08d01cef1748febccdebec70ef47451f

Sharing

Copy URL Twitter E-mail

General

Target

08d01cef1748febccdebec70ef47451f
Size

16KB
MD5

08d01cef1748febccdebec70ef47451f
SHA1

9ca4ae951135b8add3fadea881121aa5973087f8
SHA256

89cf0612b3e5924f3b74c9670e421630397d00a4cdb32195e39648bbe6bc3165
SHA512

95f1b0aa9425aa1442962a1589db1f86435e532baf1e2218a683b78883a3fbac73a2b885bec5b83c7457892944d87127b373688f167ce6183f348b5dfdfa1a3f
SSDEEP

384:w1ybPqPKve9KAjN0YOf30dvaXyTdBZEV8P3b85PNTJFl:1Syve9K40l30dva8Nfb8JNTJ3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08d01cef1748febccdebec70ef47451f

Files

08d01cef1748febccdebec70ef47451f
.exe windows:4 windows x86 arch:x86

315fa575cb38bcd7e9bb06c0dc98ffef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
OpenFileMappingA
DeleteFileA
DeleteAtom
CopyFileExA
CreateThread
GetCPInfo
GetStdHandle
CopyFileExW
OpenFile
FindAtomA
ReadConsoleA
GetComputerNameA
FindFirstFileA
Sleep
DeleteFileW
GetFileTime
CreateDirectoryA
CreateProcessA
GetCommandLineA
ExitThread
CopyFileA
DeleteFileA
CopyFileExW
FindAtomA
GetConsoleMode
GetFileTime
CopyFileW
ReadConsoleA
ReadFile
ExitThread
CopyFileExA
WriteFile
OpenFileMappingA
Sleep
GetLastError
GetComputerNameA
CreateDirectoryA
SetLastError
OpenFile
DeleteFileW
GetStdHandle
FindFirstFileA
GlobalFree
GetCPInfo
CopyFileExW
DeleteFileA
CreateThread
CopyFileW
CreateDirectoryA
Sleep
FindAtomA
GetCommandLineA
ReadConsoleA
DeleteAtom
OpenFile
ReadFile
FindFirstFileA
CreateProcessA
DeleteFileW
GetStdHandle

comctl32

ImageList_ReplaceIcon
ImageList_DragMove
ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Merge
ImageList_AddIcon
ImageList_BeginDrag
ImageList_Copy
ImageList_Destroy
ImageList_GetImageRect
ImageList_DragEnter
ImageList_Draw
ImageList_Create
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_LoadImageW
ImageList_GetIcon
ImageList_Replace
ImageList_DragLeave
ImageList_LoadImage
ImageList_Merge
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Copy
ImageList_Remove
ImageList_LoadImageW
ImageList_Replace
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_LoadImageA
ImageList_Read
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_GetImageCount
ImageList_GetImageRect
ImageList_Destroy
ImageList_Draw
InitCommonControls

user32

AppendMenuW
DialogBoxParamA
IsMenu
CreateIcon
DialogBoxParamW
GetCursor
EndDialog
AppendMenuA
DrawTextW
DrawTextA
GetDlgItem
LoadCursorA
BlockInput
InsertMenuA
GetDC
GetWindowTextA
DrawIconEx
CopyIcon
DrawIconEx
EndDialog
DialogBoxParamA
GetCursor
LoadCursorA
CalcMenuBar
InsertMenuA
DrawTextA
CopyRect
GetMenu
IsWindow
DrawIcon
CopyImage
GetDlgItem
GetWindowTextLengthA

gdi32

AddFontResourceExW
GetPixel
GetPixel
AddFontResourceTracking
CancelDC
CreateSolidBrush
AddFontResourceA
ExtTextOutA
AddFontMemResourceEx
CloseFigure
RestoreDC
CloseMetaFile
BitBlt
ClearBitmapAttributes
AddFontResourceW
DeleteDC
GetClipBox
GetCurrentPositionEx

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

315fa575cb38bcd7e9bb06c0dc98ffef

Headers

File Characteristics

Imports

kernel32

comctl32

user32

gdi32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 29KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 29KB