02bebee27daeff412d7da51c72a7df2b2296b18948d0c6933e0b56c54b5a7497

Sharing

Copy URL

Twitter E-mail

General

Target

02bebee27daeff412d7da51c72a7df2b2296b18948d0c6933e0b56c54b5a7497
Size

214KB
MD5

b9ad92028780facaaf64da860eac0e2d
SHA1

3e5fc7e74a0a1bb1cf272eaa55b3e26c5b2c6c00
SHA256

02bebee27daeff412d7da51c72a7df2b2296b18948d0c6933e0b56c54b5a7497
SHA512

fc15648488d57a7107e1084b103962b87c78036fac5d793e69a1d1247139e369946e8882df4001bd9e75301e20a63ef126fd01e22bb00288cd33ae2c1537e5e2
SSDEEP

6144:+j+cJdUpTi8csFW3UGDQYxRXRWubqOalwO:+5LUpTysRuQGRcuGR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02bebee27daeff412d7da51c72a7df2b2296b18948d0c6933e0b56c54b5a7497

Files

02bebee27daeff412d7da51c72a7df2b2296b18948d0c6933e0b56c54b5a7497
.exe windows:4 windows x86

cbc71bac2951dde0fc7562d4450e86cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

mblen
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_controlfp
_initterm
__getmainargs
_acmdln
exit
mblen
__setusermatherr
_XcptFilter

gdi32

GetKerningPairsA
GdiFlush
SetDeviceGammaRamp
OffsetViewportOrgEx
GetGlyphOutlineA
FillRgn
GetTextExtentPoint32A
GetPath
OffsetWindowOrgEx
GetDeviceCaps
AbortDoc
SaveDC
GetDCOrgEx
Rectangle
StrokeAndFillPath
EndDoc
EnumObjects
GetBoundsRect
GetMapMode
SetPixel
GetTextCharset
GetEnhMetaFileDescriptionA
GetTextCharsetInfo
GetCharABCWidthsA
SetViewportExtEx
SwapBuffers
GetStockObject
GetSystemPaletteEntries
IntersectClipRect
MaskBlt
CreateEllipticRgn
CreateHalftonePalette
RoundRect
GetDIBColorTable
SetAbortProc
GetEnhMetaFileHeader
SetTextCharacterExtra
GetWindowOrgEx
DeleteMetaFile
CloseEnhMetaFile
LineTo
GetEnhMetaFileDescriptionW
AddFontResourceA
SetPaletteEntries
CreateEllipticRgnIndirect
GetTextExtentPoint32W
DeleteObject
SetTextColor
CreatePenIndirect
GetClipBox
SetBkMode
CopyMetaFileW
SelectPalette
UpdateColors
SetWinMetaFileBits
RectInRegion
CreateDIBPatternBrush
GetGlyphOutlineW
SetSystemPaletteUse
SetTextAlign
SetICMMode
ExtTextOutA
CreatePatternBrush

kernel32

_lopen
_lopen
BuildCommDCBAndTimeoutsA

shell32

ord180
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetSettings
FindExecutableW
SHGetPathFromIDListA

user32

DestroyWindow
ChildWindowFromPoint
LoadMenuA
MessageBoxW
GetMenuState
GetClassNameA
SystemParametersInfoA
SetTimer
MoveWindow
GetNextDlgGroupItem
TranslateAcceleratorA
InvalidateRect
EnableMenuItem
SetForegroundWindow
ScreenToClient
SetDlgItemTextW
GetDCEx
UnregisterClassA
IsDialogMessageA
GetMenuItemInfoW
GetWindowLongW
InvalidateRgn
GetMenu
EndDialog
SetScrollRange
LoadStringW
GetWindowRect
SetWindowLongA
DispatchMessageA
CharLowerBuffA
GetKeyState
DefDlgProcA
SetMenuItemInfoA
SendNotifyMessageW
GetMessagePos
SetWindowPos
SetDlgItemInt
DeleteMenu
GetDoubleClickTime
GetOpenClipboardWindow
BeginDeferWindowPos
GetWindowTextA
RedrawWindow

advapi32

RegDeleteValueA

wininet

HttpAddRequestHeadersW
FtpRemoveDirectoryA
InternetTimeFromSystemTime
UnlockUrlCacheEntryFile
HttpOpenRequestA
InternetErrorDlg
GopherCreateLocatorW
FindCloseUrlCache
InternetSetOptionA
HttpSendRequestW
InternetCombineUrlA
CreateUrlCacheEntryA
GopherFindFirstFileA
FtpPutFileA
DeleteUrlCacheEntry
InternetSetOptionExW
GopherGetAttributeA
InternetUnlockRequestFile
FindNextUrlCacheEntryA
FtpRemoveDirectoryW
FtpRenameFileW
InternetGoOnline
InternetDial
InternetCloseHandle
InternetCreateUrlA

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.axc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cbc71bac2951dde0fc7562d4450e86cc

Headers

File Characteristics

Imports

msvcrt

gdi32

kernel32

shell32

user32

advapi32

wininet

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 149KB

.rsrc Size: 148KB - Virtual size: 144KB

.axc Size: 4KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 149KB

.rsrc
Size: 148KB - Virtual size: 144KB

.axc
Size: 4KB - Virtual size: 4KB