c8f3fedaf8f34d723b361313658c121df7eec3ce698b3227bce61a8acf33b803

Sharing

Copy URL

Twitter E-mail

General

Target

c8f3fedaf8f34d723b361313658c121df7eec3ce698b3227bce61a8acf33b803
Size

207KB
MD5

776c7b4ad88c875c50e2adda7162ff65
SHA1

00970c26c0b697fbbf032e65f8da8a7d66fd95fe
SHA256

c8f3fedaf8f34d723b361313658c121df7eec3ce698b3227bce61a8acf33b803
SHA512

84440244bb97c90cfb9aa31f351f2de605a5e6ffe74fd6e779a2cba391a2f8e06786c5961cfd73202268ac418dbf83b4e2d0fd9b4f7f7e193b90e675a946293e
SSDEEP

3072:Ve6X65kjCPk+honlMd+COZn5WalJeQo5XTT5m5pn+J:Wk9F5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8f3fedaf8f34d723b361313658c121df7eec3ce698b3227bce61a8acf33b803

Files

c8f3fedaf8f34d723b361313658c121df7eec3ce698b3227bce61a8acf33b803
.exe windows:5 windows x64

7ff399041565abaa934e27a67203d263

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

GetWindowPlacement
EnableWindow
CheckDlgButton
SetRectEmpty
DefWindowProcW
DestroyWindow
DialogBoxParamW
wsprintfW
CheckMenuItem
DispatchMessageW
GetClassLongPtrW
GetClientRect
GetMessageW
LoadCursorW
LoadIconW
LoadMenuW
MessageBoxW
PostQuitMessage
RegisterClassExW
TranslateMessage
UnregisterClassW
GetCursorPos
GetDesktopWindow
SendMessageW
ReleaseDC
GetMenu
GetDlgItemTextW
GetDialogBaseUnits
GetDC
EnableMenuItem
CreateWindowExW
AdjustWindowRect
ShowWindow
SetWindowTextW
SetWindowPos
SetWindowLongPtrW
SendDlgItemMessageW
MapWindowPoints
LoadStringW
GetWindowRect
GetWindowLongPtrW
GetDlgItem
GetDlgCtrlID
EndDialog
SetDlgItemTextW

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW

gdi32

DeleteObject
SelectObject
GetDeviceCaps
GdiGetCharDimensions
CreateFontW

comctl32

CreateStatusWindowW
InitCommonControlsEx

shell32

ShellAboutW

winmm

PlaySoundW
mixerSetControlDetails
mixerGetControlDetailsW
mixerGetLineInfoW
mixerGetLineControlsW
mixerOpen
mixerGetDevCapsW
mixerGetNumDevs
mixerClose

msvcrt

__set_app_type
_wcsicmp
__lconv_init
signal
_wcmdln
__winitenv
_initterm
_fpreset
_cexit
exit
wcslen
__wgetmainargs
_amsg_exit
__setusermatherr
malloc
memset
memcpy
swprintf
wcscmp
_vsnwprintf
wcscpy
_assert

kernel32

LoadResource
HeapReAlloc
FindResourceW
MulDiv
HeapFree
HeapAlloc
GetProcessHeap
SizeofResource
GetModuleHandleA
LoadLibraryW
DeleteCriticalSection
EnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
TlsGetValue
GetCurrentProcessId
LocalAlloc
LocalFree
LockResource
lstrlenW
GetLastError
GetProcAddress
GetStartupInfoW
Sleep
SetUnhandledExceptionFilter
GetCurrentThreadId
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetTickCount

ntdll

DbgPrint

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 159KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ff399041565abaa934e27a67203d263

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

gdi32

comctl32

shell32

winmm

msvcrt

kernel32

ntdll

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 624B

.pdata Size: 1024B - Virtual size: 984B

.rsrc Size: 159KB - Virtual size: 159KB

.reloc Size: 512B - Virtual size: 28B

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 624B

.pdata
Size: 1024B - Virtual size: 984B

.rsrc
Size: 159KB - Virtual size: 159KB

.reloc
Size: 512B - Virtual size: 28B