aded34d78775d27ecdec7a36406f0cf42a632ea85304b39923df94e63a6fabec

Sharing

Copy URL

Twitter E-mail

General

Target

aded34d78775d27ecdec7a36406f0cf42a632ea85304b39923df94e63a6fabec
Size

551KB
MD5

a0f0d55076cea36d83baa94ac78edf16
SHA1

56b7ce6f230a61dd6376776f72caf1511a04a4a0
SHA256

aded34d78775d27ecdec7a36406f0cf42a632ea85304b39923df94e63a6fabec
SHA512

6c13d030ae39f7e501713f281abd3f65688e91c9ef06caa27c34972ad92ec2dc0ee42b1e0275de7fea6db55d0faaea2773c07ffaee97bf9e7ecac817025846cb
SSDEEP

3072:e3q30gWq7Y+jbkGenScL1FsrKY/gnl4PNN0Bi3434YFOmOXoHOZNxjRIpjWMHmIY:zoqel7oe4nmOXouZqIXJa5Ga

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aded34d78775d27ecdec7a36406f0cf42a632ea85304b39923df94e63a6fabec

Files

aded34d78775d27ecdec7a36406f0cf42a632ea85304b39923df94e63a6fabec
.exe windows:4 windows x86 arch:x86

61e4d89b8f2bba64fe7fb4a2e1f67cd0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
GetModuleHandleA
GetLastError
FindVolumeMountPointClose
CreateFileA
GetVersion
OpenWaitableTimerW
GetProfileIntA
SetThreadPriority
GetStdHandle
TerminateJobObject
EnumResourceLanguagesW
GetCurrentDirectoryA
FindNextVolumeMountPointW
GetPrivateProfileIntA
GetSystemTimeAdjustment
EnumResourceLanguagesA
TransmitCommChar

user32

AnyPopup
CharNextW
CharNextA
MessageBoxA
GetClipboardFormatNameA
ShowCaret
GetMouseMovePointsEx
MessageBoxExA
OemToCharBuffA
CharNextExA
DdeFreeDataHandle
ChangeDisplaySettingsExA
SetMenuInfo
IsCharAlphaNumericA
CreateDialogIndirectParamW
DefDlgProcA
GetOpenClipboardWindow
ActivateKeyboardLayout
DialogBoxParamA
WaitForInputIdle
GetClassInfoExW
WinHelpW
EnumDesktopsA
SetWindowLongA
SendNotifyMessageA
SetRect
DdeSetQualityOfService
GetClipboardOwner
LoadIconW
SetActiveWindow
PtInRect
GetClipCursor

gdi32

GetStockObject
RealizePalette
CreateICW
GetFontResourceInfoW
GetTextAlign
EngStrokePath
GetPaletteEntries
GetRandomRgn
SetBrushOrgEx
GetCharacterPlacementA
SetViewportExtEx
CreateBitmapIndirect
GetDCOrgEx
EngAcquireSemaphore
GetBkColor
EngTransparentBlt
EngQueryLocalTime
PaintRgn
GetFontData
BRUSHOBJ_ulGetBrushColor
GdiSetPixelFormat
Pie
GetTextCharacterExtra
EngAssociateSurface
SetBitmapBits
BRUSHOBJ_pvGetRbrush
AddFontResourceTracking
ModifyWorldTransform

advapi32

RegOpenKeyW
SetFileSecurityW
GetSecurityDescriptorControl
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
SetSecurityDescriptorDacl
SetSecurityDescriptorControl
IsValidSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
GetUserNameA
LookupAccountNameA
GetFileSecurityW

shell32

SHFileOperationW

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 293B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.t4xt12
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.t4xt11
Size: 359KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61e4d89b8f2bba64fe7fb4a2e1f67cd0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 293B

.data Size: 3KB - Virtual size: 3KB

.t4xt12 Size: 107KB - Virtual size: 107KB

.t4xt11 Size: 359KB - Virtual size: 359KB

.rsrc Size: 74KB - Virtual size: 74KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 293B

.data
Size: 3KB - Virtual size: 3KB

.t4xt12
Size: 107KB - Virtual size: 107KB

.t4xt11
Size: 359KB - Virtual size: 359KB

.rsrc
Size: 74KB - Virtual size: 74KB