0c83f6255cd7082b02249987dee99cba

Sharing

Copy URL Twitter E-mail

General

Target

0c83f6255cd7082b02249987dee99cba
Size

564KB
MD5

0c83f6255cd7082b02249987dee99cba
SHA1

55fcfccdb0978da1fa6d28cc627e7bd0316f03da
SHA256

70688c761581227cc7e7a93b3b2b73793e6659feb5e3fbee3b273de2cc3c1319
SHA512

937b039ea684ec45663b76aa9a75d00a0b00ea99f7464981f81588137c0bf935ef00f1e8b9a8cda6c5678ae69a1d43aaf69f72a8a06248583dec6dc543004a7e
SSDEEP

12288:XosL/4h3ywYJ1xUK06PkL0YVq61H7lkUB:Xj4h3yZbFS5l15n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c83f6255cd7082b02249987dee99cba

Files

0c83f6255cd7082b02249987dee99cba
.exe windows:4 windows x86 arch:x86

00f76d7650f6922904a64bba433ff545

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueA
RegEnumKeyA
RegDeleteValueW
RegEnumKeyW
RegReplaceKeyA
RegReplaceKeyW
RegOpenKeyW
RegQueryInfoKeyW
RegQueryValueW
RegDeleteKeyW
RegGetKeySecurity
RegQueryValueExA
RegFlushKey
RegLoadKeyW
RegOpenKeyExA
RegQueryValueW
RegOpenKeyA
RegCreateKeyExW
RegEnumKeyExW
RegCreateKeyW
RegLoadKeyA
RegQueryValueA
RegLoadKeyW
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExW
RegGetKeySecurity
RegOpenKeyW
RegQueryInfoKeyA
RegOpenKeyExA
RegReplaceKeyA
RegEnumKeyW

kernel32

GetComputerNameA
SetLastError
ReadFile
CopyFileW
DeleteFileA
Sleep
CopyFileA
OpenFile
CreateThread
CreateDirectoryA
CopyFileExW
FindFirstFileA
GetCPInfo
CopyFileExA
GetFileSize
CreateProcessA
GetLastError
GetConsoleMode
GlobalFree
GetStdHandle
CreateProcessA
GetFileSize
CopyFileA
DeleteFileA
GetLastError
CopyFileExW
CopyFileExA
OpenFileMappingA
FindAtomA
DeleteFileW
ReadFile
GetCommandLineA
GetFileTime
FindFirstFileA
WriteFile
DeleteFileW
FindFirstFileA
GetComputerNameA
OpenFileMappingA
GetFileTime
FindAtomA
DeleteFileA
GetLastError
CreateThread
CopyFileExW
OpenFile
GetConsoleMode
ReadConsoleA
CopyFileExA
GlobalFree
GetCPInfo
ExitThread
ExitThread
GetStdHandle
GetFileTime
GetComputerNameA
SetLastError
Sleep
GetCPInfo
CreateDirectoryA
DeleteFileA
CopyFileExW
CopyFileExA
CreateThread
ReadConsoleA
GetFileSize
GlobalFree
GetCommandLineA
OpenFile
CreateProcessA
ReadFile
GetConsoleMode
FindAtomA
WriteFile
DeleteAtom
CopyFileA

comctl32

ImageList_Copy
ImageList_Merge
ImageList_DragEnter
ImageList_GetIcon
ImageList_GetImageRect
ImageList_LoadImageA
InitCommonControls
ImageList_DrawIndirect
ImageList_GetDragImage
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_Destroy
ImageList_GetImageCount
ImageList_Read
ImageList_AddMasked
ImageList_Remove
ImageList_Replace
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_LoadImageW
ImageList_DrawIndirect
ImageList_Draw
ImageList_Replace
ImageList_LoadImageA
ImageList_Create
ImageList_BeginDrag
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetIconSize
ImageList_Destroy
ImageList_GetDragImage
ImageList_DragMove
ImageList_DragShowNolock
InitCommonControls
ImageList_DragLeave
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_LoadImage
ImageList_DragEnter
ImageList_Read
ImageList_LoadImageW
ImageList_EndDrag
ImageList_Copy
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_Create
ImageList_DragMove
ImageList_GetDragImage
ImageList_GetIcon
ImageList_BeginDrag
ImageList_Copy
ImageList_AddIcon
ImageList_Remove
ImageList_EndDrag
ImageList_Merge
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_GetImageRect
ImageList_DragEnter

gdi32

BitBlt
CancelDC
SetTextColor
AddFontResourceTracking
GetBitmapBits
AddFontResourceW
GetPixel
GetClipBox
AddFontResourceExW
DeleteDC
ClearBitmapAttributes
AbortPath
GetDCOrgEx
CreateSolidBrush
CloseMetaFile
ExcludeClipRect
DeleteObject
CloseFigure
AddFontMemResourceEx
AddFontResourceExA
CopyMetaFileA
DeleteObject
AddFontResourceW
AddFontResourceTracking
GetBrushOrgEx
BeginPath
ExcludeClipRect
GetCurrentPositionEx
CloseMetaFile
CreateSolidBrush
SetTextColor
AddFontResourceExW
AbortPath
AddFontMemResourceEx
CloseFigure
AddFontResourceA

user32

IsWindow
DialogBoxParamA
DialogBoxParamW
CloseWindow
DrawIconEx
GetDC
CopyImage
GetWindowTextLengthA
GetDlgItem
LoadMenuA
AlignRects
AppendMenuW
DrawTextW
EndDialog
GetMenu
LoadMenuA
GetMenu
DrawTextW
GetCursor
IsMenu
InsertMenuA
LoadCursorA
CalcMenuBar
CopyImage
GetFocus
DrawIconEx
CopyRect
GetDlgItem
CopyIcon
DrawTextA
AlignRects
GetWindowTextA
AppendMenuA
GetCursor
DrawIcon
LoadCursorA
GetWindowTextLengthA
GetFocus
EndDialog
CalcMenuBar
AlignRects
LoadMenuA
DrawIconEx
CopyImage
CopyRect
IsMenu
GetDlgItem
GetMenu
CreateIcon
CopyIcon
BlockInput
AppendMenuW
DialogBoxParamW
DrawTextA
EndDialog
GetWindowTextLengthA
IsMenu
CopyIcon
CreateIcon
CalcMenuBar
BlockInput
GetFocus
CloseWindow
CopyImage
IsWindow
LoadMenuA
GetCursor
GetMenu
CopyRect
AlignRects
AppendMenuA
AppendMenuW
DrawTextW
DialogBoxParamA
GetDlgItem
GetWindowTextA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 687B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 618B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00f76d7650f6922904a64bba433ff545

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

gdi32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 52KB - Virtual size: 158KB

.rsrc Size: 1024B - Virtual size: 687B

.reloc Size: - Virtual size: 618B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 52KB - Virtual size: 158KB

.rsrc
Size: 1024B - Virtual size: 687B

.reloc
Size: - Virtual size: 618B