666e16ba76ddd572dd292650e1d78451

Sharing

Copy URL

Twitter E-mail

General

Target

666e16ba76ddd572dd292650e1d78451
Size

404KB
MD5

666e16ba76ddd572dd292650e1d78451
SHA1

9c7258f55d6cae272f843b8ae8f4572077506418
SHA256

bf0a7410398a085364b6b1ada7197539b3795b28ca564f082dc9a777c4ab52fe
SHA512

87582ce8d3dcbed1f25c4bd68dd1815b453eb722c0963b369d49181afa42ebc0fbbbb2b7d6aa197dbcf477dab2ff2b7064727d09096afa78fbce839fdfc1e6f2
SSDEEP

6144:uEwQ2yyscSBMr6yyqpToMCvoflRjnPGvP:IQ2yyW++4cZORyvP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
666e16ba76ddd572dd292650e1d78451

Files

666e16ba76ddd572dd292650e1d78451
.exe windows:4 windows x86 arch:x86

99a20fbb375680c8773061be24d64305

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenJobObjectA
GetConsoleAliasA
Thread32First
GetTickCount
ReadConsoleA
GetConsoleCP
CreateFileMappingW
GlobalHandle
GlobalGetAtomNameA
SetupComm
OpenProfileUserMapping
GetSystemTime
GetProcessWorkingSetSize
CompareStringA
ReadFileScatter
GetDevicePowerState
GetDefaultCommConfigA
SetHandleContext
GetEnvironmentStringsA
UnlockFile
CreateEventA
CloseConsoleHandle
GetSystemPowerStatus
GetConsoleCursorMode
GetVersionExA
DeleteTimerQueue
SizeofResource
SetInformationJobObject
LocalLock
WaitForMultipleObjects
DeleteTimerQueueTimer
ReadConsoleOutputAttribute
GetProcessPriorityBoost
GetCurrentDirectoryA
HeapCreate
GetTimeFormatA
PeekConsoleInputA
EnumSystemLanguageGroupsA
GetVersionExA
GetFileAttributesExA
GetConsoleAliasExesLengthA
DebugBreak
GetFileType
WideCharToMultiByte
FindNextVolumeMountPointA
GlobalReAlloc
MapViewOfFile
GetComputerNameA
GetVolumePathNameA
FlushConsoleInputBuffer
CreateWaitableTimerA
GlobalLock
GetStartupInfoA
GetCurrentProcess
OpenMutexA
HeapUnlock
FillConsoleOutputCharacterA
GlobalAddAtomA
_lwrite
GetEnvironmentVariableA
SetCalendarInfoA
EnumTimeFormatsA
SetProcessPriorityBoost
GetTapePosition
VerifyVersionInfoA
TermsrvAppInstallMode
SetConsoleCursor
GetConsoleAliasesLengthA
GetThreadPriorityBoost
WriteConsoleInputA
GetProcessId
RaiseException
VirtualAlloc
GetDriveTypeA
WriteConsoleOutputCharacterW
GetProcessVersion
GlobalSize
GetDateFormatA
GetBinaryType
lstrcpyn
OpenWaitableTimerA
SetLocalPrimaryComputerNameA
GetConsoleTitleA
OpenEventA
GetConsoleMode
GetTempPathA
OpenFileMappingA
SetThreadIdealProcessor
OpenSemaphoreA
EnumResourceTypesA
GetThreadTimes
GetDiskFreeSpaceA
GetConsoleMode
ShowConsoleCursor
HeapSize
GetConsoleInputExeNameA
OpenMutexA
CreateFileA
GetSystemWindowsDirectoryA
SetHandleInformation
GetDefaultCommConfigA
GetModuleHandleA
GetExitCodeThread
VirtualProtectEx
SetVolumeLabelA
OpenMutexA
SetConsoleTitleA
SetComputerNameA
GetFullPathNameA
GetFileInformationByHandle
DeleteTimerQueueTimer
GetConsoleWindow
FlushViewOfFile
LockFileEx
GetThreadTimes
HeapDestroy
GetTempPathA
SetThreadPriority
FormatMessageA
GetNativeSystemInfo
GetSystemDefaultUILanguage
ReadConsoleA
SetComputerNameExA
lstrcpynA
ResetEvent
WriteConsoleInputA
WritePrivateProfileStringA
IsBadHugeWritePtr
GetComputerNameA
HeapUnlock
ExitProcess
SetThreadUILanguage
RegisterWaitForSingleObjectEx
GetConsoleMode
SetFileApisToOEM
ReadConsoleInputA
GetThreadPriority
WriteConsoleA
GetFileInformationByHandle
SetUserGeoID
ReadConsoleOutputA
GetCurrentProcessId
GetTickCount
GetLogicalDriveStringsA
LCMapStringA
OpenFileMappingA
GetCurrentThreadId
OpenSemaphoreA
DisconnectNamedPipe
LZCopy
IsProcessorFeaturePresent
Process32Next
CreateSocketHandle
SetComputerNameExA
ReadConsoleA
SetErrorMode
IsBadStringPtrA
GetCurrentThreadId
GetBinaryType
WriteConsoleOutputCharacterW
GlobalDeleteAtom
RemoveDirectoryA
Heap32First
GetConsoleAliasExesW
SetConsoleTitleA
ReadConsoleOutputCharacterA
QueryDosDeviceA
ReadConsoleOutputCharacterA
SetFileShortNameA
GetSystemDirectoryA
ShowConsoleCursor
GetThreadPriority
GetSystemDefaultLangID
GetCurrentConsoleFont

