c8bb650b603564072c07ce76cd6e9cca[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

c8bb650b603564072c07ce76cd6e9cca.bin
Size

334KB
MD5

c8bb650b603564072c07ce76cd6e9cca
SHA1

ca5825ee8c66b300f3130b88f7958e91b6ac66be
SHA256

8f8c466f96c9ccb28f6f31d5b482c015d84076f24d93906432f9988a5c8beaff
SHA512

fa192100272b83b38134a26bbaa39649af544bfdebb61c7857cdb5fb1f10c177467b8eccd8d4f7c8760caa0af986a7e61e79e4a918f5a410f6574d5502e9ee44
SSDEEP

6144:PkhA/xa9HMTlrsIecyXqyQ614hLHl2PCigPVRVK2sXv0sTCP+r:PkW/xa9HMTlwvcyXzQ619tgP1ef0s3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8bb650b603564072c07ce76cd6e9cca.bin

Files

c8bb650b603564072c07ce76cd6e9cca.bin
.exe windows:4 windows x86 arch:x86

bd0ac796c17184148097f16590b84a08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
HeapSize
VirtualQuery
InterlockedExchange
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
ExitProcess
WritePrivateProfileStringA
GetCurrentDirectoryA
lstrcatA
GetPrivateProfileIntA
GetModuleHandleA
FindResourceA
LoadResource
LockResource
GetTickCount
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
GlobalAlloc
GlobalFree
SizeofResource
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

GetWindowLongA
ReleaseCapture
GetCursorPos
CallWindowProcA
BringWindowToTop
SetCapture
GetParent
IsWindow
LoadIconA
RegisterClassExA
CreateWindowExA
GetSystemMetrics
GetWindowRect
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
LoadCursorA
SetCursor
CloseWindow
wsprintfA
PostQuitMessage
PostMessageA
BeginPaint
EndPaint
KillTimer
SetTimer
SendMessageA
SetWindowPos
DestroyWindow
ShowWindow
GetDC
ReleaseDC
SetWindowLongA

shell32

ShellExecuteA

winmm

sndPlaySoundA

gdi32

GetObjectA
GetDeviceCaps
GetBitmapBits
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
DeleteObject
SetBitmapBits

ole32

CoUninitialize
CoTaskMemFree
CreateStreamOnHGlobal
CoTaskMemAlloc
CoInitialize

olepro32

ord251

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 293KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd0ac796c17184148097f16590b84a08

Headers

File Characteristics

Imports

kernel32

user32

shell32

winmm

gdi32

ole32

olepro32

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 1KB - Virtual size: 3KB

.rsrc Size: 293KB - Virtual size: 292KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 293KB - Virtual size: 292KB