3883112186e8166821f3ddafa32f6e3d

Sharing

Copy URL Twitter E-mail

General

Target

3883112186e8166821f3ddafa32f6e3d
Size

36KB
MD5

3883112186e8166821f3ddafa32f6e3d
SHA1

7aa98827f2f2d4b7a28adb7196f556dfa3cf96c1
SHA256

a0296f8a112d511ee5535c7b14c03ecf26d2b8e84609d212f2852ac39603b7c9
SHA512

b7f124907b0688a9225d2263608fea28184fde4d9786e63acfe1e1faea11f79e79031c6f2fa5b4c4e6cd80714abf751f79272fcddcb68af6759793bd274bc504
SSDEEP

768:T4yJh4t0A6qIRfdcc9n5X1g4WsgQEIrRZddiACa9:Eyz4t03qI1tjWsgQEIFYAB9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3883112186e8166821f3ddafa32f6e3d

Files

3883112186e8166821f3ddafa32f6e3d
.dll windows:1 windows x86 arch:x86

2b6fdf6dda907ffa4485d88ced5fbb33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

AreFileApisANSI
ClearCommError
CreateIoCompletionPort
DebugActiveProcess
EnterCriticalSection
EraseTape
ExitProcess
FindCloseChangeNotification
FreeEnvironmentStringsW
GetCPInfoExW
GetCommMask
GetCommState
GetComputerNameA
GetComputerNameW
GetConsoleAliasExesLengthW
GetConsoleInputWaitHandle
GetEnvironmentVariableW
GetFileSize
GetLastError
GetModuleFileNameA
GetOEMCP
GetPrivateProfileStructA
GetProcessHeap
GetProfileIntW
GetProfileSectionA
GetStringTypeExA
HeapCreate
HeapLock
IsBadStringPtrA
IsDBCSLeadByteEx
LoadLibraryW
LocalUnlock
OpenEventA
OpenFile
OpenSemaphoreW
ReadFileScatter
ResetEvent
RtlFillMemory
SetConsoleTitleA
Sleep
VerLanguageNameW
VirtualProtect
WriteConsoleInputW
lstrcmpA
lstrcmpiA

user32

ChangeClipboardChain
CheckDlgButton
DlgDirListComboBoxA
DrawFrame
EndDialog
EnumDisplayMonitors
EnumWindows
GetAltTabInfoA
GetAncestor
GetClassWord
GetDC
GetDCEx
GetKBCodePage
GetKeyboardType
GetMenuContextHelpId
GetMenuState
GetTopWindow
GetWindowTextLengthW
InsertMenuW
IsCharAlphaA
IsDlgButtonChecked
IsWindowUnicode
RegisterClassExW
RegisterDeviceNotificationW
ReleaseDC
SendDlgItemMessageW
SendNotifyMessageA
SetDoubleClickTime
SetForegroundWindow
SetMenuItemBitmaps
SetUserObjectInformationA
ToUnicode
TranslateAcceleratorA
wsprintfA

gdi32

AbortPath
CreateFontA
GdiComment
GetBitmapBits
GetBitmapDimensionEx
GetCharABCWidthsFloatA
GetClipBox
GetClipRgn
GetCurrentObject
GetDIBColorTable
GetMetaFileA
GetPath
GetPixel
GetPixelFormat
GetTextCharacterExtra
GetTextFaceA
GetTextFaceW
OffsetWindowOrgEx
PolyPolygon
ResetDCW
SaveDC
SetGraphicsMode
SetWinMetaFileBits

msvcrt

_clearfp
_ctype
_getcwd
_setsystime
_snwprintf
_strlwr
_wspawnle
setbuf
strlen
tmpfile
wcstod
wcstol

Exports

Exports

CtbrvsH
ENbtmjbG
EwZDuxlkhrzixFA
FmrzhjqFaejLSE
GfVvAtHrfxfkqoidl
HTGnssagsiretyTq
Hutgxzs
OcYucyCpeOvbbewx
PNedfdGzhny
SpKIfRO
TLeFww
UiSiwJaDLnwrrTdKgh
VjOccPlQgc
YdwdeiPIvNxhdweuV
YegGMbsixTpwEOh

Sections

.text
Size: 9KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 512B - Virtual size: 401B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b6fdf6dda907ffa4485d88ced5fbb33

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 84KB

.data Size: 23KB - Virtual size: 34KB

.fdata Size: 512B - Virtual size: 401B

.rsrc Size: 1024B - Virtual size: 784B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 84KB

.data
Size: 23KB - Virtual size: 34KB

.fdata
Size: 512B - Virtual size: 401B

.rsrc
Size: 1024B - Virtual size: 784B

.reloc
Size: 2KB - Virtual size: 1KB