8b5b48c806eb992e7dfc3c707dd184ef

Sharing

Copy URL Twitter E-mail

General

Target

8b5b48c806eb992e7dfc3c707dd184ef
Size

589KB
MD5

8b5b48c806eb992e7dfc3c707dd184ef
SHA1

f606dd14d109a6cfab48106ea2d3a4d6cf8af0b0
SHA256

20d716bfaf84b6f570a9597e780254dda7c5aa79d14137d0f8289d607daa2e09
SHA512

0dab88bdeaeae7b1bd30fd16b5729e8dae5901aa70b93edbcefbbc2db20319e2630c4a9ab320eb62f644826ff946769bc919e56a890f55c99f3233ab26f857e4
SSDEEP

12288:USrnGIraxY7g3mLIqb4AEqzGVrBP2tacOdsrzV7pwP8DYzSJyfjtQAO:UDImmE2MqbVqVgYcOdsfV7qFWJyyT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b5b48c806eb992e7dfc3c707dd184ef

Files

8b5b48c806eb992e7dfc3c707dd184ef
.exe windows:4 windows x86 arch:x86

47246ddc78e1490ea989db942b892055

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA

comctl32

ImageList_AddMasked
CreateUpDownControl
ImageList_SetBkColor
InitCommonControlsEx
ImageList_DragShowNolock
CreatePropertySheetPage
GetEffectiveClientRect
ImageList_SetOverlayImage
DestroyPropertySheetPage
ImageList_Replace
CreateStatusWindowW
ImageList_AddIcon
_TrackMouseEvent
ImageList_LoadImage

kernel32

DeleteFiber
GetTimeZoneInformation
GetModuleHandleA
MultiByteToWideChar
GetCommandLineA
GetSystemTimeAsFileTime
HeapReAlloc
GetProcAddress
HeapSize
GetCommandLineW
GetStartupInfoW
InterlockedExchange
HeapAlloc
HeapDestroy
SetStdHandle
GetStringTypeW
GetLastError
HeapCreate
WriteFile
TerminateProcess
SetEnvironmentVariableA
CompareStringA
CloseHandle
VirtualFree
GetModuleFileNameA
EnterCriticalSection
LeaveCriticalSection
EnumSystemLocalesA
TlsGetValue
CreateMailslotW
SetFilePointer
WriteConsoleOutputA
WideCharToMultiByte
GetStartupInfoA
RtlUnwind
ReadFile
GetStringTypeA
FreeEnvironmentStringsW
SetConsoleCtrlHandler
OpenMutexA
VirtualUnlock
GetEnvironmentStringsW
GetModuleFileNameW
CreateMutexA
TlsFree
LCMapStringW
GetOEMCP
VirtualAlloc
InitializeCriticalSection
GetDateFormatA
TlsAlloc
IsBadWritePtr
GetACP
FreeEnvironmentStringsA
GetUserDefaultLCID
GetCurrentThreadId
GetCurrentProcess
TlsSetValue
GetConsoleCP
IsValidLocale
FlushFileBuffers
SetThreadLocale
QueryPerformanceCounter
VirtualQuery
HeapFree
GetCurrencyFormatW
UnhandledExceptionFilter
GetLocaleInfoW
CompareStringW
GetEnvironmentStrings
GetStdHandle
ExitProcess
WritePrivateProfileStructW
SetHandleCount
GetTimeFormatA
GlobalAddAtomW
GetSystemInfo
GetCPInfo
DeleteCriticalSection
GetTickCount
GetVersionExA
GetFileType
GetCurrentThread
SetLastError
GetLocaleInfoA
IsValidCodePage
ContinueDebugEvent
VirtualProtect
LCMapStringA
GetCurrentProcessId
LoadLibraryA

user32

CharLowerW
UnhookWindowsHookEx
LoadAcceleratorsW
ChildWindowFromPoint
GetMenuInfo
GetCursor
MonitorFromRect
EnumDisplayDevicesA
RegisterClassA
CreateDesktopA
MapWindowPoints
ShowOwnedPopups
GetGUIThreadInfo
DdeReconnect
SetMenuItemInfoA
OpenWindowStationW
ExitWindowsEx
UnregisterClassA
CreateMDIWindowA
GetScrollRange
SetScrollPos
LockWindowUpdate
GetScrollInfo
CharNextW
OpenWindowStationA
EnumClipboardFormats
DdeSetQualityOfService
DrawMenuBar
SetRectEmpty
EnumChildWindows
TabbedTextOutW
RegisterClassExA
LoadBitmapA
DdeGetLastError
DrawStateA
DeferWindowPos
ArrangeIconicWindows

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47246ddc78e1490ea989db942b892055

Headers

File Characteristics

Imports

comdlg32

comctl32

kernel32

user32

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 256KB - Virtual size: 256KB

.data Size: 111KB - Virtual size: 130KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 256KB - Virtual size: 256KB

.data
Size: 111KB - Virtual size: 130KB

.rsrc
Size: 40KB - Virtual size: 39KB