0bf17da6a9b93053243c1465eb3fbf61

Sharing

Copy URL Twitter E-mail

General

Target

0bf17da6a9b93053243c1465eb3fbf61
Size

170KB
MD5

0bf17da6a9b93053243c1465eb3fbf61
SHA1

ad099742b57c9912a2a2187e6215c2d2ce137af5
SHA256

b590af2c27335d5b60f12521deb391287596eb89ea218e97143e6aaa38183fd0
SHA512

950c8efbd7c9bbc476891b4f0244258542f19c08c40eeddd6cc6f1820ca6cebc378c1ae8e336fbcc914cefc0f65ab6334aa2bf1a7b564bb0434a234ac8ec7e1e
SSDEEP

3072:jqVKxQm8gBuDQ9QGIAVdYaA6sgJ0z0kGzwo1CySvXTLXvXZhRdQWy0BJ1VXtjR9I:jqVKcgBcAVdYaA6scwIrSvTb/fHjjVXw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bf17da6a9b93053243c1465eb3fbf61

Files

0bf17da6a9b93053243c1465eb3fbf61
.exe windows:5 windows x86 arch:x86

fc239a6039044bbd02d9d510b7c0c66e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
system
isprint
atol
strcspn
mbstowcs
strcoll
printf
towlower
time
fgetc
__set_app_type
__p__fmode
isalnum
strtok
wcscat
mbtowc
__p__commode
sscanf
_amsg_exit
_initterm
putchar
localtime
fclose
ungetc
wcsncpy
rand
_ismbblead
swscanf
iswxdigit
wcsncmp
isupper
_XcptFilter
_exit
vswprintf
_cexit
bsearch
strcpy
__setusermatherr
__getmainargs
clearerr
wcscpy
strtoul
perror

kernel32

SetUnhandledExceptionFilter
GetFileAttributesExA
FindFirstChangeNotificationW
CallNamedPipeW
IsValidLocale
FindNextChangeNotification
SetThreadExecutionState
GetPriorityClass
FindNextFileW
WaitForMultipleObjectsEx
SetNamedPipeHandleState
GetLastError
GlobalFree
GetModuleHandleA
ReadFile
GetCPInfo
SetMailslotInfo
GetLocaleInfoA
LoadLibraryExA
GetTimeFormatA
GetLocaleInfoW
lstrcatW
GetFullPathNameA
OpenFileMappingW
IsBadStringPtrW
CreateEventA
UnlockFile
EnterCriticalSection
TlsGetValue
HeapCreate
Sleep
FoldStringW
VerSetConditionMask
WinExec
CreateThread
CreateFileMappingW
CompareStringW
DefineDosDeviceW
CreateSemaphoreA
SearchPathW
CancelIo
LeaveCriticalSection
GetStartupInfoW
IsValidLanguageGroup
SetCommTimeouts
SystemTimeToFileTime
MoveFileExA
lstrcmpiA
GetStringTypeExW
CreateMutexA

gdi32

GetROP2
DPtoLP
SetDIBits
EnumFontFamiliesW
CreateICW
GetSystemPaletteEntries
CreateRectRgn
GetMapMode
CreateHalftonePalette
SetPaletteEntries
CreateDiscardableBitmap
ExtTextOutW
TextOutW
GetFontData
GetDIBColorTable
Polyline
GetTextFaceW
GetTextAlign
CreateBrushIndirect
GetBkMode
GetLayout
CreateSolidBrush
EnumFontFamiliesExW
CreateBitmapIndirect
CreateBitmap
CreatePen
CreateDIBSection
CombineRgn
GetNearestPaletteIndex
Ellipse
GetTextMetricsA
RealizePalette
UnrealizeObject
SetTextColor
EndDoc
GetSystemPaletteUse
SetDIBitsToDevice
SetDIBColorTable
SetAbortProc
ResizePalette
WidenPath
ExcludeClipRect
CreateEllipticRgnIndirect
RemoveFontResourceW
CreateDCW
CreatePolygonRgn
GetViewportOrgEx

user32

DestroyCaret
DrawFocusRect
LoadImageW
WaitMessage
DestroyMenu
DrawAnimatedRects
DefDlgProcW
ActivateKeyboardLayout
SetTimer
GetWindowTextA
SendInput
LockWindowUpdate
WaitForInputIdle
SetMenu
GetMenu
RegisterWindowMessageW
GetScrollPos
MessageBoxExA
IsChild
GetUpdateRgn
LoadMenuA
AppendMenuW
CreateIconIndirect
GetWindowLongA
GetWindowTextLengthW
CheckRadioButton
InflateRect
TrackPopupMenu
ReleaseDC
SendMessageW
MoveWindow
DrawFrameControl
LoadCursorA
SetUserObjectInformationW
CreatePopupMenu
SetClassLongW
CreateWindowExW
IsIconic
InsertMenuItemW
OffsetRect
LoadCursorW
AdjustWindowRectEx
GetWindowTextW
GetDlgCtrlID
WindowFromPoint
InsertMenuA
SystemParametersInfoW
GetMenuItemCount
VkKeyScanW
RegisterClassExA
EndDialog
CloseDesktop
IsDialogMessageW
OpenDesktopW
ScrollWindowEx
IsWindow
CharToOemW
SetCaretPos
GetKeyboardType
PeekMessageW
GetWindow
CreateDialogParamW
SetWindowTextW
DestroyAcceleratorTable
GetClassInfoExA
GetWindowLongW
EqualRect
SetScrollPos
IsWindowUnicode
KillTimer
InSendMessageEx
CreateIconFromResource
CopyAcceleratorTableW
DefWindowProcA
keybd_event
EnumWindows
GetDoubleClickTime
DestroyWindow
CharPrevA
SendMessageA
DefFrameProcA
RegisterHotKey
SetCursor
GetWindowDC
SetDlgItemInt
CascadeWindows
GetMenuItemID
DialogBoxParamA
SwitchToThisWindow
CheckMenuRadioItem
MapDialogRect
PtInRect
IsDlgButtonChecked
wsprintfA
GetSystemMenu
RegisterClassExW
CreateMenu
GetClassLongA
GetMenuItemInfoW
LoadMenuW
GetTopWindow
GetPropW
SetCursorPos
MapVirtualKeyExW
ShowCaret
RegisterClassW
LoadIconA
GetCaretPos
ShowCursor
GetSubMenu
LookupIconIdFromDirectory

shell32

ord524

Exports

Exports

?HidePointerOriginal@@YGFKPAIPAD<V

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc239a6039044bbd02d9d510b7c0c66e

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

shell32

Exports

Exports

Sections

.text Size: 111KB - Virtual size: 111KB

.data Size: 55KB - Virtual size: 75KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 111KB - Virtual size: 111KB

.data
Size: 55KB - Virtual size: 75KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB