8a0b6e2c54000153303afb7288e8d545

Sharing

Copy URL Twitter E-mail

General

Target

8a0b6e2c54000153303afb7288e8d545
Size

114KB
MD5

8a0b6e2c54000153303afb7288e8d545
SHA1

4296217a01a3cd6a01f558e20d1cb8a87ee38fa5
SHA256

13bc5b1623006125ed5f0b41a9b2438a78ddda9022bfd4a70e4edaa53d8f7f41
SHA512

7fe9dc226213c78a73ecc31368835eb8b24bb03002e454f17f73ce749040a279744c40e2a78ddb0dcf42ed002bec338cc8e213967af0047ca850c28d174decb5
SSDEEP

1536:frCkp1c/q5PbR4LwsYZ1Dwn0Eb1oVi8KTqaPW/XkHEdAjRMt7I0zkRk4XY3nSr:+gNPbmYZ1lVKTqlXkHwAjRMtcslSr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a0b6e2c54000153303afb7288e8d545

Files

8a0b6e2c54000153303afb7288e8d545
.exe windows:5 windows x86 arch:x86

1c7367f2cdcd7767dcca81a0912d1dac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\zMSiCuRh\zmqccufHglSoe\khcPAdfayif\fAgavsyYmArtsV.pdb

Imports

gdi32

EndPage
GetRgnBox
RealizePalette
SelectObject
GetTextColor
GetSystemPaletteUse
GetStockObject
StartPage
CreatePatternBrush
SetPaletteEntries
SetWindowExtEx
DPtoLP
CreateFontIndirectA
GetObjectW
Rectangle
GetDeviceCaps
GetDIBits
DeleteDC
CreatePenIndirect
CreateDiscardableBitmap
MoveToEx
GetTextExtentPointW
PtInRegion
PatBlt
CreatePen
SetMapMode
TextOutW
SetLayout
SetBitmapDimensionEx
GetTextFaceW
AddFontResourceW
Escape
GetTextExtentExPointW
CreateHalftonePalette
CreateDIBSection
StretchBlt
ExtTextOutW
TextOutA
CreatePolygonRgn
StartDocW
EnumFontFamiliesExW
SetDIBColorTable
CreateRoundRectRgn
BeginPath
SetAbortProc
IntersectClipRect
GetObjectA
SetTextAlign
CreateRectRgn
GetTextCharsetInfo
ExtFloodFill
CreateEllipticRgnIndirect
GetTextExtentPointA
FillRgn
GetNearestPaletteIndex
ScaleViewportExtEx
LineTo
CombineRgn
GetSystemPaletteEntries
PolyBezier
CreateHatchBrush
GetDIBColorTable
SetBkColor
CreateSolidBrush
PtVisible
GetPaletteEntries
GetTextExtentPoint32A
OffsetViewportOrgEx
GetTextMetricsA
DeleteObject
StretchDIBits
GetBkMode
SaveDC

comdlg32

GetSaveFileNameA
CommDlgExtendedError
PageSetupDlgW
GetOpenFileNameW
FindTextW

kernel32

SetCommState
GetNumberFormatW
GetCommConfig
FindFirstFileA
UnlockFile
EscapeCommFunction
MoveFileW
GlobalAddAtomW
GetLongPathNameW
GetTempPathA
LCMapStringA
lstrlenW
CreateMutexW
SleepEx
MoveFileExA
GetExitCodeThread
GlobalUnlock
SetFileAttributesW
CreateRemoteThread
EnumResourceTypesA
AreFileApisANSI
RaiseException
LockResource
GetNumberFormatA
CreatePipe
lstrcatW
GetComputerNameW
LocalAlloc
MoveFileExW
ResumeThread
GetHandleInformation
GetModuleFileNameA
PulseEvent
UnmapViewOfFile
GetTickCount
FindNextFileW
FindResourceExW
WaitCommEvent
lstrcmpW
SetThreadExecutionState
IsValidLocale
GetBinaryTypeA
SetupComm
SetCommBreak
lstrcpynA
FindResourceW
DeleteCriticalSection
FoldStringW
SetFileAttributesA
FlushFileBuffers
GetProcAddress
RemoveDirectoryA
MulDiv
RegisterWaitForSingleObject
GlobalMemoryStatusEx
AddAtomW
lstrcpyA
GetSystemDefaultUILanguage
GetCommandLineA
GlobalGetAtomNameW
RtlUnwind
GetFileSize
CreateEventA
QueryPerformanceCounter
FindResourceExA
GetSystemDirectoryA
SetCommTimeouts
VerSetConditionMask
CallNamedPipeW
GetComputerNameExA
CompareStringA
DeviceIoControl
GetShortPathNameA
LocalSize
HeapUnlock
SetFilePointer
GetStdHandle

