SetDlgItemTextW
LoadIconW
GetKeyboardLayout
GetListBoxInfo
GetDoubleClickTime
GetMessageExtraInfo
GetOpenClipboardWindow
GetWindowTextLengthA
CharLowerA
CloseWindowStation
GetMenu
VkKeyScanW
IsMenu
IsCharAlphaA
ShowCaret
LoadIconA
wsprintfW
wsprintfA
TranslateMessage
TrackPopupMenu
SystemParametersInfoW
ShowWindow
SetWindowTextW
SetWindowPos
AllowSetForegroundWindow
AppendMenuW
BeginPaint
SetWindowLongW
SetTimer
SetSysColors
SetParent
GetClientRect
SetForegroundWindow
GetDlgItemTextW

gdi32

ExtFloodFill
ExtTextOutW
GdiEndPageEMF
GdiFlush
GdiPlayScript
GetBitmapBits
GetCharABCWidthsA
GetCharABCWidthsFloatW
GetCharABCWidthsI
GetCharWidth32W
GetDeviceCaps
GetEnhMetaFileA
GetGraphicsMode
GetNearestPaletteIndex
GetStringBitmapA
GetTextExtentExPointWPri
PolyTextOutA
PtInRegion
RemoveFontMemResourceEx
EngFreeModule
STROBJ_dwGetCodePage
STROBJ_vEnumStart
ScaleWindowExtEx
SelectObject
SetBkColor
SetBkMode
SetDIBitsToDevice
SetMetaFileBitsEx
SetPixel
SetPixelFormat
SetPolyFillMode
SetRectRgn
SetSystemPaletteUse
SetTextColor
SaveDC
UpdateColors
AddFontResourceA
GetDCBrushColor
CreateCompatibleDC
EngDeleteSurface
EngCreateClip
EngCreateBitmap
EngCopyBits
DrawEscape
DeleteObject
CreateRectRgnIndirect
CreatePatternBrush
CreateMetaFileA
CreateFontIndirectW
CreateDCA
CreateColorSpaceW
CreateBrushIndirect
CloseMetaFile
CloseFigure
RemoveFontResourceExA
BRUSHOBJ_hGetColorTransform

advapi32

RegQueryValueExA
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW

shell32

SHBrowseForFolderW
ShellExecuteExW
ShellAboutA
SHQueryRecycleBinA
SHPathPrepareForWriteW
CommandLineToArgvW
DoEnvironmentSubstW
DragFinish
DragQueryFileAorW
ExtractAssociatedIconA
ExtractIconA
ExtractIconEx
ExtractIconExW
ExtractIconW
FindExecutableW
ShellExecuteW
SHEmptyRecycleBinA
SHFileOperationW
SHFreeNameMappings
SHGetDataFromIDListA
SHGetDiskFreeSpaceExA
SHGetFileInfo
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSettings
SHGetSpecialFolderLocation

ole32

OleInitialize
CoTaskMemFree
CoCreateInstance
OleUninitialize

shlwapi

StrStrIA
StrCmpNA
StrCmpNIA
StrStrA
StrRStrIW

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy

Sections

.text
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09f9f0025bb6da0f4e7b79a4a7dc4076

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

Sections

.text Size: 240KB - Virtual size: 239KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 36KB - Virtual size: 36KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 240KB - Virtual size: 239KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 2KB - Virtual size: 1KB