2ab92a0986160bfd1ec50484331e2a69

Sharing

Copy URL Twitter E-mail

General

Target

2ab92a0986160bfd1ec50484331e2a69
Size

75KB
MD5

2ab92a0986160bfd1ec50484331e2a69
SHA1

ccb7a38c1fadf82795f24263e19303e9e0184ee8
SHA256

6333b86cb8fe2543dd0d2b7389bdfb8aec0b5f1d87ac1698784b5f238f9e32cc
SHA512

1b66c1c390ac1607a0a33c075bb65f78d363737604e9988ddff9e69ff90b74b40c06efdf7ec00bfbe1502d01c5ec05c9b264fa7d385dbc1a0eb228da9fe5f125
SSDEEP

1536:kj88T2Pc/SM2L3pGwqrttmjSJnZf6l2gie5xHAEF:A+YSn3pKmeql2giKiEF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ab92a0986160bfd1ec50484331e2a69

Files

2ab92a0986160bfd1ec50484331e2a69
.dll windows:1 windows x86 arch:x86

f62e8b399f0b444f743a0ee55923f266

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CallNamedPipeW
CreateDirectoryA
CreateFiber
CreateTapePartition
CreateToolhelp32Snapshot
DefineDosDeviceA
EnumSystemCodePagesA
ExitProcess
FindFirstFileExW
FoldStringA
FormatMessageA
FreeEnvironmentStringsA
GetCommMask
GetCommProperties
GetCommState
GetConsoleAliasA
GetConsoleAliasesW
GetDiskFreeSpaceW
GetDiskFreeSpaceExA
GetFileSize
GetModuleFileNameA
GetPrivateProfileSectionNamesA
GetSystemInfo
GetSystemPowerStatus
GlobalFix
HeapCompact
HeapFree
InvalidateConsoleDIBits
LockFile
MoveFileA
PostQueuedCompletionStatus
PrepareTape
ReadConsoleW
SearchPathA
SetConsoleInputExeNameA
SetConsoleOutputCP
SetConsoleWindowInfo
SetLocalTime
Sleep
TlsAlloc
TransactNamedPipe
UpdateResourceW
VirtualAlloc
VirtualAllocEx
VirtualProtect
WritePrivateProfileStringA
lstrcmpA
lstrcmpiA

user32

CallMsgFilterW
CascadeWindows
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
CharUpperW
CreateWindowStationW
DdeFreeStringHandle
DefFrameProcA
DialogBoxIndirectParamA
DlgDirSelectComboBoxExA
EnumChildWindows
GetClassLongA
GetClassWord
GetListBoxInfo
GetMenuContextHelpId
GetMenuState
GetParent
IsDlgButtonChecked
IsIconic
IsWindow
LoadAcceleratorsA
MsgWaitForMultipleObjects
RegisterDeviceNotificationA
RemovePropA
SetPropW
SetWindowRgn
wvsprintfA

gdi32

AngleArc
CreateICA
CreatePen
DescribePixelFormat
EnumFontsW
FillPath
GdiComment
GetClipBox
GetClipRgn
GetEnhMetaFileDescriptionA
GetPath
GetPixel
GetPixelFormat
GetTextFaceA
GetTextFaceW
PatBlt
PlayMetaFileRecord
PtVisible
TextOutA
gdiPlaySpoolStream

msvcrt

_cprintf
_environ
_vsnprintf
_wexecle
_wexecv
_wpgmptr
fflush
fgetwc
iswcntrl
iswgraph
mblen
putwchar
rand
strftime
strxfrm
wcscmp

Exports

Exports

BmRpbCeScbyvqvj
CktGYtlcbRGigpyel
EwebgglKsdIq
INtOmQKWYxssoO
Jdgmboi
JzriwoXgixenJEpy
NoasiqHzy
PnqlovuaaypZhIeZA
QiFoshoxVObsNY
WfacbaOYksOoLjI
XcbvzytmnruuxPpbl
YkFiueckBjiquW
YsxxPcaWU
ZMlVvCvJpdjrmqk

Sections

.text
Size: 9KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 512B - Virtual size: 395B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f62e8b399f0b444f743a0ee55923f266

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 156KB

.data Size: 59KB - Virtual size: 59KB

.bdata Size: 512B - Virtual size: 395B

.rdata Size: 1024B - Virtual size: 7KB

BSS Size: 1KB - Virtual size: 16KB

.rsrc Size: 1024B - Virtual size: 796B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 156KB

.data
Size: 59KB - Virtual size: 59KB

.bdata
Size: 512B - Virtual size: 395B

.rdata
Size: 1024B - Virtual size: 7KB

BSS
Size: 1KB - Virtual size: 16KB

.rsrc
Size: 1024B - Virtual size: 796B

.reloc
Size: 2KB - Virtual size: 1KB