65b8b6179c856b56fd11b0cd0432fc65

Sharing

Copy URL

Twitter E-mail

General

Target

65b8b6179c856b56fd11b0cd0432fc65
Size

44KB
MD5

65b8b6179c856b56fd11b0cd0432fc65
SHA1

f8545913ff270b65daa400c9284dd3901486c9a4
SHA256

8f574795bbca7b245c6f21fd172d91c1b5fda740a670c423a1b59abf801361fd
SHA512

2d0f67dbbb17e253e3be8b11946ca3445c125a92861ab117206312cb75cf79ba82bc5444008d94d7adb7ec8fbd9c54abbfa6566aea2e32eef4ac75c920f57274
SSDEEP

768:e2X12E4H0+zypJBvTdgbgxupUkgI+SY9J02QJBPOa5K1e7sZW0m:vglU+zIJBrJxuOtjBw1F50Y0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65b8b6179c856b56fd11b0cd0432fc65

Files

65b8b6179c856b56fd11b0cd0432fc65
.exe windows:1 windows x86 arch:x86

ce0bab20ecf9887333bbf3f17d2a5af7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
GlobalAddAtomA
HeapFree
GetCPInfo
VirtualFree
GetACP
FreeEnvironmentStringsA
GetStartupInfoA
GetThreadContext
SetPriorityClass
InterlockedExchange
CreateFileA
FindResourceA
SetEnvironmentVariableA
TlsSetValue
GetCommandLineW
InterlockedIncrement
GetStringTypeA
LoadLibraryW
CreateProcessA
TerminateThread
GetProcessAffinityMask
SetThreadAffinityMask
GetDateFormatA
GetVersion
CreateFileMappingA
GetSystemDirectoryA
InterlockedDecrement
FindClose
GetFileAttributesA
WriteConsoleW
LocalFree
IsBadReadPtr
GetProcessWorkingSetSize
CloseHandle
QueryPerformanceCounter
ExitThread
LCMapStringW
OpenEventA
GetOEMCP
SetEndOfFile
GetFileTime
PulseEvent
RaiseException
RtlUnwind
LoadResource
LocalAlloc
GetCurrentThread
GetStdHandle
FileTimeToSystemTime
DeleteCriticalSection
GetModuleHandleW
Module32First
lstrcmpA
FormatMessageA
HeapReAlloc
GetCommandLineA
LockResource
GetEnvironmentStringsW
GetModuleHandleA
SizeofResource
GetComputerNameW
GetDriveTypeA
CreateThread
HeapSize
QueryPerformanceFrequency
SearchPathA
CreateEventA
FindFirstFileA
SetUnhandledExceptionFilter
GetCurrentProcess
LeaveCriticalSection
UnmapViewOfFile
IsValidCodePage
GetConsoleMode
MultiByteToWideChar
InitializeCriticalSection
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
SetLastError
GetLastError
SetEvent
ReadProcessMemory
ReadFile
FileTimeToLocalFileTime
lstrcpyA
IsDebuggerPresent
SetStdHandle
lstrlenW
GetModuleFileNameA
VirtualQueryEx
OpenProcess
TlsFree
Module32Next
GetCurrentDirectoryA
GlobalUnlock
LoadLibraryA
GetProcessHeap
WaitForSingleObject
FreeEnvironmentStringsW
GetSystemInfo
GlobalAlloc
SetHandleCount
FreeLibrary
IsBadStringPtrA
SetProcessWorkingSetSize
GetCurrentProcessId
FlushFileBuffers

user32

DrawMenuBar
EnumChildWindows
wsprintfA
FindWindowExA
GetPropA
SetUserObjectSecurity
DrawEdge
GetDlgItemTextA
MapWindowPoints
RegisterClassExA
EnableMenuItem
SetClassLongA
ShowWindowAsync
LoadCursorA
ShowWindow
SetFocus
PostMessageA
SetWindowTextA
CreatePopupMenu
GetWindowPlacement
DeleteMenu
BeginDeferWindowPos
DispatchMessageA
RegisterWindowMessageA
InsertMenuA
GetMenuItemID
UpdateWindow
GetDlgCtrlID
RemoveMenu
OpenClipboard
DialogBoxParamA
ChildWindowFromPoint
WindowFromPoint
GetFocus
DefFrameProcA
SetDlgItemTextA
GetKeyState
EnableWindow
CreateDialogParamA
ClientToScreen
TrackPopupMenuEx
GetClassNameA
GetDC
EndDeferWindowPos
CreateWindowExA
FillRect
SetCursor
RegisterClassA
GetClientRect
GetWindowDC
OffsetRect
CheckMenuItem
SetPropA
GetSysColorBrush
GetMessageA
InflateRect
TranslateMessage
SendMessageA
SendMessageTimeoutA
GetWindowRect
GetCapture
ScreenToClient
SetScrollInfo
GetClassLongA
ReleaseCapture
IsDialogMessageA
GetWindowThreadProcessId
GetScrollInfo
CheckDlgButton
GetSystemMetrics
SetTimer
DialogBoxIndirectParamA
ModifyMenuA
ExitWindowsEx
GetMenuItemCount
GetCursorPos
KillTimer
CreateMenu
RedrawWindow
GetWindow
GetSysColor
EndDialog
CreateIconIndirect
CallWindowProcA
DefDlgProcA
TranslateAcceleratorA
PeekMessageA
DefMDIChildProcA
CloseClipboard
LoadAcceleratorsA
ReleaseDC
PostQuitMessage
SetWindowLongA
CopyRect
GetDesktopWindow
DrawTextA
IsDlgButtonChecked
GetUserObjectSecurity
LoadImageA
SetForegroundWindow
IntersectRect
MessageBoxA
CheckMenuRadioItem
UnionRect
FindWindowA
InvalidateRgn
SetWindowPlacement
IsZoomed
LoadMenuA
IsWindowVisible
SetWindowPos
EndPaint
SystemParametersInfoA
TrackPopupMenu
BeginPaint
EnumWindows

msvcrt

exit
_except_handler3
_initterm
_controlfp
_XcptFilter
_exit
__set_app_type
_adjust_fdiv
__p__fmode
_acmdln
__setusermatherr
memcpy
__p__commode
__getmainargs

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce0bab20ecf9887333bbf3f17d2a5af7

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 156B

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 156B

.rsrc
Size: 512B - Virtual size: 164B