8b5fb2e1c3e6b391352871d2357e7ffa906f5b41e4633ccd10609ae55f6e7f09

Sharing

Copy URL Twitter E-mail

General

Target

8b5fb2e1c3e6b391352871d2357e7ffa906f5b41e4633ccd10609ae55f6e7f09
Size

3.5MB
MD5

5e2307be74fe6e27e326e6ea1559eecf
SHA1

af787f133bc8a80265cbe9a9fa248735b671a77e
SHA256

8b5fb2e1c3e6b391352871d2357e7ffa906f5b41e4633ccd10609ae55f6e7f09
SHA512

c4b0e1324bbdd12538304e81f989393b8484bcc500f6c30d0a9ecdd7b5bdd06b1db501741992e78ad93bbc5d99240978e9335e7a28efaa99030b81eede51e66e
SSDEEP

98304:TOXzFnNXp7rczEjuRpXcf0e9Cd01FLOAkGkzdnEVomFHKnPxR0x:T0nhqxe9Cd01FLOyomFHKnPxq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b5fb2e1c3e6b391352871d2357e7ffa906f5b41e4633ccd10609ae55f6e7f09

Files

8b5fb2e1c3e6b391352871d2357e7ffa906f5b41e4633ccd10609ae55f6e7f09
.exe windows x86

cb2c2a364d57bc88241456e2bfaa3b08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
CompareStringW
GetStdHandle
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
GetConsoleOutputCP
GetCommandLineA
QueryPerformanceFrequency
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
GetModuleHandleExW
ExitProcess
RtlUnwind
RaiseException
OutputDebugStringW
ReadConsoleW
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
CreateEventW
WaitForSingleObjectEx
ResetEvent
IsProcessorFeaturePresent
TerminateProcess
UnhandledExceptionFilter
GetWindowsDirectoryA
FindResourceExW
GetACP
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
FindNextFileW
GetSystemDefaultUILanguage
GetLocaleInfoW
GetTempPathA
SearchPathA
GetProfileIntA
GetTickCount64
GetCurrentDirectoryA
VerifyVersionInfoA
VerSetConditionMask
SetErrorMode
GlobalFlags
GetStringTypeExA
MoveFileA
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
UnlockFile
SetEndOfFile
ReadFile
LockFile
FlushFileBuffers
DeleteFileA
GetThreadLocale
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
ReplaceFileA
GetTempFileNameA
GetFullPathNameA
GetDiskFreeSpaceA
ResumeThread
SetThreadPriority
GetVersionExA
GetCurrentThread
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
FindResourceA
GlobalReAlloc
InitializeCriticalSectionAndSpinCount
GetFileSize
GetCurrentThreadId
SystemTimeToFileTime
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
LoadLibraryW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
lstrcmpA
CreateMutexA
ReleaseMutex
SetLastError
MultiByteToWideChar
MulDiv
GlobalSize
GetPrivateProfileIntA
GetPrivateProfileStringA
CopyFileA
SetUnhandledExceptionFilter
LocalFree
lstrlenA
FormatMessageA
GetVersion
WritePrivateProfileStringA
DecodePointer
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
IsBadReadPtr
WriteFile
GetLocalTime
SetFilePointer
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetFileInformationByHandle
CreateDirectoryA
CreateFileA
GetSystemInfo
CloseHandle
CreateIoCompletionPort
WaitForMultipleObjects
PostQueuedCompletionStatus
SetEvent
CreateEventA
GetQueuedCompletionStatus
WaitForSingleObject
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateThread
Sleep
GlobalFree
HeapAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
lstrcpyA
FindClose
FindFirstFileA
GetModuleFileNameA
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
FreeLibrary
GetProcAddress
GetLastError
LoadLibraryA
GetProcessHeap
GetCommandLineW
WriteConsoleW