user32

FlashWindowEx
InternalGetWindowText
SendInput
DrawFrame
GetKeyboardLayoutNameA
ReasonCodeNeedsComment
GetDCEx
CreateIcon
GetClassWord
CascadeChildWindows
LoadRemoteFonts
MessageBoxA
GetTaskmanWindow
MessageBoxTimeoutA
SetWinEventHook
CreateWindowExA
SwapMouseButton
GetProcessDefaultLayout
GetKeyboardLayoutNameA
GetClassInfoExW
CharPrevA
LoadMenuIndirectW
ChangeDisplaySettingsExA
ChangeDisplaySettingsExA
GetKeyboardLayoutNameA
SetSysColors
RealGetWindowClass
EnumPropsExA
GetKBCodePage
SetClassLongA
PrivateExtractIconExA
GetWindowTextA
SetWindowLongA
ToUnicodeEx
ArrangeIconicWindows
CreateWindowStationA
IsCharLowerA
SetLayeredWindowAttributes
BuildReasonArray
RegisterHotKey
GetWindowTextA
PaintMenuBar
GetKeyboardLayoutNameA
SetWindowPos
SetDoubleClickTime
GetWindowTextLengthW
RegisterTasklist
SetDoubleClickTime
GetCapture
IsIconic
CreateDialogIndirectParamA
IsZoomed
LoadMenuIndirectA
SetFocus
GetDlgItem
EndPaint
GetMenuItemInfoA
GetLastInputInfo
GetScrollRange
UnregisterUserApiHook
GetAncestor
AdjustWindowRect
GetWindowTextA
GetTopWindow
RecordShutdownReason
IsHungAppWindow
CharLowerBuffW
PaintMenuBar
SetMessageExtraInfo
SetDlgItemInt
GetQueueStatus
LoadMenuIndirectA
SetWindowPlacement
LoadCursorFromFileA
CreateWindowStationA
GetUpdateRect
GetClipboardData
UnregisterClassA
IsDialogMessage
SetCursor
ReasonCodeNeedsBugID

ws2_32

closesocket

Exports

Exports

Fcfbwbnk
Fohaxjnbb
AddYsgdukkcdgu
Exrwehwtf
OpenMesplgean
Bqxalbxh

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 662KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99a20fbb375680c8773061be24d64305

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 52KB - Virtual size: 662KB

.idata Size: 268KB - Virtual size: 264KB

.rsrc Size: 80KB - Virtual size: 79KB

.itext
Size: - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 662KB

.idata
Size: 268KB - Virtual size: 264KB

.rsrc
Size: 80KB - Virtual size: 79KB