80570dd9bb9c94fcc6d6832a70800e22

Sharing

Copy URL Twitter E-mail

General

Target

80570dd9bb9c94fcc6d6832a70800e22
Size

55KB
MD5

80570dd9bb9c94fcc6d6832a70800e22
SHA1

af1bd34251c54be86e0848332ecf49985aed78e4
SHA256

e5381a0a2fae5e764bd8d98e99002a22ca6eae60349dc0a4a13d82b67105fd36
SHA512

305b20ea30198a92f28d176fd77a551d9a2a72eaabce1a7fab9b1319e0237f8df72000e7ac9d4266e6ccd935d059505422355f1bff38092e7c3f815527fca012
SSDEEP

768:TNIe7v2aRlwwKZcN9RJ2JtanZolgRzQt1oMi4IED3cM5h24epYHFegXyeyNVKAdY:TNIYKZqr8JYnellZHoMv2Xp2HyfNvLE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
80570dd9bb9c94fcc6d6832a70800e22

Files

80570dd9bb9c94fcc6d6832a70800e22
.exe windows:5 windows x86 arch:x86

c941c9486a1aaf289e46e9fe46962689

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleW
ContinueDebugEvent
HeapAlloc
GetStringTypeW
LoadLibraryW
GetLastError
GetWindowsDirectoryA
ConsoleMenuControl
GetModuleHandleA
VirtualProtect
DeleteTimerQueue
lstrlenA
GetProcAddress
_lclose
VirtualFree
VirtualAlloc
GetCurrentProcess
FreeLibrary
ExitThread
FindFirstFileW
OutputDebugStringA

msvcrt

__initenv
_wcmdln
_vsnprintf
wcschr
wcscpy
swprintf
isprint
_c_exit
_cexit
_ftol
__p__commode
wcscat
wcslen
_iob
_adjust_fdiv
__winitenv
_exit
memcpy
free
_controlfp
malloc
strncpy
__p__fmode
_except_handler3
__CxxFrameHandler
_wtol
iswalpha
wcscmp
_snwprintf
_purecall
swscanf
__dllonexit

user32

LoadCursorA
SendMessageW
ReleaseCapture
LoadImageW
ClientToScreen
SetScrollPos
DialogBoxParamA
ReleaseDC
GetParent
GetCursorPos
BeginPaint
CopyRect
ScreenToClient
GetProcessWindowStation
UnregisterClassW
LoadCursorW
DestroyWindow
IsWindow
wsprintfW
SendMessageA
DispatchMessageW
CheckDlgButton
LoadMenuW
RegisterClassA
GetMenuItemCount
MapWindowPoints
SetCapture

gdi32

StretchBlt
TranslateCharsetInfo
CreateBitmap
SetBkMode
CreateFontIndirectW
SetTextColor
PatBlt
RestoreDC
Rectangle
CreateCompatibleDC

opengl32

glColor4d
glColor3ui
glColor4f
GlmfBeginGlsBlock
glFogfv
glTexCoord2dv
wglShareLists
glStencilMask
glColor4i
glTexCoord2d

Exports

Exports

MbmUbbkdurQicmn
TfbufkePmbyvqk
ZwPszbjiePisetg

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c941c9486a1aaf289e46e9fe46962689

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 17B

.edata Size: 512B - Virtual size: 124B

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 88B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 17B

.edata
Size: 512B - Virtual size: 124B

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 88B