8dc8b472e2e4bdc757bc9858d17c23f2

Sharing

Copy URL Twitter E-mail

General

Target

8dc8b472e2e4bdc757bc9858d17c23f2
Size

203KB
MD5

8dc8b472e2e4bdc757bc9858d17c23f2
SHA1

e8d7a8479ec4cfc0ac78e8f349b0f52bd83a6850
SHA256

b962576025520f6c0e171e4383b8c1499bc8983b00c2f15125f4962bee656398
SHA512

a1bfc8a42857687329bcd48d4b2c4a570415962dc08c457bc4491f4978946fe552cc0335d00a5308b0ccee30abb5088ac95d5f8c4f875e2ac13e672fb9ebe376
SSDEEP

3072:pjpWXaKyNCj4LXSSJaJOP1H2r6BUJXwqB3SkkZTctWvPxBo:aX1o2jJOP+6YwqA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8dc8b472e2e4bdc757bc9858d17c23f2

Files

8dc8b472e2e4bdc757bc9858d17c23f2
.exe windows:4 windows x86 arch:x86

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
rand
wcschr
log
malloc
strlen
pow

ole32

CoCreateGuid
GetHGlobalFromStream
CoRevokeClassObject

gdi32

GetCurrentPositionEx
GetClipBox
GetDIBits
GetDCOrgEx
GetDIBColorTable

kernel32

GetProcAddress
VirtualAllocEx
GlobalAlloc
VirtualQuery
MulDiv
ExitThread
GetCommandLineW
WriteFile
LocalAlloc
lstrcpynA
GetVersionExA
VirtualAlloc
MoveFileA
lstrcmpA
LoadLibraryA
LocalReAlloc
LocalFree
WideCharToMultiByte
lstrcatA
ExitProcess
lstrcpyA
HeapDestroy
WaitForSingleObject
GetCommandLineA
GetModuleHandleA
lstrcmpiA
SizeofResource
GetOEMCP
LoadLibraryExA
VirtualFree
MoveFileExA
lstrlenA
IsBadReadPtr

shlwapi

SHSetValueA
SHDeleteValueA
PathGetCharTypeA
PathIsDirectoryA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerInstallFileA

comdlg32

GetFileTitleA
ChooseColorA
GetSaveFileNameA

advapi32

RegQueryInfoKeyA
RegQueryValueExA
RegEnumKeyA

shell32

SHGetSpecialFolderLocation
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetFileInfoA

comctl32

ImageList_Read
ImageList_DrawEx
ImageList_Create
ImageList_Draw
ImageList_Remove
ImageList_Add
ImageList_Destroy
ImageList_Write
ImageList_DragShowNolock

user32

GetWindowTextA
GetTopWindow
GetWindowDC
GetWindow
KillTimer
GetWindowLongA
GetSubMenu
GetWindowPlacement
InsertMenuA
GetWindowThreadProcessId
GetWindowRect
IsWindowVisible
GetSysColor
IsChild
IsIconic
IsWindowEnabled
IsZoomed
InvalidateRect
InsertMenuItemA
IsWindow
IsDialogMessageW
GetSystemMenu
GetScrollRange
IntersectRect
InflateRect
IsWindowUnicode
IsRectEmpty
GetWindowLongW
IsDialogMessageA
GetSysColorBrush

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 773B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc8
Size: 1024B - Virtual size: 1022B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 525B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc9
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d06f8303e6b226d2152a1660a8f98be

Headers

File Characteristics

Imports

msvcrt

ole32

gdi32

kernel32

shlwapi

version

comdlg32

advapi32

shell32

comctl32

user32

Sections

.text Size: 69KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 773B

.rsrc8 Size: 1024B - Virtual size: 1022B

.rsrc2 Size: 1024B - Virtual size: 525B

.rsrc6 Size: 1KB - Virtual size: 1KB

.rsrc9 Size: 124KB - Virtual size: 123KB

.rsrc5 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 69KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 773B

.rsrc8
Size: 1024B - Virtual size: 1022B

.rsrc2
Size: 1024B - Virtual size: 525B

.rsrc6
Size: 1KB - Virtual size: 1KB

.rsrc9
Size: 124KB - Virtual size: 123KB

.rsrc5
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 976B