0f21af10dbce264a5b0463ed0e91272d

Sharing

Copy URL Twitter E-mail

General

Target

0f21af10dbce264a5b0463ed0e91272d
Size

166KB
MD5

0f21af10dbce264a5b0463ed0e91272d
SHA1

e364476ae1cb5dde8d27ace577664d45279690ea
SHA256

71d59d83925f3a4dda69c632d59e4c03cb9a629e67115f737cd0109c88617113
SHA512

0f0407ca81c71dd713f78744b9f8a0b88e4abf5659d224aad23b64442dd19085073f689c0e4d31ef3fee65b399f305145a30a8e2c346ee92f01466461e13215a
SSDEEP

3072:PEHIPKP2HNx+KiqZmqQxCSCVmgDCY1OuDLd/NA6cUhFByfiAy1p:sHQkGb+KiqZJFQgDPo2F5fBmy/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f21af10dbce264a5b0463ed0e91272d

Files

0f21af10dbce264a5b0463ed0e91272d
.exe windows:5 windows x86 arch:x86

e91e08c9f025fbc87ed0133973d4dba0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetLastError
HeapFree
GetProcAddress
LeaveCriticalSection
TerminateProcess
DelayLoadFailureHook
ExpandEnvironmentStringsW
VirtualFree
DefineDosDeviceA
GetModuleHandleA
GetSystemTimeAsFileTime
LoadLibraryW
GetEnvironmentStrings
EnumLanguageGroupLocalesA
OutputDebugStringA
VerifyVersionInfoW
HeapCreate
FindResourceW
GetFullPathNameW
VirtualAlloc
lstrcpyA
GetWindowsDirectoryA
WriteConsoleW
GetLocalTime
CreateThread
GetStartupInfoW
GetModuleFileNameA
ExitThread
SetHandleCount
VerSetConditionMask
ExitProcess
InitializeCriticalSection
GetStartupInfoA
IsDBCSLeadByte
GlobalAlloc
TlsFree
GetOEMCP
GetComputerNameA
GlobalLock

msvcrt

_adjust_fdiv
iswprint
srand
wcsncpy
wcscpy
_acmdln
__p__commode
fprintf
_vsnwprintf
_c_exit
exit
sprintf
iswalpha
swscanf
time
fflush
_cexit
_onexit
wcslen
realloc
__getmainargs
memcpy
_XcptFilter
__CxxFrameHandler
wcsstr
malloc
_wtol
_wcsicmp
printf
wcsxfrm
wcscat
calloc
_CxxThrowException
free
memset

user32

AppendMenuW
SetRectEmpty
GetDlgItem
UnregisterClassW
GetUserObjectInformationW
GetKeyState
GetForegroundWindow
SetWindowTextW
GetSysColor
DrawIconEx
GetWindowTextW
PostThreadMessageW
GetThreadDesktop
EnableMenuItem
IsIconic
DialogBoxParamA
EqualRect
PostMessageA
GetMenuItemCount
InvalidateRect
PeekMessageW
KillTimer
CreateWindowExA
SetScrollPos
ExitWindowsEx
LoadCursorA
GetWindowPlacement
GetSystemMetrics

gdi32

BitBlt
CreateCompatibleDC
GetTextExtentPointW
GetDeviceCaps
SaveDC
SetPixel
TextOutW
CreateCompatibleBitmap
CreatePen
ExtTextOutW
GetStockObject
GetObjectA
SetStretchBltMode

winmm

sndPlaySoundW
mixerGetLineControlsW
mmioInstallIOProcW
midiInUnprepareHeader
waveInPrepareHeader
waveInGetErrorTextA
mmioWrite
waveOutMessage

Exports

Exports

OuvxAvciOw
Nedrgf
BucWhkyOlqde
MoiIlygzffQqdtucl
UcFqmxsccYqlgplAmbtfht
LjOxojQccgdOkncms

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e91e08c9f025fbc87ed0133973d4dba0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

winmm

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 3KB - Virtual size: 3KB

.rsrc Size: 73KB - Virtual size: 72KB

.edata Size: 512B - Virtual size: 115B

.data Size: 71KB - Virtual size: 71KB

.crt Size: 512B - Virtual size: 72B

.reloc Size: 512B - Virtual size: 272B

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 73KB - Virtual size: 72KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 71KB - Virtual size: 71KB

.crt
Size: 512B - Virtual size: 72B

.reloc
Size: 512B - Virtual size: 272B