367334f4e738ce9080b55e20650e0fe8a9801d624f4fb69871cc56e0eb8022da

Sharing

Copy URL Twitter E-mail

General

Target

367334f4e738ce9080b55e20650e0fe8a9801d624f4fb69871cc56e0eb8022da
Size

1.3MB
MD5

7c90a6442c405be768bf0a73d1fefecb
SHA1

9a7b14743ba85416a84959e6f49115b9bf72b4f6
SHA256

367334f4e738ce9080b55e20650e0fe8a9801d624f4fb69871cc56e0eb8022da
SHA512

829935b288f6d3b913d7d0ab214bb36fc2d1dd7993b731f001152818eb679cd3e7f8aa0ac57abd5b71ea6e48bd7defdb5218760547c01f4886503d964fa8c04b
SSDEEP

24576:uz2LYu5l9oJ9xqfhGDR6S/TT8cKGqBDGaCrrXptOyytTNQwh5JoDoRyNHTl+bwyE:9Yu5l9o8MrXptvyfQwh5JoDiSl+bwyE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
367334f4e738ce9080b55e20650e0fe8a9801d624f4fb69871cc56e0eb8022da

Files

367334f4e738ce9080b55e20650e0fe8a9801d624f4fb69871cc56e0eb8022da
.exe windows:6 windows x86 arch:x86

14717010f004452f948c5378ecc83676

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

libcef

cef_uridecode
cef_uriencode
cef_get_mime_type
cef_quit_message_loop
cef_run_message_loop
cef_shutdown
cef_initialize
cef_execute_process
cef_register_scheme_handler_factory
cef_register_extension
cef_post_task
cef_currently_on
cef_string_list_free
cef_string_list_alloc
cef_string_userfree_utf16_free
cef_log
cef_string_multimap_free
cef_string_multimap_alloc
cef_string_multimap_append
cef_string_multimap_value
cef_string_multimap_key
cef_string_multimap_size
cef_string_map_append
cef_string_map_value
cef_string_map_key
cef_string_map_size
cef_string_list_append
cef_string_list_value
cef_string_list_size
cef_string_map_free
cef_string_map_alloc
cef_browser_host_create_browser
cef_process_message_create
cef_request_context_create_context
cef_request_context_get_global_context
cef_dictionary_value_create
cef_value_create
cef_binary_value_create
cef_list_value_create
cef_stream_reader_create_for_data
cef_v8context_get_current_context
cef_v8value_create_function
cef_v8value_create_array
cef_v8value_create_object
cef_v8value_create_string
cef_v8value_create_uint
cef_v8value_create_int
cef_v8value_create_bool
cef_v8value_create_null
cef_api_hash
cef_string_utf16_cmp
cef_string_utf8_to_utf16
cef_string_utf16_clear
cef_v8value_create_double
cef_string_utf16_set

dbghelp

SymSetOptions
StackWalk64
SymInitialize
SymFunctionTableAccess64
SymGetModuleBase64
SymFromAddr
SymGetLineFromAddr64

shell32

SHGetKnownFolderPath
CommandLineToArgvW

kernel32

WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
HeapSize
GetACP
IsValidCodePage
SetStdHandle
HeapReAlloc
ReadConsoleW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
DeleteFileW
OutputDebugStringW
GetCurrentProcess
GetModuleFileNameW
GetVersionExW
GetProcAddress
GetModuleHandleW
GetCurrentThread
SetUnhandledExceptionFilter
ReadFile
CreateNamedPipeW
DisconnectNamedPipe
GetLastError
SetEvent
GetOverlappedResult
ConnectNamedPipe
WaitForSingleObject
CloseHandle
WaitForMultipleObjects
CancelSynchronousIo
SetNamedPipeHandleState
WriteFile
CreateFileW
Sleep
WaitNamedPipeW
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentThreadId
CreateEventW
ResetEvent
GetCurrentProcessId
TerminateProcess
OpenProcess
RaiseException
GetThreadId
GetCommandLineW
SetErrorMode
SetConsoleCP
SetConsoleOutputCP
MultiByteToWideChar
WideCharToMultiByte
GetCurrentDirectoryW
SetLastError
FormatMessageA
LCMapStringW
GetFileType
GetFileSizeEx
HeapFree
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapAlloc
GetStdHandle
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
UnhandledExceptionFilter
GetCPInfo
CompareStringEx
GetSystemTimeAsFileTime
LCMapStringEx
DecodePointer
EncodePointer
GetExitCodeThread
WaitForSingleObjectEx
DeleteCriticalSection
TryEnterCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
GetStringTypeW
MoveFileExW
AreFileApisANSI
SetFilePointerEx
SetFileInformationByHandle
SetEndOfFile
FindNextFileW
FindFirstFileExW
FindClose
LocalFree
GetProcessHeap

user32

BeginDeferWindowPos
GetWindow
DeferWindowPos
RegisterClassExW
UnregisterClassW
EnableWindow
GetForegroundWindow
GetCursorPos
UpdateWindow
PostQuitMessage
IsWindow
SetWindowPos
DestroyWindow
GetWindowRect
FindWindowExW
DefWindowProcW
GetWindowTextW
IsIconic
SetWindowLongW
SwitchToThisWindow
ShowWindow
SetWindowTextW
ShowWindowAsync
GetWindowTextLengthW
BringWindowToTop
AttachThreadInput
GetWindowThreadProcessId
LoadIconW
SetForegroundWindow
EnableMenuItem
SetFocus
SetActiveWindow
GetFocus
GetSystemMenu
SetParent
MapWindowPoints
ScreenToClient
ActivateKeyboardLayout
GetParent
ShowCursor
GetClientRect
TranslateMessage
DispatchMessageW
CreateWindowExW
PostMessageW
AdjustWindowRectEx
GetMessageW
LoadImageW
EndDeferWindowPos
LoadCursorW
FindWindowW
GetTopWindow

Sections

.text
Size: 915KB - Virtual size: 914KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 205KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14717010f004452f948c5378ecc83676

Headers

DLL Characteristics

File Characteristics

Imports

libcef

dbghelp

shell32

kernel32

user32

Sections

.text Size: 915KB - Virtual size: 914KB

.rdata Size: 205KB - Virtual size: 204KB

.data Size: 45KB - Virtual size: 49KB

.rsrc Size: 93KB - Virtual size: 92KB

.reloc Size: 56KB - Virtual size: 56KB

.text
Size: 915KB - Virtual size: 914KB

.rdata
Size: 205KB - Virtual size: 204KB

.data
Size: 45KB - Virtual size: 49KB

.rsrc
Size: 93KB - Virtual size: 92KB

.reloc
Size: 56KB - Virtual size: 56KB