user32

InsertMenuA
MonitorFromPoint
DefFrameProcW
LoadBitmapA
TranslateAcceleratorA
SetParent
DrawTextA
DestroyMenu
GetCaretPos
OffsetRect
DrawFocusRect
GetMenuItemCount
PeekMessageA
DialogBoxParamA
GetWindowLongW
AttachThreadInput
SendMessageA
EndDialog
wvsprintfW
CharToOemBuffA
InSendMessage
GetScrollPos
GetNextDlgGroupItem
GetCursorPos
SetClassLongW
SetDlgItemTextA
CharLowerW
CopyAcceleratorTableW
GetWindowRect
wsprintfW
DialogBoxIndirectParamW
ReleaseDC
CreateWindowExW
GetDCEx
CharUpperBuffA
SendDlgItemMessageW
CharToOemW
SetWindowPlacement
SendNotifyMessageW
GetKeyboardLayout
GetDlgItemTextA
LockWindowUpdate
SwapMouseButton
EndTask
SetActiveWindow
CascadeWindows
KillTimer
DispatchMessageA
TabbedTextOutW
DispatchMessageW
FindWindowExW
GetClassInfoA
OemToCharA
ModifyMenuW
InflateRect
DragObject
SetWindowTextA
wsprintfA
CheckMenuItem
SetWindowLongW
SetRect
PostThreadMessageW
GetWindowDC
GetFocus
EnableMenuItem
LoadAcceleratorsW
TranslateAcceleratorW
GetMessageW
BringWindowToTop
AppendMenuW
LoadStringW
ShowWindow
DestroyCursor
CharUpperW
SendMessageTimeoutW
wvsprintfA
GetActiveWindow
RegisterClassExA
SetForegroundWindow
LoadCursorW
CreateDialogParamA
DefFrameProcA
IsWindowUnicode
CreateWindowExA
GetSystemMetrics
RegisterWindowMessageA
GetKeyboardType
GetScrollRange
CharLowerA
WaitMessage
DrawTextW
GetMessageA
SetMenuItemInfoW
SetWindowPos
EnableWindow
DrawAnimatedRects
CloseDesktop
SetLastErrorEx
PostThreadMessageA
GetUserObjectInformationW
LookupIconIdFromDirectory
DrawStateA
SetWindowTextW
GetKeyboardLayoutList
CreateMenu
SetPropW
GetClipCursor
ChangeMenuW
GetUpdateRect
GetClassInfoW
DrawStateW
GetAsyncKeyState
CallWindowProcA
IsDialogMessageA
GetDlgCtrlID
GetMenuStringA
GetLastActivePopup
SetMenuDefaultItem
FillRect
GetMenuItemInfoW
IsIconic
WaitForInputIdle
DrawMenuBar
FindWindowA
GetClientRect
GrayStringW
ShowCursor
DestroyAcceleratorTable
ShowScrollBar
UnloadKeyboardLayout
TrackPopupMenuEx
InternalGetWindowText
InsertMenuItemW
LoadStringA
GetMenu
GetKeyNameTextW
UnionRect
GetMessageExtraInfo
CheckMenuRadioItem
LoadIconW
SetDlgItemTextW
IsWindow
IsCharUpperA
FindWindowW
ShowWindowAsync
InsertMenuW
GetKeyState
MapVirtualKeyExW
SetRectEmpty
WindowFromPoint
MapVirtualKeyA
ToUnicodeEx
GetParent
DestroyIcon
GetClassInfoExW
CopyImage
AllowSetForegroundWindow
HiliteMenuItem
GetWindowTextW
MapVirtualKeyW
OpenIcon
GetDlgItem
DrawTextExW
OpenDesktopW
RemoveMenu
BeginDeferWindowPos
IntersectRect
ExitWindowsEx
GetMessagePos
GetDC
CharPrevA
SetDlgItemInt
ScrollWindow

msvcrt

_controlfp
isprint
strtoul
strtok
vswprintf
sprintf
iswdigit
fputs
fwrite
__set_app_type
strncmp
__p__fmode
isalpha
strrchr
strcspn
wcscspn
strcoll
wcscmp
isspace
__p__commode
clock
_amsg_exit
exit
strcpy
wcslen
_initterm
toupper
bsearch
ungetc
swprintf
_ismbblead
strerror
isalnum
_XcptFilter
vsprintf
wcscoll
time
clearerr
towupper
strstr
wcstombs
fseek
wcspbrk
strncpy
strpbrk
_exit
_cexit
setlocale
ftell
__setusermatherr
swscanf
fread
gmtime
strspn
__getmainargs
puts
fputc
towlower
qsort
wcstod
printf
gets

Exports

Exports

?GetWindowWordJKDKjlKDLIDF@@YGKPA_WK@Z

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.txtnfo
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vtxt
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt0
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt1
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt2
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt3
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c7367f2cdcd7767dcca81a0912d1dac

Headers

File Characteristics

PDB Paths

Imports

gdi32

comdlg32

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.itext Size: 10KB - Virtual size: 9KB

.rdata Size: 7KB - Virtual size: 7KB

.txtnfo Size: 12KB - Virtual size: 11KB

.data Size: 1KB - Virtual size: 1KB

.vtxt Size: - Virtual size: 128KB

.dttxt0 Size: 6KB - Virtual size: 6KB

.dttxt1 Size: 6KB - Virtual size: 6KB

.dttxt2 Size: 6KB - Virtual size: 6KB

.dttxt3 Size: 37KB - Virtual size: 37KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 23KB

.itext
Size: 10KB - Virtual size: 9KB

.rdata
Size: 7KB - Virtual size: 7KB

.txtnfo
Size: 12KB - Virtual size: 11KB

.data
Size: 1KB - Virtual size: 1KB

.vtxt
Size: - Virtual size: 128KB

.dttxt0
Size: 6KB - Virtual size: 6KB

.dttxt1
Size: 6KB - Virtual size: 6KB

.dttxt2
Size: 6KB - Virtual size: 6KB

.dttxt3
Size: 37KB - Virtual size: 37KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB