SecuriteInfo[.]com[.]Variant[.]Babar[.]303591[.]441[.]8343

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Variant.Babar.303591.441.8343
Size

2.2MB
MD5

c7f332011880ee0a1661288f16bfddf3
SHA1

d64c183f9009cdf469978f0e9572862250fad45e
SHA256

7b83e21ee97e5655f2601a5358302229d1ea4211a6ab50b1ec62a4c76c9c623f
SHA512

e3d0e3cd8ce64f718027be8372c492d1327587843924ad5571cef57d6bec1d11ea958dd35d84592a8afa2fccf3c2ebf30a30b7525e3f6db4f5f165117d6ba4ce
SSDEEP

49152:flwIX4Dkn+zLG0fdP5VG0BcEEDocKHsR1X3F+DR6/PcHSYu0:twa4D2S5VG0Ba0tHq58DGUE0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Variant.Babar.303591.441.8343

Files

SecuriteInfo.com.Variant.Babar.303591.441.8343
.exe windows:5 windows x86

2c4d9154d51dff5c506e63e5a6ee71a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey

comctl32

_TrackMouseEvent

gdi32

Escape

kernel32

SetFilePointer

oleaut32

SafeArrayGetElement

rasapi32

RasHangUpA

shell32

Shell_NotifyIcon

user32

GetSysColorBrush

wininet

InternetCanonicalizeUrlA

winmm

midiStreamRestart

winspool.drv

OpenPrinterA

ws2_32

send

comdlg32

ChooseColorA

ole32

CLSIDFromProgID

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.nsp0
Size: 1017KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 976KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c4d9154d51dff5c506e63e5a6ee71a9

Headers

File Characteristics

Imports

advapi32

comctl32

gdi32

kernel32

oleaut32

rasapi32

shell32

user32

wininet

winmm

winspool.drv

ws2_32

comdlg32

ole32

msvcrt

iphlpapi

psapi

Sections

.nsp0 Size: 1017KB - Virtual size: 1.7MB

.sedata Size: 976KB - Virtual size: 976KB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 9KB - Virtual size: 12KB

.sedata Size: 4KB - Virtual size: 4KB

.nsp0
Size: 1017KB - Virtual size: 1.7MB

.sedata
Size: 976KB - Virtual size: 976KB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 9KB - Virtual size: 12KB

.sedata
Size: 4KB - Virtual size: 4KB