731cc437902929659931133ca9072e9f0da14c96eb6a7b02d428cc9ca7825fb0

Sharing

Copy URL

Twitter E-mail

General

Target

731cc437902929659931133ca9072e9f0da14c96eb6a7b02d428cc9ca7825fb0
Size

148KB
MD5

9a9df08c70dbca6e374d7504ac42dd09
SHA1

40a482d1b736b2166cf501acdae9e82d508cc80d
SHA256

731cc437902929659931133ca9072e9f0da14c96eb6a7b02d428cc9ca7825fb0
SHA512

727f284d4b81b81a16fe95b833fb9bc4a99bd1801843e7d90d5b6258d4b197d263a08d4c93afaa5623a0dfba9df9b4d73238ce0c79c9cba55789af9d579d6968
SSDEEP

1536:SATuWsLr2JYoKzj9llcCQIBnsQHioxtIt+9uYAW1GPJG9lel+K9J5W2w:SA2zzjtcCdxmYAW1GPJ2eMow

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
731cc437902929659931133ca9072e9f0da14c96eb6a7b02d428cc9ca7825fb0

Files

731cc437902929659931133ca9072e9f0da14c96eb6a7b02d428cc9ca7825fb0
.exe windows:5 windows x86 arch:x86

40b84248a86226e400d37e0b94ba4e28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

mhXrJRmJ.pdb

Imports

setupapi

SetupDiGetActualSectionToInstallW
CM_Get_Device_Interface_List_SizeW

oleaut32

VarBstrFromR4
LHashValOfNameSysA
DispGetIDsOfNames

ntdll

VerSetConditionMask

kernel32

OpenFileById
HeapWalk
SetCriticalSectionSpinCount
GetSystemInfo
InitializeCriticalSection
GetNumberOfConsoleMouseButtons
GetCommandLineA
AllocConsole
GetCommState
QueryIdleProcessorCycleTime
GetThreadPriority
ReplaceFileW
SetConsoleTextAttribute
WriteConsoleInputA
WriteProfileStringW

advapi32

QueryServiceConfigW
RegSetKeySecurity
RegEnumKeyExA
SetServiceStatus
RegEnableReflectionKey
CreatePrivateObjectSecurityWithMultipleInheritance

gdi32

GetDIBColorTable
OffsetRgn
CancelDC
StretchBlt
GetStretchBltMode

urlmon

CoInternetGetSecurityUrl

esent

JetSetIndexRange

user32

AddClipboardFormatListener
CharPrevExA
IsClipboardFormatAvailable
GetMenuCheckMarkDimensions
DefWindowProcA
LoadStringW
LoadKeyboardLayoutA
GetWindowDC
IsDlgButtonChecked
IsZoomed

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt1
Size: 4KB - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40b84248a86226e400d37e0b94ba4e28

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

oleaut32

ntdll

kernel32

advapi32

gdi32

urlmon

esent

user32

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 8KB

.CRT Size: 100KB - Virtual size: 97KB

.rsrc Size: 20KB - Virtual size: 16KB

.crt1 Size: 4KB - Virtual size: 352B

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 8KB

.CRT
Size: 100KB - Virtual size: 97KB

.rsrc
Size: 20KB - Virtual size: 16KB

.crt1
Size: 4KB - Virtual size: 352B