8b4a79f04c2d00aed0500f92bb8dcc9f

Sharing

Copy URL Twitter E-mail

General

Target

8b4a79f04c2d00aed0500f92bb8dcc9f
Size

568KB
MD5

8b4a79f04c2d00aed0500f92bb8dcc9f
SHA1

739eba015b49a47f03f31ba3c76d5702d051b21f
SHA256

1ababeb65ab7ef42975cac5004a02455af58bdfa49fc71caab442b20dfa128fe
SHA512

db16069a8ca8f13ec5e87ef77e84f84a486193393ec83b822861f6b50f5116e5f08e86fd7b1f2fdfb2ccdd5d447931a5ee4059a2d584dd89483e389593ea3d28
SSDEEP

12288:Z55SuNTMLXaqdwMQbZZ0nl1HILviLpjm8LOQbJjDUPZ:b5BN4DNdybZZq1HILvGjmKJJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b4a79f04c2d00aed0500f92bb8dcc9f

Files

8b4a79f04c2d00aed0500f92bb8dcc9f
.exe windows:4 windows x86 arch:x86

d28816258ad071d873dd82b590679e28

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\cdzyafwqe\yze\wotz\qcfeowv\pctbteme.pdb

Imports

comdlg32

ReplaceTextA

gdi32

GetObjectW
CreateDCA
GetGlyphOutlineA
GetDeviceCaps
ColorMatchToTarget
SetSystemPaletteUse
GetMetaFileBitsEx
GetTextFaceA
CombineTransform
ChoosePixelFormat
CreateDCW
GetSystemPaletteEntries
UpdateColors
AddFontResourceW
CreateEllipticRgn
CopyEnhMetaFileA
SelectObject
GetNearestColor
DeleteDC
ArcTo
StartDocA
GetFontLanguageInfo
SetPixelV
LineTo

user32

PostMessageA
RegisterClassExA
EnumPropsExA
VkKeyScanA
GetTabbedTextExtentA
MessageBoxIndirectW
DefMDIChildProcW
IsCharAlphaNumericW
SetForegroundWindow
UnpackDDElParam
CreateWindowStationA
EnumDisplaySettingsA
DrawCaption
GetCapture
LoadAcceleratorsA
LoadCursorW
MapVirtualKeyExA
CreateWindowExW
GetWindowLongA
DestroyWindow
RegisterClassA
AppendMenuA
SetMenuItemInfoW
GetMenuStringW
CallMsgFilter
AdjustWindowRectEx
MapVirtualKeyW
GetUpdateRgn
CharNextA
DrawTextW
LoadCursorA
CreateDesktopA
ShowWindow
IsCharAlphaNumericA
RegisterClipboardFormatA
GetClassInfoExA
GetClipboardData
InSendMessageEx
CreateDialogIndirectParamA
EnumDisplayDevicesA
GetFocus
DialogBoxIndirectParamW
MessageBoxExW
LoadBitmapA
CreateDialogParamA
GetMenuBarInfo
OpenClipboard
LoadMenuW
DestroyCaret
FreeDDElParam
InSendMessage
SetWindowLongA
InvalidateRect
DrawFrame
MonitorFromRect
DrawAnimatedRects
EnumDisplaySettingsExA
DefWindowProcW
SetDebugErrorLevel
DefDlgProcA
OpenIcon
GetWindowWord
IsCharAlphaA
AdjustWindowRect
GetClassInfoExW
MessageBoxA

kernel32

TlsGetValue
GetCommandLineW
CloseHandle
EnterCriticalSection
WaitNamedPipeW
WaitForMultipleObjects
GetCurrentThreadId
LCMapStringW
GetLocalTime
GetFileType
SetTimeZoneInformation
SetLastError
GetConsoleTitleA
CreateDirectoryA
VirtualFree
CreateMutexA
GetCurrencyFormatA
OpenMutexA
GetCurrentThread
HeapReAlloc
TlsAlloc
FindNextChangeNotification
TlsFree
GetStdHandle
CreateEventW
GetVersion
InitializeCriticalSection
MultiByteToWideChar
CreateNamedPipeW
LoadLibraryA
SetFileTime
HeapLock
GetCommandLineA
EnumTimeFormatsW
InterlockedExchange
SetLocaleInfoA
WriteFileEx
SetComputerNameW
HeapDestroy
GetCurrentProcessId
GetCPInfo
FindAtomA
GetProcAddress
SetStdHandle
GetTickCount
FindResourceW
GetStartupInfoA
LCMapStringA
GetTimeZoneInformation
GetPrivateProfileStructW
ReadConsoleW
CompareStringA
EnumDateFormatsW
GetLastError
SetFilePointer
GetFileAttributesExA
GetSystemTime
InterlockedIncrement
EnumSystemCodePagesA
GetEnvironmentStringsW
lstrcpynA
WideCharToMultiByte
TransmitCommChar
GetProfileSectionA
GetModuleFileNameA
GetModuleFileNameW
FindFirstFileExA
TerminateProcess
DeleteCriticalSection
SetEnvironmentVariableA
WriteConsoleW
QueryPerformanceCounter
ReadFile
FlushFileBuffers
UnhandledExceptionFilter
RtlUnwind
OpenFileMappingA
lstrcpyA
GetEnvironmentStrings
CompareStringW
ExitProcess
GetSystemTimeAsFileTime
HeapFree
GetStartupInfoW
LeaveCriticalSection
FreeEnvironmentStringsA
VirtualAlloc
SetHandleCount
GetCurrentProcess
GetStringTypeA
VirtualQuery
SetVolumeLabelA
GetStringTypeW
TlsSetValue
OpenWaitableTimerA
GetModuleHandleA
HeapAlloc
ReadConsoleInputW
FreeEnvironmentStringsW
HeapCreate
CreateNamedPipeA
InterlockedDecrement
IsBadWritePtr
GetFileAttributesW
WriteFile
GetNumberFormatA

comctl32

ImageList_SetOverlayImage
ImageList_DrawIndirect
InitCommonControlsEx
ImageList_SetImageCount
DrawStatusTextA
ImageList_Merge
ImageList_DragShowNolock
GetEffectiveClientRect
ImageList_ReplaceIcon
MakeDragList
ImageList_Copy
CreatePropertySheetPage
DrawStatusTextW
ImageList_AddMasked
ImageList_GetIcon
CreateUpDownControl
ImageList_DragEnter

Sections

.text
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d28816258ad071d873dd82b590679e28

Headers

File Characteristics

PDB Paths

Imports

comdlg32

gdi32

user32

kernel32

comctl32

Sections

.text Size: 188KB - Virtual size: 185KB

.rdata Size: 248KB - Virtual size: 247KB

.data Size: 116KB - Virtual size: 131KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 188KB - Virtual size: 185KB

.rdata
Size: 248KB - Virtual size: 247KB

.data
Size: 116KB - Virtual size: 131KB

.rsrc
Size: 12KB - Virtual size: 11KB