8ba242667e3439774c1ad58a301e4448

Sharing

Copy URL

Twitter E-mail

General

Target

8ba242667e3439774c1ad58a301e4448
Size

160KB
MD5

8ba242667e3439774c1ad58a301e4448
SHA1

05609573288222f077745032a032a3e811008c9c
SHA256

ac93fa85e479d28147617de79616d1ca17834eaee2361cbf31193291d08435d1
SHA512

32d4fe8d7f7daf969b938e0194010c242f3ba2bee5747733ae50b812e05335b039d8df180c6deac46a98da0d04d1a48c00915d620fd108b82af45ef6ccb902aa
SSDEEP

3072:ZRAsyaUzVh+ezxBKLXgG0LFDNJqqfBnK3qeAptKcvxSRT/DzhUjx0x:ZryAszqpERfnrjMRDDzhtx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ba242667e3439774c1ad58a301e4448

Files

8ba242667e3439774c1ad58a301e4448
.exe windows:3 windows x86 arch:x86

c8cf821145be7a238635fd3d7eb4b896

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_cexit
wcstoul
swscanf
__getmainargs
__setusermatherr
exit
__set_app_type
__CxxFrameHandler
_initterm
_wtol
_exit
wcschr
_acmdln
_wtoi
_onexit
_controlfp
__dllonexit
_XcptFilter
_purecall
_c_exit

advapi32

RegEnumValueA
RegCreateKeyW
RegOpenKeyExW
RegOpenKeyW
RegOpenKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyExW
RegEnumKeyA
RegCreateKeyA
RegSetValueExW
RegOpenKeyExA
RegQueryValueExW

kernel32

QueryDosDeviceW
GetProfileIntW
GetStartupInfoA
QueryDosDeviceA
SetProcessPriorityBoost
QueryPerformanceCounter
VirtualAlloc
CreateWaitableTimerW
FindNextFileW
BaseCheckAppcompatCache
DebugActiveProcessStop
FindNextChangeNotification
SetupComm
RtlFillMemory
TerminateProcess
HeapUnlock
EnumResourceLanguagesA
ReadFile
QueryDepthSList
SetLastError
lstrlenW
lstrcmpiW
GetCurrentProcess
lstrcmpW
CancelDeviceWakeupRequest
AddAtomA
SetConsoleMode
SetConsoleIcon
SetLocalTime
WriteProfileStringW
MulDiv
WriteFileGather
AddConsoleAliasW
GetNumberFormatW
GetNumberOfConsoleInputEvents
GetPrivateProfileSectionNamesW
CreateFileW
DeleteVolumeMountPointA
SetProcessWorkingSetSize
GetConsoleAliasExesA
GetLocaleInfoW
SetComputerNameExA
SetThreadIdealProcessor
SetStdHandle
GetLastError
ReleaseMutex
GetVolumePathNamesForVolumeNameA
GetFileSize
LZOpenFileA
SetUnhandledExceptionFilter
GetTickCount
BindIoCompletionCallback
GetVersionExW
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
CloseHandle
GetProcessVersion
GetCommandLineW
DeleteTimerQueueEx
SetThreadUILanguage
LZOpenFileW
GetSystemWindowsDirectoryA
CloseHandle
UnhandledExceptionFilter
GetComputerNameExA
FatalExit
DosPathToSessionPathA
Sleep
LockFile
CreateIoCompletionPort
UnregisterWaitEx
EnumLanguageGroupLocalesA
GetUserDefaultLangID
FillConsoleOutputCharacterW
GetUserDefaultLCID
WriteConsoleW
CreateMutexW
lstrcatW
GetMailslotInfo
ExitProcess
GetCurrentProcessId
lstrcpyW

gdi32

SelectObject
ExtTextOutW
SaveDC
GetTextColor
SetPaletteEntries
GetDeviceCaps
GetNearestPaletteIndex
CreateFontIndirectW
CreateCompatibleBitmap
SetLayout
CreatePalette
RestoreDC
GetStockObject
GetTextMetricsW
SetBkColor
SelectPalette
RealizePalette
SetTextColor
CreateBitmap
TextOutW
PatBlt
GetPaletteEntries
CreateCompatibleDC
BitBlt
Rectangle
GetTextExtentPoint32W
DeleteDC
SetTextAlign
GetNearestColor
DeleteObject
SetBkMode
CreateSolidBrush

user32

SystemParametersInfoW
ShowWindow
GetWindowLongW
LoadIconW
HiliteMenuItem
SetSysColorsTemp
GetWindow
PostMessageW
GetClientRect
SendMessageTimeoutW
LoadImageW
SetWindowTextW
DrawFrameControl
ChangeDisplaySettingsW
SwapMouseButton
GetWindowRect
GetSystemMetrics
EndPaint
SetWindowPos
GetDC
BeginPaint
SendDlgItemMessageW
DefWindowProcW
GetDesktopWindow
GetFocus
SetCaretBlinkTime
SetSysColors
DrawEdge
RegisterClassW
LoadStringW
KillTimer
MessageBoxW
SetDlgItemTextW
GetParent
GetForegroundWindow
InflateRect
GetDlgCtrlID
FindWindowW
wsprintfW
DrawTextW
OffsetRect
SendMessageW
ReleaseDC
EnableWindow
LoadMenuW
DrawCaptionTempW
GetSysColor
InvalidateRect
LoadCursorW
EnumDisplaySettingsW
SetTimer
DestroyIcon
SetFocus
GetTopWindow
MapWindowPoints
SetWindowLongW
FillRect
EnableMenuItem

comctl32

ord17

comdlg32

GetSaveFileNameW

shlwapi

StrTrimW

shell32

ShellExecuteW
ord258

ole32

CoCreateInstance
CoInitialize

uxtheme

GetCurrentThemeName
ord4
ord65
IsThemeActive

atl

AtlAxCreateDialogW
AtlIPersistPropertyBag_Save
AtlModuleRegisterClassObjects
AtlHiMetricToPixel
AtlModuleUpdateRegistryFromResourceD
AtlModuleUnregisterServer
AtlAxDialogBoxA

utildll

IsPartOfDomain
CompareElapsedTime
ConfigureModem
CalculateDiffTime

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.keybF
Size: 1KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.i
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nZAYb
Size: 1KB - Virtual size: 32KB

IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fLhZz
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.p
Size: 3KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Y
Size: 2KB - Virtual size: 22KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8cf821145be7a238635fd3d7eb4b896

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

comdlg32

shlwapi

shell32

ole32

uxtheme

atl

utildll

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 6KB - Virtual size: 6KB

.keybF Size: 1KB - Virtual size: 36KB

.i Size: 3KB - Virtual size: 24KB

.nZAYb Size: 1KB - Virtual size: 32KB

.data Size: 8KB - Virtual size: 22KB

.fLhZz Size: 1KB - Virtual size: 12KB

.p Size: 3KB - Virtual size: 31KB

.Y Size: 2KB - Virtual size: 22KB

.rsrc Size: 112KB - Virtual size: 112KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 6KB - Virtual size: 6KB

.keybF
Size: 1KB - Virtual size: 36KB

.i
Size: 3KB - Virtual size: 24KB

.nZAYb
Size: 1KB - Virtual size: 32KB

.data
Size: 8KB - Virtual size: 22KB

.fLhZz
Size: 1KB - Virtual size: 12KB

.p
Size: 3KB - Virtual size: 31KB

.Y
Size: 2KB - Virtual size: 22KB

.rsrc
Size: 112KB - Virtual size: 112KB