b5eddb4261f06b7c36f0060833046ce1[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

b5eddb4261f06b7c36f0060833046ce1.bin
Size

31.5MB
MD5

b5eddb4261f06b7c36f0060833046ce1
SHA1

8a78f7299bf919091bfb0a7e2ac2119ff4d7c5bf
SHA256

710b36eddb20fc43620d768e91a46bf7fe8a9e1aab8ef6de2d38a7d3d4ffbac7
SHA512

a4bf2796a2df5dc0b85b04134fe9900ae17342583d0c8f8212c3b39906ad2e999e78197c53534cc5b919a9620f8ff28b73806d606f8ae05ac07df35cf5dd0890
SSDEEP

786432:2bgPrLFIhSfVKiOkKsOrs/XbG8JpM6RzHjv0q6sinwE6dre40nUP:JP3FIhSfVKiOkKsP/Xbf4kzHB6siwBd5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b5eddb4261f06b7c36f0060833046ce1.bin

Files

b5eddb4261f06b7c36f0060833046ce1.bin
.exe windows:4 windows x86 arch:x86

611cd6c3c4fbb2891c1a3bcda396b613

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateDirectoryW
EnumResourceTypesA
GetStdHandle
GetWindowsDirectoryA
GetOEMCP
WaitForSingleObject
ExitProcess
LockResource
SetFilePointer
GlobalSize
GetExitCodeThread
CreateToolhelp32Snapshot
LoadLibraryW
DeleteCriticalSection
GetEnvironmentStringsW
LoadLibraryA
Process32NextW
LocalFree
Process32FirstW
CreateFileA
ResumeThread
SetLastError
PeekNamedPipe
GetCurrentDirectoryW
GlobalAlloc
GetCommandLineW
ReadFile
FormatMessageW
SuspendThread
MultiByteToWideChar
ExitThread
GetFullPathNameW
GetFileSize
CreateFileW
HeapAlloc
GetCurrentProcessId
SetEndOfFile
CompareStringW
GetExitCodeProcess
GetCommandLineA
GetModuleFileNameW
GetProcAddress
FreeLibrary
GetThreadLocale
InitializeCriticalSection
GetCPInfo
EnumCalendarInfoA
GetThreadPriority
CompareStringA
GetACP
FileTimeToDosDateTime
CreateThread
GetDateFormatA
MulDiv
GetCurrentThread
RaiseException
GetModuleFileNameA
FileTimeToLocalFileTime
ResetEvent
GetCurrentThreadId
SetThreadLocale
IsDebuggerPresent
WideCharToMultiByte
GetVersionExA
HeapFree
GlobalLock
GetTimeZoneInformation
DeviceIoControl
GetDateFormatW
MoveFileW
EnterCriticalSection
FormatMessageA
VirtualProtect
CloseHandle
GetFileAttributesW
TryEnterCriticalSection
GetCurrentProcess
FindClose
GetDriveTypeA
SetThreadPriority
GetConsoleOutputCP
FreeResource
GlobalAddAtomA
OpenThread
CreateMutexA
GetTickCount64
GetLocalTime
FindFirstFileA
GetProcessHeap
GetStartupInfoA
IsBadReadPtr
FindFirstFileExW
GetLastError
CreateEventA
TerminateThread
GetSystemInfo
GetConsoleCP
FindNextFileA
EnumResourceLanguagesA
VirtualFree
TlsAlloc
CreateProcessW
GetConsoleMode
SizeofResource
GetTickCount
TlsSetValue
EnumResourceNamesA
VirtualAlloc
GlobalDeleteAtom
FindResourceExA
LeaveCriticalSection
FindResourceA
SetEvent
GetLocaleInfoW
GlobalUnlock
GetModuleHandleA
WriteFile
TlsGetValue
ReadProcessMemory
LocalAlloc
FreeEnvironmentStringsW
FindNextFileW
GetUserDefaultLCID
LoadResource
GlobalReAlloc
Sleep
GetLocaleInfoA
RtlUnwind

