8edb0cb31e372d09003e59748ffb4b9a

Sharing

Copy URL Twitter E-mail

General

Target

8edb0cb31e372d09003e59748ffb4b9a
Size

387KB
MD5

8edb0cb31e372d09003e59748ffb4b9a
SHA1

42ee5edec6ad895314190b0b65faec6387154a49
SHA256

79132077313ff80d64fccb65cf0f2a7a3794b6e020bfaa562e4db105a13ff8b4
SHA512

f5597142eddd7b5edf39fa408db17df49c6e4d6d2e20d7498b2b020ed5cc806bc5ce39a9df5329a862c6b237abd05604a034c4c2fe8027c17e8b7c08344f3d57
SSDEEP

6144:PIpzeGa0Sno9T2kG/VGnG1LeUeblRYHqfx/GOTPiD1WBMwnZ7zlBLVYPr:O/JSo9T/GE09AKHqYR1WyObiPr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8edb0cb31e372d09003e59748ffb4b9a

Files

8edb0cb31e372d09003e59748ffb4b9a
.exe windows:5 windows x86 arch:x86

ddebc1bb23a82e53bcac026e25ff42fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

imm32

ImmReleaseContext
ImmSetCompositionWindow
ImmGetCompositionWindow

gdi32

SetDIBColorTable
SetBkMode
CreatePolygonRgn
GetDIBColorTable
SetBrushOrgEx
CreateHalftonePalette
ResizePalette
SetPixel
SetMapMode
ExtFloodFill
CreatePatternBrush
CreateRectRgnIndirect
Escape
SetPaletteEntries
TextOutW
StretchDIBits
GetObjectW
CreateICW
PolyBezier
CreatePalette
CreateDCW
Ellipse
TranslateCharsetInfo
SetStretchBltMode
GetBkMode
GetDeviceCaps
SetBkColor
CreateFontIndirectW
GetTextMetricsW
CreateDIBSection
EnumFontFamiliesExW
GetPixel
CreateBitmap

advapi32

RegOpenKeyExW
RegQueryValueExA
RegOpenKeyW
RegOpenKeyExA
RegCloseKey
RegEnumKeyW

ole32

PropVariantClear
WriteFmtUserTypeStg
CoCreateInstance
CoInitialize

gdiplus

GdipGetImageEncoders
GdipSaveImageToFile
GdiplusShutdown
GdipCreateBitmapFromFileICM
GdipSetPropertyItem
GdiplusStartup
GdipGetImageEncodersSize
GdipGetAllPropertyItems
GdipGetImageDecodersSize
GdipFree
GdipCreateBitmapFromFile

msvcrt

_except_handler3
_wtoi
_initterm
_getdcwd
rand
__wargv
wcscat
_beginthreadex
__dllonexit
wcstok
_itow
_ltow
_XcptFilter
_wsplitpath

user32

IsClipboardFormatAvailable
GetKeyState
MessageBoxW
FrameRect
SetRect
EnableScrollBar
GetSysColor
SystemParametersInfoW
ScreenToClient
HideCaret
GetUpdateRect
SetCaretPos
WindowFromPoint
KillTimer
IsRectEmpty
GetFocus
EqualRect
GetSystemMenu
IsWindowVisible
PtInRect
OffsetRect
GetParent
IsMenu
MsgWaitForMultipleObjects
BringWindowToTop
GetDlgItem
SetClassLongW
CheckDlgButton
SendMessageW
MessageBeep
LoadCursorW
RegisterClipboardFormatW
TabbedTextOutW
InvalidateRect
SendDlgItemMessageW
SetWindowLongW
IntersectRect
CharNextW
DrawTextW
LoadBitmapW
wsprintfW
SetTimer
EnableMenuItem
DestroyIcon
DestroyWindow
FillRect
GetWindow
ReleaseDC
wvsprintfW
PeekMessageW
UnionRect
GetClientRect
DestroyCaret
GetCursorPos
CreateCaret
EndPaint

comdlg32

GetOpenFileNameW
CommDlgExtendedError
GetSaveFileNameW

shell32

SHChangeNotify
ShellAboutW

kernel32

lstrcpynW
HeapQueryInformation
TerminateProcess
lstrlenW
SetErrorMode
GlobalAlloc
GetFileAttributesW
SetEndOfFile
HeapCreate
CloseHandle
GetFileSize
GetCurrentProcess
VirtualAlloc
GetLastError
LoadLibraryW
GetTimeFormatW
IsDBCSLeadByte
VirtualFree
CreateFileW
LocalFree
RaiseException
FileTimeToLocalFileTime
InterlockedExchange
lstrcmpW
GetTempPathW
GetNumberFormatW
GetSystemTimeAsFileTime
GetProcAddress
GlobalUnlock
GlobalReAlloc
HeapSetInformation
FreeLibrary
lstrcatW
FindClose
GetCurrentThreadId
GetThreadLocale
GetDateFormatW
GetCurrentProcessId
GetFileTime
GetACP
GetModuleHandleW
GlobalLock
GetStartupInfoW
QueryPerformanceCounter
InterlockedDecrement
SetUnhandledExceptionFilter

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddebc1bb23a82e53bcac026e25ff42fe

Headers

DLL Characteristics

File Characteristics

Imports

imm32

gdi32

advapi32

ole32

gdiplus

msvcrt

user32

comdlg32

shell32

kernel32

Sections

.text Size: 192KB - Virtual size: 192KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 186KB - Virtual size: 796KB

.text
Size: 192KB - Virtual size: 192KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 186KB - Virtual size: 796KB