8efbc6f8c46028f1219f9c6fa9810e8e

Sharing

Copy URL Twitter E-mail

General

Target

8efbc6f8c46028f1219f9c6fa9810e8e
Size

158KB
MD5

8efbc6f8c46028f1219f9c6fa9810e8e
SHA1

8bac67973e877925192025d533ce74d56378dd66
SHA256

4a1e6098a7d62ba88993282c2df07bc9ac2657655bbde818159b46963088b43c
SHA512

44aacfa6f1abf488b5900317691b14d619d7af9d4be7c524b4793eb4e208de4d4eb0b9700e9ad168268ee440420db72ebfb5691bc6245c7e9af576cbe1066ed3
SSDEEP

3072:94ppiycEqgSRUdCRpo7WeSyCqbP6wHZJAPj5MMRE:9ePcEJ3CRsdCF4GMMR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8efbc6f8c46028f1219f9c6fa9810e8e

Files

8efbc6f8c46028f1219f9c6fa9810e8e
.exe windows:5 windows x86 arch:x86

1b8baaf32d2a93313574cd0a00bdba39

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

O:\VdPpjXPd\mJeupeCIvN\dzgnovcyH\vUbsrRkW.pdb

Imports

advapi32

OpenBackupEventLogW

shlwapi

ord29
StrStrIA
ord157

gdi32

GetClipBox
CreateDCW
RectVisible
Escape
CreateRectRgn
SetTextColor
CreateSolidBrush
BitBlt
SetBkMode
GetLayout
PtVisible
MoveToEx
GetRgnBox
StretchDIBits
SelectClipRgn
RemoveFontResourceW
SetBitmapBits

comdlg32

GetFileTitleW
PageSetupDlgW

user32

SwitchToThisWindow
GetParent
CharPrevA
GetScrollPos
CreateCaret
SendDlgItemMessageA
IsCharUpperA
SetParent
EndPaint
AdjustWindowRectEx
DefDlgProcA
VkKeyScanW
DrawTextA
GetKeyState
SetLastErrorEx
TileWindows
ScrollWindowEx
DrawFrameControl
IsCharAlphaNumericW
IsMenu
DragObject
GetMessagePos
CreateIconIndirect
GetMessageExtraInfo
FindWindowA
GetNextDlgTabItem
MessageBoxW
GetSysColor
RegisterWindowMessageA
ToUnicodeEx
DrawStateW
GetDlgItemTextW
GetMenuItemRect
LoadMenuW
DeferWindowPos
GetClassLongA
EnableScrollBar
TrackPopupMenuEx
ValidateRect
MessageBoxExW
ScreenToClient
SetScrollRange

msvcrt

_controlfp
__set_app_type
wcstod
ftell
sscanf
__p__fmode
__p__commode
sprintf
getc
wcschr
_amsg_exit
_initterm
_acmdln
iswxdigit
puts
exit
_ismbblead
isalpha
_XcptFilter
strncpy
_exit
_cexit
__setusermatherr
fputc
strpbrk
__getmainargs

comctl32

CreateStatusWindowW
ImageList_Write
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Remove

kernel32

SetEvent
OpenFileMappingA
LocalLock
GetSystemDirectoryW
lstrcpynW
HeapValidate
ConvertDefaultLocale
DeviceIoControl
GetModuleHandleW
CreateMailslotW
GetNumberFormatA
SearchPathA
LocalFree
FindResourceW
FindClose
SetCommTimeouts
FindResourceExW
SearchPathW
SizeofResource
lstrlenW

Exports

Exports

?IsHeightW@@YGJIJDPAF*Z
?DecrementAnchorExA@@YGPAFGDPAJG*Z
?FindTimeOriginal@@YGKPAGPADPAI*Z
?OnConfigExA@@YGXEKPAN*Z
?DeleteHeightExW@@YGDPAEJIF*Z
?IsListExA@@YGPAKPAG*Z
?IncrementDeviceA@@YGKDPAH*Z
?PutDateTimeEx@@YGXPAJPAF*Z
?SetMediaTypeExW@@YGPAIPAI*Z
?OnConfigExW@@YGPAIKM*Z
?IsDevice@@YGPADPAHHH*Z

Sections

.text
Size: 123KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.etdir
Size: 512B - Virtual size: 467B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdir
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vtdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ptdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.stdir
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b8baaf32d2a93313574cd0a00bdba39

Headers

File Characteristics

PDB Paths

Imports

advapi32

shlwapi

gdi32

comdlg32

user32

msvcrt

comctl32

kernel32

Exports

Exports

Sections

.text Size: 123KB - Virtual size: 123KB

.itext Size: 512B - Virtual size: 496B

.etdir Size: 512B - Virtual size: 467B

.itdir Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 29KB

.vtdir Size: 512B - Virtual size: 140B

.ptdir Size: 512B - Virtual size: 140B

.stdir Size: 13KB - Virtual size: 13KB

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 123KB - Virtual size: 123KB

.itext
Size: 512B - Virtual size: 496B

.etdir
Size: 512B - Virtual size: 467B

.itdir
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 29KB

.vtdir
Size: 512B - Virtual size: 140B

.ptdir
Size: 512B - Virtual size: 140B

.stdir
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 1KB - Virtual size: 1KB