oleaut32

SafeArrayPtrOfIndex
SafeArrayUnaccessData
VariantInit
SafeArrayCreate
SafeArrayGetLBound
VariantClear
VariantCopy
SafeArrayAccessData
SafeArrayGetElement
SafeArrayPutElement
SysReAllocStringLen
SafeArrayGetUBound
VariantChangeTypeEx
SysAllocStringLen
SafeArrayRedim
SysFreeString

user32

SetWindowLongA
InflateRect
CreateIconIndirect
CreateWindowExA
EnumThreadWindows
GetWindowThreadProcessId
SetCapture
EmptyClipboard
SetMenu
SetWindowTextW
CharUpperA
GetIconInfo
GetScrollInfo
GetMenuItemInfoA
SendMessageA
GetClassLongA
DispatchMessageW
ReleaseCapture
MessageBeep
GetMenuItemInfoW
GetCapture
RemovePropA
EnableMenuItem
ShowOwnedPopups
CharLowerBuffW
SetParent
DrawEdge
RegisterClassA
LoadBitmapA
SetCursorPos
CloseClipboard
SetCursor
ScrollWindowEx
SetWindowPlacement
DestroyMenu
GetClassInfoW
GetSystemMetrics
RedrawWindow
BeginPaint
SetWindowRgn
SwitchToThisWindow
GetKeyState
GetUpdateRect
InvalidateRgn
MoveWindow
ChildWindowFromPointEx
GetWindowRect
PostMessageA
UnregisterClassA
GetCursorPos
GetCaretPos
CharUpperBuffA
ScreenToClient
RemoveMenu
DrawIconEx
SetCaretPos
FlashWindowEx
IsZoomed
CharToOemA
SetWindowLongW
SetWindowPos
IsWindowEnabled
GetWindowLongW
MessageBoxW
GetSubMenu
OffsetRect
IsClipboardFormatAvailable
GetClassInfoA
PeekMessageA
PostQuitMessage
GetWindowTextLengthW
GetClassNameA
DrawMenuBar
GetLastActivePopup
SetFocus
GetClipboardData
DefWindowProcA
DrawTextW
RegisterClipboardFormatA
LoadCursorA
TranslateMDISysAccel
DestroyCursor
MessageBoxA
FrameRect
SetRect
DestroyIcon
DefFrameProcW
HideCaret
GetTopWindow
ShowScrollBar
SetSysColors
SendMessageW
DeferWindowPos
IntersectRect
GetParent
CallNextHookEx
CallWindowProcW
IsMenu
GetPropA
SetActiveWindow
EnumClipboardFormats
GetWindow
EnumPropsA
GetSysColor
PeekMessageW
UpdateWindow
DeleteMenu
DestroyWindow
CreateWindowExW
ShowWindow
UnregisterClassW
DrawFrameControl
SystemParametersInfoA
CopyImage
GetWindowDC
EnableScrollBar
LoadImageA
GetMenu
GetClientRect
SetForegroundWindow
FillRect
GetDCEx
LoadIconA
SetPropA
EnableWindow
GetMenuItemRect
ShowCaret
GetDC
CountClipboardFormats
TrackPopupMenuEx
CreateCaret
SetTimer
BringWindowToTop
GetDesktopWindow
IsWindowVisible
KillTimer
CharUpperBuffW
GetWindowPlacement
IsWindow
CharLowerA
RegisterClassW
WindowFromPoint
DefMDIChildProcW
GetMenuItemCount
GetActiveWindow
SetMenuItemInfoW
DefWindowProcW
CreatePopupMenu
BeginDeferWindowPos
AdjustWindowRectEx
SetScrollInfo
GetDoubleClickTime
IsIconic
MsgWaitForMultipleObjects
EndDeferWindowPos
ShowWindowAsync
GetFocus
OpenClipboard
InsertMenuItemW
DrawFocusRect
WindowFromDC
InvalidateRect
GetSysColorBrush
MapWindowPoints
ClientToScreen
GetSystemMenu
CreateMenu
TranslateMessage
CallWindowProcA
SetClassLongA
CharLowerBuffA
GetWindowLongA
GetWindowTextW
GetForegroundWindow
GetClipboardFormatNameA
ReleaseDC
EndPaint
FindWindowExW
DrawStateW
DestroyCaret
SetClipboardData

