0c371f959af9ba1e2cce129de0bfc830

Sharing

Copy URL Twitter E-mail

General

Target

0c371f959af9ba1e2cce129de0bfc830
Size

19KB
MD5

0c371f959af9ba1e2cce129de0bfc830
SHA1

e2b3c5f75aa23251c10422239299fb868453fb42
SHA256

6ebe8c2393cc1c4a738d8b065d4b70a51bb6412eda82d6267a90ba53e4753d01
SHA512

c84d5a362257c1b3d36f16dd967a14ee101f70810525b30fa6a5f90036fa3500406685dd0ac29c71b7965f2a980fd00eb821a93cf50a9b8bdea2eed8d05f289e
SSDEEP

192:lV5xeiv34VbxeP8mYBL1IFkFfHar8ERkDePtcjYPgvyp+3a15K0+8mf9ND3koxYc:f5xeyIVbxePG1I1Y3rLaWa15rxmfJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c371f959af9ba1e2cce129de0bfc830

Files

0c371f959af9ba1e2cce129de0bfc830
.exe windows:5 windows x86 arch:x86

e9ba4a0f2a12e0f8ca24f249c1145e45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
BackupWrite
Beep
BeginUpdateResourceW
CommConfigDialogA
ContinueDebugEvent
CreateJobObjectA
CreateNamedPipeA
CreateNamedPipeW
CreateSemaphoreW
CreateToolhelp32Snapshot
CreateWaitableTimerA
DeleteFiber
EnumCalendarInfoA
EnumDateFormatsA
EnumResourceLanguagesA
EnumResourceTypesA
EnumSystemLanguageGroupsW
FatalAppExitW
FindClose
FindNextVolumeA
FindNextVolumeMountPointA
FoldStringW
GenerateConsoleCtrlEvent
GetComputerNameA
GetConsoleAliasA
GetConsoleAliasExesW
GetConsoleFontSize
GetConsoleTitleA
GetConsoleTitleW
GetDefaultCommConfigW
GetFileSize
GetHandleInformation
GetLargestConsoleWindowSize
GetLongPathNameA
GetModuleHandleW
GetPrivateProfileStringW
GetPrivateProfileStructA
GetProcessHeaps
GetQueuedCompletionStatus
GetSystemDirectoryW
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetUserDefaultLCID
GlobalAddAtomA
GetProcAddress
GlobalUnWire
GlobalUnlock
HeapWalk
LCMapStringA
LocalLock
MapUserPhysicalPagesScatter
Module32First
OpenJobObjectW
OpenThread
OutputDebugStringW
PeekNamedPipe
Process32Next
QueryInformationJobObject
RaiseException
RequestWakeupLatency
SearchPathW
SetCalendarInfoA
SetComputerNameW
SetConsoleCtrlHandler
SetConsoleCursor
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTitleA
SetCurrentDirectoryA
SetCurrentDirectoryW
SetHandleCount
SetTapePosition
SetThreadAffinityMask
SetThreadContext
SuspendThread
Toolhelp32ReadProcessMemory
UnhandledExceptionFilter
UpdateResourceA
VerLanguageNameW
VirtualAlloc
VirtualFree
WriteConsoleOutputA
WriteFile
WriteFileEx
WritePrivateProfileSectionW
_hwrite
_llseek
lstrcmp
lstrcpy
lstrlenA
GlobalFlags
GetModuleHandleA

msvcrt

memset

user32

LoadBitmapW
BlockInput
ChangeDisplaySettingsExA
CharNextW
CharUpperBuffA
CheckRadioButton
ChildWindowFromPoint
CloseDesktop
CopyIcon
CreateAcceleratorTableA
CreateMDIWindowW
CreateWindowExW
DdeCreateDataHandle
DdeDisconnect
DdeDisconnectList
DdeFreeDataHandle
DdeGetLastError
DdeQueryStringA
DdeQueryStringW
DefFrameProcA
DestroyWindow
DispatchMessageA
DrawFrame
DrawStateW
EnumChildWindows
EnumDesktopsA
EnumPropsExA
ExcludeUpdateRgn
GetAltTabInfoW
GetAncestor
GetClassInfoExW
GetClassInfoW
GetClassWord
GetClipboardData
GetClipboardFormatNameA
GetClipboardViewer
GetCursorPos
GetDCEx
GetDoubleClickTime
GetKeyNameTextA
GetLastActivePopup
GetMenu
GetMenuContextHelpId
GetMessagePos
GetMouseMovePointsEx
GetOpenClipboardWindow
GetPriorityClipboardFormat
GetScrollRange
GetTabbedTextExtentA
GetWindow
GetWindowWord
GrayStringA
IMPGetIMEA
InvalidateRect
IsCharAlphaA
IsDialogMessageW
LoadCursorFromFileA
LoadCursorW
LoadStringW
MapVirtualKeyA
MessageBoxExA
MessageBoxIndirectW
MonitorFromWindow
OemToCharA
OemToCharW
PostMessageA
PostThreadMessageA
RealGetWindowClass
RegisterClassExW
ReuseDDElParam
SendInput
SetCapture
SetCaretPos
SetDoubleClickTime
SetKeyboardState
SetMenuItemBitmaps
SetParent
SetScrollInfo
SetSystemCursor
SetUserObjectInformationW
SystemParametersInfoW
TileWindows
ToAsciiEx
ToUnicode
TrackPopupMenu
TranslateAccelerator
UnhookWinEvent
UnregisterDeviceNotification
UpdateLayeredWindow
VkKeyScanExA
VkKeyScanExW
WaitForInputIdle

advapi32

RegOpenKeyExW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9ba4a0f2a12e0f8ca24f249c1145e45

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 6KB - Virtual size: 6KB

.text2 Size: 9KB - Virtual size: 9KB

.data Size: 512B - Virtual size: 136B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.text2
Size: 9KB - Virtual size: 9KB

.data
Size: 512B - Virtual size: 136B

.rsrc
Size: 2KB - Virtual size: 1KB