68a3fb7a5fb3a97e87ab12e826aea4fb

Sharing

Copy URL Twitter E-mail

General

Target

68a3fb7a5fb3a97e87ab12e826aea4fb
Size

84KB
MD5

68a3fb7a5fb3a97e87ab12e826aea4fb
SHA1

3ee9afb3a6018b4ab8aa5a3d147759764b91a259
SHA256

5f4158cf261e2925558dae8166a70dd6b6f7c37d257f51f583344ca8f6ac27f1
SHA512

d9bcc1cdfbc39b00962a7a85124fbb82b8424da28f70d45366dc4f8506b542397d8b978cc1b73f52ab32948ffe2c2649aa32f067d4b57f3820b212bbb4bca0aa
SSDEEP

1536:b74MoKmb6l+06TywchbCh/+j9XJUPZ5ry507k5aaq:3iKmOB6lOCh/+j9XJU7ye7kY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68a3fb7a5fb3a97e87ab12e826aea4fb

Files

68a3fb7a5fb3a97e87ab12e826aea4fb
.exe windows:4 windows x86 arch:x86

335bfdaaa461e3309ce9c01a2d00cfa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
_onexit
__dllonexit
time
atol
rand
strncpy
exit
__CxxFrameHandler
sprintf
strstr
??1type_info@@UAE@XZ
_stricmp
_strlwr
_strcmpi
memset
strlen
strcpy
_strnicmp
strcat
free
malloc
_chdir
_chdrive
atoi
??2@YAPAXI@Z
strcspn
memcpy
sscanf
strchr
strrchr
memmove
memcmp
memchr
srand
??0exception@@QAE@ABV0@@Z
_CxxThrowException
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
_access
_chmod
??3@YAXPAX@Z

kernel32

lstrcpyA
CreateMutexA
lstrcatA
lstrcpynA
GetSystemDirectoryA
Sleep
GetLastError
DeleteFileA
GetTempPathA
lstrlenA
RemoveDirectoryA
CopyFileA
lstrcmpiA
CreateProcessA
OpenProcess
GetCurrentProcessId
CreateFileA
WritePrivateProfileStringA
GetLocalTime
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
ResetEvent
SetEvent
WinExec
InterlockedDecrement
GetProcAddress
FindResourceA
SizeofResource
LoadResource
LockResource
FreeResource
GetTempFileNameA
TerminateProcess
GetCurrentProcess
CreateDirectoryA
MultiByteToWideChar
GetFileSize
ReadFile
LoadLibraryA
CloseHandle
LocalFree
WriteFile
SetFileAttributesA

user32

IsWindow
DispatchMessageA
TranslateMessage
GetMessageA
CharLowerA
CharUpperA
MoveWindow
ShowWindow
KillTimer
PostMessageA
CreateWindowExA
FindWindowA
RegisterClassExA
LoadCursorA
PostQuitMessage
DefWindowProcA
MessageBoxA
DestroyWindow
SetWindowTextA
SetWindowPos
GetClientRect
GetDesktopWindow
PeekMessageA
FlashWindow
GetWindowThreadProcessId
LoadStringA
ReleaseDC
GetSystemMetrics
GetDC
SetTimer
GetActiveWindow

advapi32

RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegConnectRegistryA
RegQueryValueExA
RegSetValueExA
RegEnumKeyExA
RegEnumValueA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
CryptReleaseContext
CryptEncrypt
CryptDeriveKey
CryptHashData
CryptCreateHash
CryptDestroyHash
CryptDestroyKey
CryptAcquireContextA
CryptDecrypt
InitiateSystemShutdownA
RegOpenKeyExA
RegDeleteKeyA

shell32

Shell_NotifyIconA
ShellExecuteA

urlmon

URLDownloadToCacheFileA
URLDownloadToFileA

wininet

InternetGetConnectedState
InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetCrackUrlA
InternetOpenA

ole32

CoCreateInstance
CLSIDFromString
OleRun
CoUninitialize
CoInitializeEx

oleaut32

SysAllocString
GetErrorInfo
SysFreeString
VariantClear
VariantInit

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

gdi32

GetDeviceCaps

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

335bfdaaa461e3309ce9c01a2d00cfa8

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

shell32

urlmon

wininet

ole32

oleaut32

version

gdi32

Sections

.text Size: 68KB - Virtual size: 68KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 12KB - Virtual size: 12KB