user32

AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
SetMenu
GetMenu
DeferWindowPos
SetWindowPlacement
GetWindowPlacement
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
SetRect
DrawIconEx
DrawFocusRect
GetSysColorBrush
GetSysColor
DrawEdge
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxA
MapWindowPoints
CharUpperBuffA
SetParent
LockWindowUpdate
ValidateRect
BringWindowToTop
GetMonitorInfoA
MonitorFromPoint
ModifyMenuA
CreatePopupMenu
IsDialogMessageA
SetWindowLongA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsWindowEnabled
GetDlgCtrlID
CheckDlgButton
GetDlgItem
SetWindowPos
MoveWindow
ShowWindow
SystemParametersInfoA
GetClassNameA
FillRect
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
GetIconInfo
CopyImage
DestroyIcon
GetClassLongA
GetWindowLongA
IsRectEmpty
GetMenuItemInfoA
DestroyMenu
GetSystemMetrics
IsMenu
ShowOwnedPopups
LoadCursorW
LoadCursorA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
PtInRect
EqualRect
OffsetRect
IntersectRect
InflateRect
SetRectEmpty
WindowFromPoint
ScreenToClient
SetCursor
MessageBeep
DeleteMenu
KillTimer
SetTimer
RealChildWindowFromPoint
WaitMessage
SetLastErrorEx
SendMessageA
LoadImageA
RedrawWindow
GetSystemMenu
ReleaseCapture
SetCapture
GetAsyncKeyState
SetFocus
CharUpperA
IsZoomed
IsIconic
EndDeferWindowPos
BeginDeferWindowPos
IsChild
TrackMouseEvent
RegisterWindowMessageA
NotifyWinEvent
GetTopWindow
SetWindowRgn
DestroyAcceleratorTable
GetCapture
GetKeyState
IsWindowVisible
DestroyWindow
PostMessageA
CopyRect
ReleaseDC
GetDC
MapVirtualKeyA
GetKeyNameTextA
SetScrollInfo
GetScrollInfo
WinHelpA
MonitorFromWindow
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetActiveWindow
GetDesktopWindow
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
PostQuitMessage
GetMessageA
LoadImageW
EnableMenuItem
GetClientRect
IsWindow
EnableWindow
SetClassLongA
GetWindowRect
InvalidateRect
UpdateWindow
GetWindow
UnregisterClassA
wsprintfA
LoadIconA
LoadIconW
LoadMenuW
GetSubMenu
SetMenuDefaultItem
GetCursorPos
SetForegroundWindow
TrackPopupMenu
GetMenuItemID
SendDlgItemMessageA
ClientToScreen
GetMenuStringA
GetMenuState
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
GetFocus
CheckMenuItem
SetMenuItemBitmaps
CopyAcceleratorTableA
SetLayeredWindowAttributes
EnumDisplayMonitors
GetMenuCheckMarkDimensions
SetMenuItemInfoA
GetParent
LoadBitmapW
TranslateMessage
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsClipboardFormatAvailable
RegisterClipboardFormatA
InvertRect
HideCaret
MapVirtualKeyExA
IsCharLowerA
DrawIcon
GetWindowRgn
CreateMenu
GetDoubleClickTime
DestroyCursor
GetNextDlgGroupItem
MapDialogRect
GetUpdateRect
SubtractRect
EnumChildWindows
PostThreadMessageA
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
GetComboBoxInfo
FrameRect
CopyIcon
SetCursorPos
GetMenuDefaultItem
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
DrawFrameControl

gdi32

CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
CreateHatchBrush
CreateSolidBrush
Ellipse
GetBkColor
GetTextColor
ExtTextOutA
CreatePolygonRgn
Polygon
Polyline
CreatePatternBrush
Rectangle
RoundRect
CreateFontIndirectA
SetTextColor
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
StretchBlt
MoveToEx
TextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetRectRgn
DPtoLP
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetRgnBox
OffsetRgn
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
LPtoDP
GetViewportOrgEx
EnumFontFamiliesExA
GetNearestPaletteIndex
GetSystemPaletteEntries
GetTextFaceA
SetPixelV
SetPixel
SetBkColor
SelectPalette
RealizePalette
GetStockObject
GetPixel
GetDIBits
CombineRgn
BitBlt
GetObjectA
GetTextMetricsA
SelectObject
GetTextExtentPoint32A
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
CreateRoundRectRgn
CreatePen
PatBlt
CreateRectRgnIndirect
CreateBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
CreateRectRgn
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumValueA
RegEnumKeyExA
RegOpenKeyExW
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegCloseKey
CryptDecrypt
CryptSetKeyParam
CryptDeriveKey
CryptHashData
CryptCreateHash
CryptAcquireContextA
CryptReleaseContext
CryptDestroyHash
CryptDestroyKey

shell32

SHAppBarMessage
DragQueryFileA
DragFinish
SHGetFileInfoA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
ExtractIconA
SHAddToRecentDocs
SHGetDesktopFolder
Shell_NotifyIconA

shlwapi

PathFindFileNameA
PathFileExistsA
PathStripToRootA
PathRemoveFileSpecW
StrFormatKBSizeA
PathIsUNCA
PathFindExtensionA

uxtheme

GetCurrentThemeName
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysColor
GetWindowTheme
IsAppThemed
DrawThemeParentBackground
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetThemePartSize

ole32

OleGetClipboard
CoLockObjectExternal
RevokeDragDrop
OleCreateMenuDescriptor
OleTranslateAccelerator
OleDestroyMenuDescriptor
CoInitializeEx
IsAccelerator
DoDragDrop
RegisterDragDrop
OleLockRunning
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
CreateStreamOnHGlobal
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
VariantCopy
SysAllocStringByteLen
VarBstrFromDate
SysAllocString
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysFreeString

gdiplus

GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup

wininet

InternetCloseHandle
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetOpenA
InternetCheckConnectionA
InternetGetConnectedState

winmm

PlaySoundA
timeGetTime

ws2_32

setsockopt
socket
send
WSACleanup
WSARecv
WSAIoctl
listen
bind
htons
WSASocketA
WSAGetLastError
WSAStartup
inet_ntoa
recvfrom
ntohs
closesocket

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 337KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb2c2a364d57bc88241456e2bfaa3b08

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

wininet

winmm

ws2_32

imm32

oleacc

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 337KB - Virtual size: 336KB

.data Size: 22KB - Virtual size: 39KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 147KB - Virtual size: 147KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 337KB - Virtual size: 336KB

.data
Size: 22KB - Virtual size: 39KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 147KB - Virtual size: 147KB