0e08afb13d3b9e136f27fcaa98311d87

Sharing

Copy URL Twitter E-mail

General

Target

0e08afb13d3b9e136f27fcaa98311d87
Size

117KB
MD5

0e08afb13d3b9e136f27fcaa98311d87
SHA1

cc39fb0157e497e76d4d5ae219e9ccc340e8ad0b
SHA256

c1844e137ff336e341e43b7fd620252ccffba43ba54824d748f431ee65d25576
SHA512

67b67d49aad63885e4601d5fe002ade7198ca1043eac51b895ac731977cbaaffa28b3576304793625f8e6f5c755db44e74e6616a424d949b695a58d1afcf156d
SSDEEP

1536:yKxG0xVVGWFM+CNdflyCBBORz0jfuKyJCIGSH35NOQIh6VQtno:vxG0hGXNVZBQRz0HVSH3mhZtn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e08afb13d3b9e136f27fcaa98311d87

Files

0e08afb13d3b9e136f27fcaa98311d87
.exe windows:4 windows x86 arch:x86

4134667653b692ec00e013d117605acf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIconEx
GetMenuState
SetWindowTextA
FillRect
CreateMenu
GetPropA
EndDeferWindowPos
EnumChildWindows
GetIconInfo
GetCursor
GetDlgItem
DrawMenuBar
IsWindowEnabled
BeginPaint
GetSysColorBrush
SetCursor
EnableMenuItem
CharNextA
GetScrollInfo
MessageBoxA
GetMenuItemID
GetMenuItemCount
FindWindowA
EnableWindow
GetDC
IsChild
CheckMenuItem
GetFocus
BeginDeferWindowPos
ClientToScreen
GetParent
DrawEdge
DrawTextA
IsDialogMessageA
EnumThreadWindows
CallWindowProcA
GetCursorPos
CreateIcon
HideCaret
IsMenu
SetWindowLongA
GetWindow
SetWindowPos
RegisterClassA
DefWindowProcA
ShowWindow
CallNextHookEx
FrameRect
CharToOemA
GetMessagePos
GetSubMenu
GetClientRect
GetDCEx
GetClipboardData
GetClassLongA
GetClassInfoA
DeferWindowPos
DefMDIChildProcA
GetKeyState
SystemParametersInfoA
DefFrameProcA
EnableScrollBar
GetMenuItemInfoA
SetTimer
GetWindowTextA

msvcrt

log10
memmove

kernel32

GetCPInfo
ReadFile
MoveFileA
GetProcessHeap
LocalFree
VirtualQuery
GetLocaleInfoA
GetLocalTime
LockResource
DeleteCriticalSection
MoveFileExA
LoadLibraryA
GetSystemDefaultLangID
GetVersion
EnterCriticalSection
FreeResource
GetVersionExA
lstrcpynA
FindResourceA
WaitForSingleObject
VirtualAllocEx
VirtualAlloc
GetCurrentProcessId
FindFirstFileA
Sleep
HeapAlloc
ExitProcess
lstrcmpA
LocalReAlloc
FormatMessageA
GetFullPathNameA
GetModuleFileNameA
SetHandleCount
GetLastError
GetStringTypeW
CreateThread
lstrcatA
CloseHandle
GetDateFormatA
GetStdHandle
GetDiskFreeSpaceA
GetFileType
GetProcAddress
lstrlenA
HeapDestroy
CompareStringA
GlobalFindAtomA
InitializeCriticalSection
GetCurrentThreadId
RaiseException
GetModuleHandleA
FreeLibrary
GlobalAlloc
LocalAlloc
SetEndOfFile
GetThreadLocale
FindClose
SetErrorMode
DeleteFileA
CreateEventA
SetFilePointer
GetEnvironmentStrings
CreateFileA
LoadLibraryExA

shlwapi

SHDeleteKeyA
SHDeleteValueA
SHGetValueA
SHQueryInfoKeyA

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4134667653b692ec00e013d117605acf

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

shlwapi

Sections

.text Size: 57KB - Virtual size: 56KB

.init Size: 3KB - Virtual size: 3KB

.data Size: 51KB - Virtual size: 51KB

.rdata Size: 2KB - Virtual size: 1KB

.tls Size: 2KB - Virtual size: 1KB

.text
Size: 57KB - Virtual size: 56KB

.init
Size: 3KB - Virtual size: 3KB

.data
Size: 51KB - Virtual size: 51KB

.rdata
Size: 2KB - Virtual size: 1KB

.tls
Size: 2KB - Virtual size: 1KB