0cb2290f3de28be3965aed7fa5a67914

Sharing

Copy URL Twitter E-mail

General

Target

0cb2290f3de28be3965aed7fa5a67914
Size

47KB
MD5

0cb2290f3de28be3965aed7fa5a67914
SHA1

01f2ba75c1a58bd995bf89a5eb03c088b022d232
SHA256

be5caaa363327bdf0db1600f83534c4a10b1baa9e0dc9ead01f936a1cccd7071
SHA512

9f6e2eedcdf29fd2a16e035004b22d3f773e3435ef93a3bba7bf648db4c784eb02bbb2ea91337c0f00b9beb5847960f072ee8e090cd149054a90e40db5f61934
SSDEEP

768:2JOPx1njygL5IKbatGurWufr2QseQvxevGPOGhy1IPiSotuPr:2EJVj7+Ke8uNKdeQvkvGThOIsQT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cb2290f3de28be3965aed7fa5a67914

Files

0cb2290f3de28be3965aed7fa5a67914
.exe windows:4 windows x86 arch:x86

47d9813dc19c6d5d5b8bf9b9e71ebaa5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
CloseHandle
CommConfigDialogA
CompareStringA
ConvertDefaultLocale
CreateDirectoryA
CreateFiber
EndUpdateResourceW
ExitProcess
ExpandEnvironmentStringsW
FindAtomW
FreeConsole
GenerateConsoleCtrlEvent
GetCommandLineW
GetConsoleCommandHistoryLengthA
GetConsoleHardwareState
GetConsoleInputWaitHandle
GetConsoleKeyboardLayoutNameA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetFileAttributesExW
GetFileInformationByHandle
GetFullPathNameW
GetHandleInformation
GetLastError
GetLocalTime
GetModuleHandleA
GetModuleHandleW
GetPrivateProfileSectionA
GetPrivateProfileSectionNamesA
GetPrivateProfileStringW
GetPrivateProfileStructA
GetStartupInfoW
GetStringTypeExA
GetSystemDirectoryW
GetSystemTime
GetTempFileNameA
GetThreadLocale
GetTimeFormatA
GetTimeFormatW
GetVersion
GetVersionExA
GlobalFindAtomW
GlobalGetAtomNameW
GlobalLock
GlobalUnWire
InterlockedCompareExchange
IsDBCSLeadByteEx
IsDebuggerPresent
IsValidLocale
LCMapStringA
LocalShrink
LocalUnlock
MulDiv
OpenEventA
OpenEventW
OpenFile
OpenWaitableTimerW
OutputDebugStringA
Process32Next
ReadConsoleOutputW
ReadConsoleOutputAttribute
RemoveDirectoryA
RtlZeroMemory
SearchPathA
SetComputerNameA
SetConsoleCP
SetConsoleCursorInfo
SetConsoleDisplayMode
SetConsoleInputExeNameW
SetConsoleTextAttribute
SetConsoleWindowInfo
SetLastError
SetTapePosition
SetThreadPriorityBoost
SetVDMCurrentDirectories
Thread32Next
UpdateResourceW
VirtualAlloc
VirtualProtect
VirtualQuery
WaitNamedPipeA
WaitNamedPipeW
WriteConsoleW
WriteFile
WritePrivateProfileStringA
WritePrivateProfileStructW
_lclose
_lread
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpynW
lstrlenW

user32

BeginPaint
BlockInput
BroadcastSystemMessageA
BroadcastSystemMessageW
CallWindowProcA
ChangeMenuW
CharPrevW
CharToOemW
CharUpperA
CharUpperW
CloseDesktop
CreateCaret
CreateCursor
CreateDialogParamW
CreateMDIWindowW
CreateWindowExA
DdeCreateStringHandleW
DdeDisconnect
DdeFreeDataHandle
DdeFreeStringHandle
DdeGetQualityOfService
DefDlgProcW
DlgDirListA
DlgDirListComboBoxW
DlgDirSelectComboBoxExW
DragDetect
DrawCaption
DrawStateW
DrawTextA
DrawTextW
DrawTextExW
EmptyClipboard
EndMenu
EnumDisplaySettingsExW
EnumPropsW
EnumWindowStationsW
EnumWindows
ExcludeUpdateRgn
ExitWindowsEx
GetActiveWindow
GetCapture
GetClassInfoW
GetClassInfoExA
GetClassNameW
GetClipCursor
GetComboBoxInfo
GetCursor
GetCursorInfo
GetDlgCtrlID
GetDlgItemTextW
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetMenu
GetMenuCheckMarkDimensions
GetMenuItemRect
GetMenuStringW
GetMessageW
GetParent
GetScrollBarInfo
GetWindowDC
ImpersonateDdeClientWindow
IsCharUpperW
LoadMenuIndirectA
MessageBoxW
MessageBoxIndirectW
ModifyMenuA
MoveWindow
PostMessageA
PostMessageW
RedrawWindow
RegisterClassA
RegisterWindowMessageW
ScrollChildren
ScrollWindow
ScrollWindowEx
SendInput
SendNotifyMessageA
SendNotifyMessageW
SetClassLongW
SetDoubleClickTime
SetKeyboardState
SetMenuItemBitmaps
SetMessageExtraInfo
SetParent
ShowOwnedPopups
ShowWindow
TrackMouseEvent
TranslateAcceleratorA
TranslateAcceleratorW
UnregisterDeviceNotification

gdi32

Chord
CreateEllipticRgnIndirect
CreateFontW
CreateICA
CreateRectRgn
DeleteMetaFile
DescribePixelFormat
EnumEnhMetaFile
ExtSelectClipRgn
GdiComment
GdiGetBatchLimit
GdiPlayDCScript
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorAdjustment
GetColorSpace
GetCurrentObject
GetEnhMetaFileDescriptionW
GetPixel
GetPolyFillMode
GetRasterizerCaps
GetTextAlign
GetTextCharacterExtra
PlayMetaFileRecord
Polygon
Rectangle
RestoreDC
ScaleViewportExtEx
SetPaletteEntries
SetPixelFormat
SetTextAlign
SetTextJustification
SetWinMetaFileBits
SetWindowExtEx
StretchDIBits
TextOutA

msvcrt

_Getmonths
_cwait
_dup
_execvp
_fcvt
_flushall
_getcwd
_getsystime
_pctype
_setmode
_snprintf
_spawnve
_splitpath
_strdup
_wexeclp
_winmajor
_winver
_wmkdir
_wputenv
_wsopen
_wspawnl
fclose
fputs
isgraph
iswalnum
iswdigit
iswprint
iswspace
malloc
qsort
rename
setbuf
strrchr
strtok
toupper
vsprintf
vswprintf
wcsftime

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.torr
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47d9813dc19c6d5d5b8bf9b9e71ebaa5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 34KB - Virtual size: 43KB

.torr Size: 6KB - Virtual size: 13KB

.reloc Size: 1024B - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 34KB - Virtual size: 43KB

.torr
Size: 6KB - Virtual size: 13KB

.reloc
Size: 1024B - Virtual size: 5KB