8bd6bacfc3104e4c9ab17291a07763db

Sharing

Copy URL

Twitter E-mail

General

Target

8bd6bacfc3104e4c9ab17291a07763db
Size

206KB
MD5

8bd6bacfc3104e4c9ab17291a07763db
SHA1

af54acc881b4e2518bf35d576a8f68b6d56c5faf
SHA256

5fd70ff02157f0543967bd61f66aa014e63e4e4a1c2f62dc0d86e92eca77c4f6
SHA512

4c04ea751855326fac8a2355fcb2ad9c1fd370e3a1649ca44de34ef030a62ded16cb6fd4054df573249a79bbd22903226194bfe2f864a2862a3bfd7848613c1a
SSDEEP

3072:JyLJqfYbyDvKbOu+Y/5kHzQnMCd2TwnKBFvEmUAZ2oFOlj2Kj:JkY3j+OFY/aHzQUrlPUAZ1cd2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bd6bacfc3104e4c9ab17291a07763db

Files

8bd6bacfc3104e4c9ab17291a07763db
.exe windows:5 windows x86 arch:x86

6adc48a3c8906a24a182b661a583b30d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetRectEmpty
CallWindowProcA
DestroyCursor
GetAsyncKeyState
SwitchToThisWindow
ShowWindow
UnionRect
IsCharAlphaW
IsWindowEnabled
DialogBoxIndirectParamA
DispatchMessageW
FindWindowA
CreateDialogParamW
GetMessageExtraInfo
GetWindowRect
GetCaretPos
CallWindowProcW
CharPrevW
IsZoomed
wvsprintfA
DispatchMessageA
MoveWindow
GetMenuItemRect
TrackPopupMenuEx
RegisterWindowMessageW
DrawStateA
InvalidateRect
SendMessageTimeoutA
SetPropW
RemoveMenu
LoadAcceleratorsW
ScrollWindow
GetWindowLongA
EnableWindow
MonitorFromPoint
ChildWindowFromPointEx
ModifyMenuW
LoadImageA
CascadeWindows
GetActiveWindow
LookupIconIdFromDirectory
CharToOemBuffA
PeekMessageW
ShowCursor
GetSystemMetrics
GetDlgItemInt
SendDlgItemMessageA
BeginPaint
GetClassInfoExW
DestroyAcceleratorTable
GetWindowPlacement
DestroyCaret
CreateDialogParamA
SendInput
LoadImageW
AttachThreadInput
LoadStringW
GetWindow
GetForegroundWindow
ScrollWindowEx
DeferWindowPos
DefWindowProcW
RemovePropW
CheckMenuItem
AppendMenuA
GetWindowLongW
GetFocus
UpdateWindow
BeginDeferWindowPos
CreatePopupMenu
MapVirtualKeyExW
SetTimer
CreateWindowExW
DrawFrameControl
CopyAcceleratorTableW
GetLastActivePopup
CharLowerW
GetCursorPos
SetCaretPos
SetParent
ClientToScreen
DefWindowProcA
CharUpperBuffW
IsChild
GetSubMenu
TileWindows
LoadMenuA
GetShellWindow
LoadCursorA
ReplyMessage
GetDesktopWindow
RedrawWindow
GetMessageTime
WaitForInputIdle
GetClientRect
GetDCEx
RegisterClassExW
wsprintfA
IsDialogMessageW
EnumThreadWindows
CharPrevA
CreateWindowExA
ChangeMenuW
DrawStateW
PostThreadMessageA
CharNextA
SetMenuDefaultItem
GetMenuStringW
RegisterClassW
TranslateAcceleratorW
DrawEdge

msvcrt

strtoul
clearerr
_controlfp
remove
fseek
__set_app_type
localtime
atoi
perror
strncmp
strrchr
wcscspn
putc
__p__fmode
wcscmp
__p__commode
tolower
_amsg_exit
fgetc
_initterm
wcstombs
wcscoll
_ismbblead
isxdigit
fgets
_XcptFilter
putchar
iswalpha
strpbrk
realloc
_exit
fputc
_cexit
free
strcpy
__setusermatherr
isalnum
toupper
islower
strtok
sscanf
wcslen
__getmainargs
vswprintf

gdi32

GetRgnBox
Escape
GetTextExtentPointA
StretchDIBits
CreateFontW
GetPaletteEntries
GetLayout
CreateHalftonePalette
Polyline
CreateDCW
SetViewportExtEx
CreateBitmapIndirect
GetTextCharsetInfo
CreateBrushIndirect
ResizePalette
SetRectRgn
RectVisible
GetPixel
SelectPalette
GetROP2
SetBkMode
CreateRectRgnIndirect
SetStretchBltMode
GetNearestPaletteIndex
SetDIBColorTable
GetTextExtentPointW
SetWindowOrgEx
EndPath
LineTo
Ellipse
CreatePolygonRgn
AddFontResourceA
DeleteDC
OffsetViewportOrgEx
LineDDA
SetDIBitsToDevice
CreateCompatibleDC
GetDIBits
FillRgn
ExtFloodFill
SetTextColor
CreateFontIndirectW
PatBlt
SelectClipRgn
CreatePalette
GetObjectW
CreateDIBitmap
TranslateCharsetInfo

kernel32

MultiByteToWideChar
FreeLibrary
Sleep
GetUserDefaultUILanguage
CreateWaitableTimerW
MoveFileA
SetFileTime
CreateRemoteThread
CreateNamedPipeW
VerifyVersionInfoW
DeleteAtom
OpenFile
CreateSemaphoreW
GetCommModemStatus
IsDBCSLeadByteEx
ReleaseSemaphore
IsBadCodePtr
lstrcmpW
SetSystemTime
AddAtomA
FormatMessageA
GlobalAddAtomA
CompareStringA
SetFilePointer
GetSystemWindowsDirectoryA
GlobalMemoryStatus
GetWindowsDirectoryW
CreateDirectoryW
FindNextChangeNotification
ConnectNamedPipe
GetUserDefaultLangID
TerminateThread
LoadLibraryExA
GetOEMCP
QueryDosDeviceW
GetStdHandle
EnumSystemLocalesA
HeapValidate
SizeofResource
GetExitCodeThread
SuspendThread
PulseEvent
GetEnvironmentStrings
IsBadReadPtr
FindFirstChangeNotificationW
FindNextFileW
TlsSetValue
GetCommConfig
lstrcmpiA
RemoveDirectoryA
GlobalGetAtomNameA
FreeResource

Exports

Exports

?Header@@YGPAXKPAEFF<V

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6adc48a3c8906a24a182b661a583b30d

Headers

File Characteristics

Imports

user32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 81KB

.data Size: 121KB - Virtual size: 189KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 82KB - Virtual size: 81KB

.data
Size: 121KB - Virtual size: 189KB

.reloc
Size: 2KB - Virtual size: 1KB