0b2d817e368c6b2a77d493a9ef331d24

Sharing

Copy URL Twitter E-mail

General

Target

0b2d817e368c6b2a77d493a9ef331d24
Size

100KB
MD5

0b2d817e368c6b2a77d493a9ef331d24
SHA1

fbb2861cd5c03cf755cda2c30f3a4c5b8a812d0e
SHA256

2a8925349b8675bf049e31c708c0696038262d8267e57804f05034f417792bf0
SHA512

dd892fb63a602f740e52684d176e096b6e3485ed9e83ea370f65c2062cb5ce06255da748cc91d5087b07fa2839b2ca14c2626856544c689045707f94c8c96b48
SSDEEP

1536:qQ8EPrKMWHduGbxKJVX+o7RSyZNFor/of3nVnBD1xhuV5mvutVjtd+Izz/RfUpox:V49PUeaRAof3v1xoV5m2vjtdPL1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b2d817e368c6b2a77d493a9ef331d24

Files

0b2d817e368c6b2a77d493a9ef331d24
.exe windows:4 windows x86 arch:x86

77dc0462fe4d53376591e29992d9f5f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileW
GetLastError
WriteFile
CreateThread
GetCPInfo
GetStdHandle
ReadFile
DeleteAtom
SetLastError
CopyFileExW
CreateDirectoryA
FindAtomA
GlobalFree
CreateProcessA
GetComputerNameA
ReadConsoleA
GetFileSize
GetLastError
GetStdHandle
CreateProcessA
OpenFile
CopyFileExA
SetLastError
DeleteFileW
GetCPInfo
GetFileSize
Sleep
GetCommandLineA
CreateDirectoryA
OpenFileMappingA
ExitThread
DeleteAtom
FindFirstFileA
DeleteFileA
GetFileTime
GetConsoleMode
GetComputerNameA
CopyFileW
CreateThread
WriteFile

advapi32

RegOpenKeyW
RegQueryValueExA
RegFlushKey
RegQueryValueExW
RegDeleteKeyA
RegGetKeySecurity
RegEnumValueW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueW
RegEnumKeyExW
RegEnumValueA
RegQueryValueA
RegEnumKeyW
RegOpenKeyA
RegCreateKeyW
RegQueryInfoKeyA
RegOpenKeyW
RegOpenKeyExA
RegOpenKeyExW
RegCreateKeyExA
RegOpenKeyA
RegLoadKeyW
RegQueryInfoKeyW
RegEnumKeyW
RegCreateKeyExW
RegEnumValueA
RegQueryValueExA
RegReplaceKeyA
RegQueryValueW
RegLoadKeyA
RegFlushKey
RegGetKeySecurity
RegEnumKeyExW
RegQueryValueA
RegEnumValueW
RegDeleteKeyA
RegEnumKeyExA

gdi32

CloseMetaFile
GetBitmapBits
RestoreDC
AddFontResourceTracking
AddFontMemResourceEx
ClearBitmapAttributes
ExcludeClipRect
DeleteDC
ExtTextOutA
AddFontResourceExA
GetBrushOrgEx
AbortPath
GetPixel
GetPixel
SetTextColor
GetCurrentPositionEx
CreateSolidBrush
GetDCOrgEx
GetClipBox
ClearBrushAttributes
AddFontResourceW
BitBlt
CloseFigure
BeginPath
CopyMetaFileA
ExtTextOutA
CloseFigure
AddFontResourceTracking
AddFontMemResourceEx
ClearBitmapAttributes
AddFontResourceW
ExcludeClipRect
AbortPath
CancelDC
CreateSolidBrush
AddFontResourceExA
GetPixel
BitBlt
DeleteObject
GetBrushOrgEx
CloseMetaFile
GetBitmapBits
AddFontResourceA
DeleteDC
SetTextColor
CloseFigure
GetPixel
DeleteDC
GetDCOrgEx
AddFontResourceTracking
CreateSolidBrush
GetBrushOrgEx
CancelDC
DeleteObject
AddFontResourceW
GetBitmapBits
ClearBitmapAttributes
AddFontResourceA
GetClipBox
AddFontMemResourceEx
GetPixel
CopyMetaFileA
GetCurrentPositionEx
AbortPath
BitBlt
AddFontResourceExW

comctl32

ImageList_Remove
ImageList_GetIconSize
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_DragLeave
ImageList_Create
ImageList_DragEnter
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Copy
InitCommonControls
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_Merge
ImageList_DrawEx
ImageList_DragMove
ImageList_Read

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77dc0462fe4d53376591e29992d9f5f8

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

comctl32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 90KB - Virtual size: 116KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 90KB - Virtual size: 116KB