09b550bdb90524bc96e240640f9e3462

Sharing

Copy URL Twitter E-mail

General

Target

09b550bdb90524bc96e240640f9e3462
Size

70KB
MD5

09b550bdb90524bc96e240640f9e3462
SHA1

0e629beb71827e1e4d5cf4e6b5d3854e02619574
SHA256

26241f162ee2dcaa9af102da950f1a165e1e8d979e97c176f59c1ad62f80a566
SHA512

93ab7dc3eac15a5063bdb3e968f337f40ee8bc395ceb8744c0e1f839eb3d570cc1f537408cd08121ca92975f71b113041e3f26524bc8c5fde61448ddd9357749
SSDEEP

1536:Zt/SEfbLL4h0qgsI2I4pEzLx9v60WRxMvLKUprj:ZdbL0h0qgsjI4enx9vJWRxMvLKMr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09b550bdb90524bc96e240640f9e3462

Files

09b550bdb90524bc96e240640f9e3462
.exe windows:6 windows x64 arch:x64

8cd9a803892ada109e67428213afe2da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetLastError
CloseHandle
WaitForSingleObject
OpenEventW
OpenProcess
Sleep
HeapSetInformation
VirtualQuery
GetSystemInfo
SetThreadStackGuarantee
VirtualAlloc
VirtualProtect
GetStringTypeW
MultiByteToWideChar
LCMapStringW
GetCommandLineA
GetVersionExW
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
EncodePointer
DecodePointer
FlsFree
SetLastError
FlsSetValue
FlsGetValue
GetCurrentThreadId
FlsAlloc
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
HeapReAlloc
HeapSize
HeapAlloc
RtlUnwindEx
OutputDebugStringA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LoadLibraryExW
GetCPInfo
GetACP
GetOEMCP

user32

DispatchMessageW
MsgWaitForMultipleObjects
PeekMessageW
PostMessageW
RegisterWindowMessageW
SystemParametersInfoW
SetWindowTextW
CreateWindowExW
RegisterClassW
SendMessageTimeoutW
GetWindowThreadProcessId
FindWindowW
DefWindowProcW

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8cd9a803892ada109e67428213afe2da

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 5KB - Virtual size: 8KB

.pdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 28KB - Virtual size: 29KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 5KB - Virtual size: 8KB

.pdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 28KB - Virtual size: 29KB