9b3a7308ecec9bexeexeexeex[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

9b3a7308ecec9bexeexeexeex.exe
Size

361KB
MD5

9b3a7308ecec9b96612148f57dd0bb3b
SHA1

b6efe74c4bd98e2bfd8e82b3205efd85d2839961
SHA256

73a0420d9c8b4023f4bb76ed81ee0297b47809a3f9e7d1be805107c86ffa4f07
SHA512

25cf2d31a42b6d31e3f0da2b4a0feead4689af6436d603725cecaeb08b824436a929d9a61b853057edeb25a8458df0c30184807c0f69ab24767599d8509b7857
SSDEEP

6144:vRTYL13oKfggYqT/0uJKlrXzUHjJT/Xqj2OQ+F7:vRT0LfSjUHjJT/Xqj2O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b3a7308ecec9bexeexeexeex.exe

Files

9b3a7308ecec9bexeexeexeex.exe
.exe windows x86

2163ceacee26a2f4cfd557d3943ce300

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

CreateFileW
WriteConsoleW
LoadLibraryW
SetStdHandle
HeapReAlloc
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
HeapSize
GetModuleFileNameW
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
SetFilePointer
ExitProcess
GetProcAddress
HeapCreate
InitializeCriticalSectionAndSpinCount
GetStdHandle
SetHandleCount
GetFileType
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCPInfo
LCMapStringW
RtlUnwind
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetLocaleInfoW
LeaveCriticalSection
CloseHandle
GetLocalTime
GetModuleHandleW
GetLastError
InterlockedDecrement
WideCharToMultiByte
InterlockedCompareExchange
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
Sleep
DecodePointer
EncodePointer
GetStringTypeW
MultiByteToWideChar
InterlockedExchange
InterlockedIncrement

user32

GetForegroundWindow
TranslateMessage
DrawFocusRect
LoadCursorW
IsDialogMessageW
GetKeyState
PostQuitMessage
GetMessageW
SetCursor
GetNextDlgTabItem
GetScrollInfo
TrackMouseEvent
GetWindowTextLengthW
SendMessageW
CreateWindowExW
SetWindowPos
SetWindowLongW
InvalidateRect
GetClientRect
DispatchMessageW
DefWindowProcW
CallWindowProcW
SetScrollInfo
UpdateWindow
KillTimer
EnableMenuItem
GetMenuState
CheckMenuItem
GetSystemMetrics
MessageBoxA
SetMenu
CreateMenu
AppendMenuW
CreatePopupMenu
ScrollWindow
ScreenToClient
GetWindowRect
SetFocus
GetWindowTextW
RedrawWindow
EnableWindow
SetWindowTextW
DestroyWindow
ShowWindow
GetSysColorBrush
RegisterClassW
UnregisterHotKey
RegisterHotKey
EndPaint
LoadImageW
DrawTextW
DrawIconEx
BeginPaint
LoadIconW
WindowFromDC
CheckDlgButton
IsDlgButtonChecked

gdi32

ExtTextOutW
CreateFontW
BitBlt
GetTextMetricsW
SetTextColor
DeleteDC
StretchBlt
SetBkColor
CreateBitmap
SetBkMode
CreateCompatibleDC
Rectangle
CreatePen
TextOutW
GetStockObject
CreateSolidBrush
SelectObject
GetBkColor
GetObjectW
GetTextColor
DeleteObject

advapi32

RegCreateKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegOpenKeyExW

shell32

ShellExecuteW

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2163ceacee26a2f4cfd557d3943ce300

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 34KB - Virtual size: 34KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 125KB - Virtual size: 124KB

.reloc Size: 22KB - Virtual size: 22KB

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 125KB - Virtual size: 124KB

.reloc
Size: 22KB - Virtual size: 22KB