fbe0b13bfa359cffd47774669378d7e5

Sharing

Copy URL

Twitter E-mail

General

Target

fbe0b13bfa359cffd47774669378d7e5
Size

306KB
MD5

fbe0b13bfa359cffd47774669378d7e5
SHA1

2a80a080366637886b8690eff37a41e42ce84963
SHA256

a9c75a2b8d18432e7428dce1026474e4c0eac370a032654a38cc911d1a04e760
SHA512

e886099c80072deff37cf4048149e6aa48508e69d878b3e5b48fbe159ef531c5959b2fb888a8a117da0567d9e0399290f0b97e8b57b7fe8661c9daa57404ca5f
SSDEEP

6144:TkffgLMn3vkkrpopJEFGLEGGwbHA8wAL1XsyrvvJwju:wQQ3vhopJBtsXPwx9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbe0b13bfa359cffd47774669378d7e5

Files

fbe0b13bfa359cffd47774669378d7e5
.exe windows:5 windows x86 arch:x86

df29cd8c7c5c11f568c44939eb4103fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
DeleteDC
StretchBlt
SelectObject
CreateCompatibleBitmap
GetObjectW
CreateCompatibleDC
GetDeviceCaps
AbortDoc
AngleArc
Arc
ArcTo
BitBlt
Chord
CopyEnhMetaFileW
CreateBitmap
CreateBrushIndirect
CreateDCW
CreateDIBSection
CreateDIBitmap
CreateFontIndirectW
CreateHalftonePalette
CreateICW
CreatePalette
CreatePenIndirect
CreateRectRgn
CreateSolidBrush
DeleteEnhMetaFile
Ellipse
EndDoc
EndPage
EnumFontFamiliesExW
EnumFontsW
ExcludeClipRect
ExtFloodFill
ExtTextOutW
FrameRgn
GdiFlush
GetBitmapBits
GetBrushOrgEx
GetClipBox
GetCurrentPositionEx
GetDIBColorTable
GetDIBits

kernel32

GetTempPathA
DeleteFileA
FindFirstFileA
FindNextFileA
FindClose
SetFilePointer
MulDiv
ReadFile
WriteFile
GetPrivateProfileStringA
WritePrivateProfileStringA
LocalAlloc
CloseHandle
GetStdHandle
FindFirstFileW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CreateThread
GetCurrentThreadId
SwitchToThread
ExitThread
ExitProcess
RaiseException
RtlUnwind
UnhandledExceptionFilter
GetLastError
FreeLibrary
GetCommandLineW
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetStartupInfoW
LoadLibraryExW
GetACP
MultiByteToWideChar
WideCharToMultiByte
GetLocaleInfoW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
SetThreadLocale
IsValidLocale
CompareStringW
GetVersion
GetSystemInfo
GetTickCount
QueryPerformanceCounter
VirtualQuery
lstrlenW
VirtualAlloc
VirtualFree
Sleep
LocalFree
TlsGetValue
TlsSetValue
LoadLibraryA
GetPrivateProfileStringW
GetLongPathNameW
GetSystemDefaultLangID
GetSystemTimes
GetTempPathW
GetThreadLocale
WritePrivateProfileStringW
HeapAlloc
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapFree
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
SetHandleCount
GetFileType
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetOEMCP
GetModuleHandleA
TlsAlloc
TlsFree
SetLastError
HeapReAlloc
HeapDestroy
HeapCreate
GetModuleFileNameA
GetTimeZoneInformation
SetStdHandle
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
HeapSize
CreateFileA
CompareStringA
SetEnvironmentVariableA

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 222KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

df29cd8c7c5c11f568c44939eb4103fc

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 222KB - Virtual size: 221KB

.data Size: 6KB - Virtual size: 117KB

.rsrc Size: 1KB - Virtual size: 26KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 222KB - Virtual size: 221KB

.data
Size: 6KB - Virtual size: 117KB

.rsrc
Size: 1KB - Virtual size: 26KB