advapi32

RegOpenKeyExW
OpenProcessToken
AdjustTokenPrivileges
RegQueryInfoKeyW
RegEnumValueW
GetUserNameA
QueryServiceStatus
OpenSCManagerW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
LookupPrivilegeValueA
GetTokenInformation
OpenServiceW
RegEnumKeyExW
RegFlushKey

gdi32

GetStockObject
SetStretchBltMode
PaintRgn
MaskBlt
Chord
SetPolyFillMode
GetTextMetricsA
GetBitmapBits
GetCurrentObject
SetBkMode
EnumFontFamiliesExW
GetTextColor
DeleteDC
Polyline
ExtFloodFill
GetObjectA
SetTextAlign
EqualRgn
SetTextColor
Rectangle
GetTextAlign
IntersectClipRect
GetObjectW
GetTextExtentPointA
OffsetRgn
GetClipRgn
PolyBezier
GetDIBits
GetDeviceCaps
ExtCreateRegion
SetViewportExtEx
ExtTextOutA
CreateRoundRectRgn
LPtoDP
CreateFontIndirectW
CreateDIBSection
SetWindowExtEx
ExtCreatePen
CreateCompatibleBitmap
SetWindowOrgEx
StretchBlt
GetROP2
LineTo
ExtTextOutW
GetClipBox
SetTextCharacterExtra
CreatePatternBrush
GetObjectType
RestoreDC
EnumFontFamiliesA
CreateEllipticRgn
TextOutW
GetBkColor
RectVisible
CreateCompatibleDC
CreatePen
RoundRect
GetViewportExtEx
MoveToEx
SetBrushOrgEx
CreatePenIndirect
SetRectRgn
CreateFontIndirectA
SelectPalette
GetDCOrgEx
CreateSolidBrush
SelectObject
CreateBitmap
CreateBrushIndirect
DeleteObject
Ellipse
CreateDIBitmap
CreatePolygonRgn
SelectClipRgn
GetRgnBox
DPtoLP
GetTextExtentExPointW
SetArcDirection
GetWindowOrgEx
SaveDC
SetROP2
GetTextExtentPoint32W
GetCharABCWidthsW
FillRgn
RealizePalette
GetRegionData
Polygon
ExcludeClipRect
GetCharABCWidthsA
RectInRegion
PtInRegion
SetMapMode
OffsetViewportOrgEx
ExtSelectClipRgn
PatBlt
BitBlt
Arc
SetPixel
CreateRectRgn
Pie
GetRandomRgn
SetViewportOrgEx
GetWindowExtEx
SetBkColor
CombineRgn
GetPixel
GetViewportOrgEx
GetMapMode

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shell32

SHGetFolderPathW
SHGetKnownFolderPath
DragQueryFileA
ShellExecuteExW
DragFinish
DragAcceptFiles
ShellExecuteW
DragQueryFileW

ole32

OleInitialize
OleUninitialize

comctl32

_TrackMouseEvent
ImageList_Destroy
ImageList_BeginDrag
ImageList_SetImageCount
InitCommonControls
ImageList_DrawEx
ImageList_DragMove
ImageList_Remove
ImageList_Copy
ImageList_GetImageCount
ImageList_Create
ImageList_DragLeave
ImageList_Add
ImageList_EndDrag
ImageList_DragEnter
ImageList_AddMasked
ImageList_DrawIndirect
ImageList_Replace
ImageList_DragShowNolock

psapi

EnumProcessModules

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 47KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

611cd6c3c4fbb2891c1a3bcda396b613

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

advapi32

gdi32

version

shell32

ole32

comctl32

psapi

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.data Size: 708KB - Virtual size: 708KB

.rdata Size: 374KB - Virtual size: 373KB

.bss Size: - Virtual size: 47KB

.CRT Size: 512B - Virtual size: 12B

.idata Size: 12KB - Virtual size: 12KB

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 132KB - Virtual size: 132KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.data
Size: 708KB - Virtual size: 708KB

.rdata
Size: 374KB - Virtual size: 373KB

.bss
Size: - Virtual size: 47KB

.CRT
Size: 512B - Virtual size: 12B

.idata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 132KB - Virtual size: 132KB