2b3890fa95d296ae9d70c3b39e367c2b

Sharing

Copy URL Twitter E-mail

General

Target

2b3890fa95d296ae9d70c3b39e367c2b
Size

104KB
MD5

2b3890fa95d296ae9d70c3b39e367c2b
SHA1

9a1424faf94f3d08a7a690677ffde4f27d4abe48
SHA256

84524c83da37292a33fb1251a8a870b2e5e9edffdb71ae1874c8e3a7bea90ca0
SHA512

8a66935aa756691431d1a1e393845ad4fb9a149cfb3de522f867c77333de942467c7a4d3f15004bc4245b2d99213b6d3731ec7280ac9ed980f668d625d0be0d4
SSDEEP

3072:+ml3Wp3fWzTp5QFb1uSyn29m56w7m71j:+mlyOzLQFpynt7m7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b3890fa95d296ae9d70c3b39e367c2b

Files

2b3890fa95d296ae9d70c3b39e367c2b
.exe windows:4 windows x86 arch:x86

5278c3dc160d4435a390c2df98564082

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyNameTextA
DestroyCursor
GetSysColor
GetDCEx
RegisterWindowMessageA
SetWindowPlacement
GetKeyboardState
CharLowerBuffA
ReleaseDC
SetMenuItemInfoA
EmptyClipboard
SetWindowLongA
RedrawWindow
OpenClipboard
GetCapture
GetClientRect
CheckMenuItem
SetWindowPos
AdjustWindowRectEx
SetScrollRange
RegisterClipboardFormatA
IsWindowVisible
ActivateKeyboardLayout
MapVirtualKeyA
SetCursor
CharNextW
SetActiveWindow
SetForegroundWindow
EnumThreadWindows
GetMenuItemCount
PostQuitMessage
ChildWindowFromPoint
InflateRect
EnableMenuItem
TrackPopupMenu
LoadStringA
SetPropA
FillRect
GetKeyboardType
GetScrollInfo
GetClipboardData
IsChild
GetClassLongA
CreateIcon
CallWindowProcA
SetCapture
EnumWindows
ScrollWindow
GetCursorPos
EnumChildWindows
SendMessageW
GetForegroundWindow
EnableWindow
CreatePopupMenu
SetFocus
DefFrameProcA
BeginPaint
DestroyWindow
InvalidateRect
GetWindow
WindowFromPoint
LoadCursorA
GetMenuStringA
DefWindowProcA
wsprintfA
GetWindowLongW
GetScrollRange
RemoveMenu
ReleaseCapture
SetWindowLongW
SetMenu
IsWindowEnabled
MsgWaitForMultipleObjects
EndPaint
TranslateMessage
DrawMenuBar
GetIconInfo
SetWindowTextA
DispatchMessageA
GetPropA
CallNextHookEx
LoadKeyboardLayoutA
GetWindowPlacement
ShowWindow
LoadIconA
GetMenuItemInfoA
SetClipboardData
ClientToScreen
GetWindowRect
WaitMessage
GetWindowLongA
GetWindowTextA
SetTimer
LoadBitmapA
GetKeyState
GetMenuItemID
IsIconic
ScreenToClient
InsertMenuA
GetSystemMetrics
MapWindowPoints
UpdateWindow
CharLowerA
GetWindowDC
SystemParametersInfoA
MessageBeep
KillTimer
DispatchMessageW
CreateWindowExA
MoveWindow
GetClassInfoA
GetScrollPos
SendMessageA
GetSysColorBrush
OffsetRect
EnableScrollBar
SetScrollPos
SetRect
IsDialogMessageA
ShowOwnedPopups
DestroyIcon
PostMessageA
GetClassNameA
GetDlgItem
DrawIconEx
GetMenu
GetFocus
RemovePropA
GetKeyboardLayout
GetKeyboardLayoutList
GetKeyboardLayoutNameA
UnhookWindowsHookEx
CloseClipboard
TranslateMDISysAccel
CharToOemA
DrawAnimatedRects
GetActiveWindow
DestroyMenu
GetMessagePos
IsWindowUnicode
GetCursor
GetLastActivePopup
DefMDIChildProcA
CreateMenu
IsRectEmpty
PeekMessageA
ShowScrollBar
GetSubMenu
OemToCharA
IntersectRect
CharNextA
SetParent
IsWindow
GetDC
UnregisterClassA
GetMenuState
SetWindowsHookExA
DrawFrameControl
SetClassLongA
IsDialogMessageW
PtInRect
FindWindowA
CharUpperBuffA
IsZoomed
GetDesktopWindow
GetWindowThreadProcessId
MessageBoxA
InsertMenuItemA
GetTopWindow
SetScrollInfo
GetParent

kernel32

SetHandleCount
FreeResource
SetEvent
FormatMessageA
HeapDestroy
GetFullPathNameA
LoadLibraryA
VirtualFree
SetEndOfFile
CreateFileA
FindResourceA
GlobalDeleteAtom
ReadFile
GetStdHandle
GetLocalTime
GetCurrentProcessId
lstrcatA
GetTickCount
GetCurrentThreadId
WideCharToMultiByte
ExitThread
CreateEventA
GlobalAlloc
lstrcpyA
DeleteFileA
LocalFree
MoveFileA
FreeLibrary
GetUserDefaultLCID
Sleep
GetLocaleInfoA
HeapFree
LockResource
GlobalAddAtomA
WaitForSingleObject
GetProcAddress
LocalAlloc
CompareStringA
GetStringTypeW
SetLastError
GetLastError
CloseHandle
CreateThread
SizeofResource
GetFileType
GetStringTypeA
EnterCriticalSection
GetFileAttributesA
lstrcpynA
SetErrorMode
HeapAlloc
GetOEMCP
GetVersionExA
MoveFileExA
GetStartupInfoA
ExitProcess
GetDateFormatA
GetCommandLineA
GetCurrentProcess
GetThreadLocale
GetEnvironmentStrings
FindClose
RaiseException
VirtualAllocEx
GetModuleHandleA
lstrlenA
GetProcessHeap
GetACP
GetFileSize
FindFirstFileA
EnumCalendarInfoA
GetDiskFreeSpaceA
InitializeCriticalSection
lstrcmpiA
GetVersion
SetFilePointer
lstrcmpA
GetCurrentThread
LocalReAlloc
GetSystemDefaultLangID
GlobalFindAtomA
SetThreadLocale
GetModuleFileNameA
ResetEvent
LoadResource
DeleteCriticalSection
LoadLibraryExA
GetCPInfo
MulDiv
VirtualQuery

msvcrt

log10
wcstol
sqrt
memcmp
memcpy
memmove

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5278c3dc160d4435a390c2df98564082

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

Sections

.text Size: 88KB - Virtual size: 87KB

.tls Size: 7KB - Virtual size: 6KB

.init Size: 4KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 88KB - Virtual size: 87KB

.tls
Size: 7KB - Virtual size: 6KB

.init
Size: 4KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB