8eb486e07cbedbb2d484d39fccb01540

Sharing

Copy URL

Twitter E-mail

General

Target

8eb486e07cbedbb2d484d39fccb01540
Size

332KB
MD5

8eb486e07cbedbb2d484d39fccb01540
SHA1

c8f2593fe85db3096388fba60b1d81d5e542cb68
SHA256

4c7b87c721757c421de50309156461be768301b1f2aa8e02a8b4bcbcec196c2c
SHA512

7fe9fe0a3dc72b22333cce9562c3e73ed958b31e3e9b50bb93f96dc9e7978c159551bbd23fcfec2b70a370912892392aaa49b06140d39acb7f1f3cd308803030
SSDEEP

6144:fNi9jl/p7/KQPj+HtAfabCLOiAyw70HiijLUtPql9:fMj1p7yPNAfakOiAPHij59

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8eb486e07cbedbb2d484d39fccb01540

Files

8eb486e07cbedbb2d484d39fccb01540
.exe windows:4 windows x86 arch:x86

91a76214e8f84295bc494d4eb81c0b48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetBkColor
GetCurrentObject
GetDeviceCaps
GetFontLanguageInfo
GetFontUnicodeRanges
GetGraphicsMode
GetMapMode
GetMetaRgn
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetPixelFormat
GetPolyFillMode
GetRandomRgn
GetStretchBltMode
GetSystemPaletteUse
GetTextAlign
GetTextCharacterExtra
GetTextCharset
GetTextCharsetInfo
GetTextColor
SetPixel
SetSystemPaletteUse
SetTextAlign
SetTextCharacterExtra
SetTextColor
SetTextJustification
UpdateColors

kernel32

CloseHandle
CreateSemaphoreA
CreateThread
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FindResourceA
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetFileType
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetTickCount
GetVersion
GlobalAlloc
GlobalFlags
GlobalHandle
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByteEx
IsDebuggerPresent
IsProcessorFeaturePresent
LeaveCriticalSection
LoadResource
LocalFlags
LockResource
MoveFileA
MultiByteToWideChar
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
SizeofResource
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_chgsign
_fcvt
_fgetwchar
_fputchar
_fputwchar
_gcvt
_itoa
_memccpy
_rmtmp
_strdup
_stricmp
_stricoll
_strlwr
_write
__doserrno
__getmainargs
__mb_cur_max
__p__daylight
__p__environ
__p__fmode
__p__tzname
__p__wpgmptr
__set_app_type
_cexit
_chgsign
_errno
_filbuf
_findclose
_findfirst
_findnext
_flsbuf
_fputwchar
_fullpath
_iob
_localtime64
_makepath
_memccpy
_mktime64
_onexit
_setmaxstdio
_setmode
_snprintf
_stat64
_stricmp
_stricoll
_strlwr
_strncoll
_strset
_time64
_tzset
_ultow
_unlink
_wcsicoll
_wtmpnam
abort
asctime
atexit
atoi
calloc
exit
fclose
fflush
fgets
fgetwc
fgetws
fopen
fprintf
fputc
fputs
fread
free
fseek
fsetpos
fwrite
getenv
isspace
localeconv
malloc
mbstowcs
memchr
memcmp
memcpy
memmove
memset
printf
rand
realloc
setlocale
setvbuf
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcoll
strcpy
strerror
strlen
strncpy
strstr
swprintf
tmpfile
tolower
ungetc
vfprintf
wcslen
wcstombs

user32

BeginPaint
CallWindowProcA
DrawTextA
EnableWindow
EndDialog
EndPaint
GetDC
GetDlgItem
GetDlgItemInt
GetInputState
GetKeyboardType
GetMenu
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuState
GetPropA
GetScrollPos
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
IsWindowEnabled
IsWindowUnicode
LoadIconA
MoveWindow
PostMessageA
RemovePropA
SendMessageA
SetDlgItemTextA
SetFocus
SetWindowTextA
ShowWindow
WindowFromDC

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91a76214e8f84295bc494d4eb81c0b48

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 224KB - Virtual size: 223KB

.data Size: 20KB - Virtual size: 20KB

.rdata Size: 39KB - Virtual size: 39KB

.eh_fram Size: 39KB - Virtual size: 39KB

.bss Size: - Virtual size: 6KB

.idata Size: 6KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.text
Size: 224KB - Virtual size: 223KB

.data
Size: 20KB - Virtual size: 20KB

.rdata
Size: 39KB - Virtual size: 39KB

.eh_fram
Size: 39KB - Virtual size: 39KB

.bss
Size: - Virtual size: 6KB

.idata
Size: 6KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B