58bbbba2101e7e8a83bdaefff8cd7484

Sharing

Copy URL Twitter E-mail

General

Target

58bbbba2101e7e8a83bdaefff8cd7484
Size

441KB
MD5

58bbbba2101e7e8a83bdaefff8cd7484
SHA1

1f09fd284d177c3b0f3a6fd05ca87fd38139b1cf
SHA256

03edbfbedfffd573e1170b20bf9d0ed26b1eee75aea91ed9d01f24263774660d
SHA512

7e63208e1bb80457c314eb71d8f580253e7d9c6fbb8298bd4b091f3bc92fabf0e10d3a162de489118ae9671505415f20cee912f3affa6aa9c681934e4c4aadd3
SSDEEP

12288:JGdljG9afYJfFaynivditKgmNSYIVucWWV1OvVH3pM+1q7j+Wpj2a:wv0m8YmLV1+HZLDi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58bbbba2101e7e8a83bdaefff8cd7484

Files

58bbbba2101e7e8a83bdaefff8cd7484
.exe windows:4 windows x86 arch:x86

76c6ad06c24285569632f59cc0032640

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDeferWindowPos
InvalidateRect
WinHelpA
MessageBoxA
DdeInitializeA
LockWindowUpdate
EndPaint
SwitchDesktop
CheckDlgButton
ValidateRect
DdeSetUserHandle
GetClassInfoExA
RemovePropW
MenuItemFromPoint
LoadCursorA
EqualRect
GetClipboardViewer

advapi32

RegOpenKeyW
CryptEncrypt
RegEnumValueA
CryptVerifySignatureA
RegEnumKeyExW
CryptSetKeyParam
LookupSecurityDescriptorPartsA

wininet

IsHostInProxyBypassList
DeleteIE3Cache
InternetReadFile

comdlg32

PageSetupDlgW
GetSaveFileNameW
GetFileTitleA
ReplaceTextA
ChooseColorW
FindTextW
LoadAlterBitmap
ReplaceTextW
PageSetupDlgA
GetSaveFileNameA
GetOpenFileNameW
ChooseColorA
ChooseFontW

kernel32

GetLastError
CommConfigDialogW
CreateNamedPipeW
VirtualAlloc
GetStartupInfoA
EnumDateFormatsW
GetModuleFileNameA
RtlZeroMemory
FreeEnvironmentStringsW
GetEnvironmentStrings
LoadLibraryA
IsBadWritePtr
TerminateProcess
GetFileAttributesA
GetTimeZoneInformation
GetPrivateProfileSectionA
RtlUnwind
WriteConsoleOutputW
TlsGetValue
HeapReAlloc
HeapDestroy
GetSystemTimeAsFileTime
GetModuleHandleA
LCMapStringA
GetCPInfo
SetLastError
ExitProcess
GetFileAttributesExA
IsValidLocale
IsValidCodePage
InitializeCriticalSection
MultiByteToWideChar
GetPrivateProfileStructW
GetEnvironmentVariableW
VirtualQuery
TlsSetValue
GetEnvironmentStringsW
GetStringTypeW
SetHandleCount
VirtualProtect
WideCharToMultiByte
GetOEMCP
GetVersionExA
GetNamedPipeHandleStateW
GetVolumeInformationA
TlsFree
GetDiskFreeSpaceExW
FindFirstFileExA
InterlockedExchange
GetFileType
LCMapStringW
GetSystemInfo
GetProcAddress
GlobalAddAtomW
SetThreadContext
QueryPerformanceCounter
GetACP
HeapAlloc
HeapCreate
LeaveCriticalSection
GetTimeFormatA
EnumSystemLocalesA
TlsAlloc
GetLocaleInfoA
GetTickCount
GetProcessHeaps
GetFullPathNameW
VirtualFree
WriteFile
CompareStringA
HeapSize
GetCommandLineA
GetStringTypeA
EnterCriticalSection
FreeEnvironmentStringsA
GetThreadPriority
DeleteCriticalSection
CompareStringW
lstrcpynW
GetLocaleInfoW
GetCurrentProcessId
SetEnvironmentVariableA
UnhandledExceptionFilter
WaitForMultipleObjectsEx
GetCurrentProcess
DebugBreak
GetUserDefaultLCID
GetWindowsDirectoryW
GetStdHandle
HeapFree
GetCurrentThreadId
GetCurrentThread
GetDateFormatA

gdi32

StrokeAndFillPath
GetTextExtentPoint32W
CreatePolyPolygonRgn
CheckColorsInGamut
DeviceCapabilitiesExW
UpdateICMRegKeyW
SetSystemPaletteUse
CombineRgn
CopyMetaFileA
GetCharWidthFloatW
GetPolyFillMode
GdiGetBatchLimit
GetEnhMetaFilePaletteEntries

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76c6ad06c24285569632f59cc0032640

Headers

File Characteristics

Imports

user32

advapi32

wininet

comdlg32

kernel32

gdi32

Sections

.text Size: 162KB - Virtual size: 162KB

.data Size: 274KB - Virtual size: 274KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 162KB - Virtual size: 162KB

.data
Size: 274KB - Virtual size: 274KB

.rsrc
Size: 3KB - Virtual size: 2KB