8f015fb8f87ca03a9ba1efb3ceabdf26

Sharing

Copy URL

Twitter E-mail

General

Target

8f015fb8f87ca03a9ba1efb3ceabdf26
Size

68KB
MD5

8f015fb8f87ca03a9ba1efb3ceabdf26
SHA1

bb428b67564faa02a4100dd1f4f74f985d837e48
SHA256

7c8f758cedaf28668314050888c31980aa8abe12d7dc2260848422665892f765
SHA512

3447fa1fe57e1c2f82562a0b2af1c37723652c450eb8e4b8462ed9cde58306b39332bb40b3a61d9f80664b18b48d3cdfe3ed0af3f114bb48f9f3a28ab5dd33ca
SSDEEP

1536:iKRGIX8/74GLHN/Cqub3ud0HDeFMaQkGRA/zgBJl/nmVmiigjqR5/VTpRo8/:iwZ8/7zp6quE0HDwMaTYN/iJ6rRoY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/video-plugin.4521126.exe

Files

8f015fb8f87ca03a9ba1efb3ceabdf26
.zip
video-plugin.4521126.exe
.exe windows:4 windows x86 arch:x86

68063ae4a5a1f656d290211e66062640

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtWaitForSingleObject

user32

GetScrollInfo
DeferWindowPos
SetWindowTextA
ShowWindow
GetScrollRange
CreateWindowExA
CallNextHookEx
CharLowerA
EqualRect
GetDesktopWindow
EnumWindows
DefFrameProcA
GetPropA
GetCapture
IsWindowEnabled
IsMenu
GetClassLongA
DrawMenuBar
GetMenuItemCount
CharNextA
DrawTextA
GetMenu
GetMenuItemInfoA
HideCaret
FillRect
GetParent
EnumThreadWindows
GetDlgItem
CharLowerBuffA
ShowScrollBar
EndDeferWindowPos
GetWindowTextA
GetSysColorBrush
GetKeyState
IsChild
FrameRect
GetSysColor
CreateIcon
DrawEdge
TrackPopupMenu
GetScrollPos
GetCursor
EnableWindow
GetMessagePos
GetClassInfoA
DefMDIChildProcA
DrawIconEx
DefWindowProcA
GetDC
GetMenuItemID
MessageBoxA
GetActiveWindow
GetSubMenu
CharToOemA
GetMenuStringA
GetClipboardData
GetClientRect
SetCursor
CheckMenuItem
SetWindowLongA
DrawIcon
SetTimer
ClientToScreen
EnableMenuItem
GetLastActivePopup
GetDCEx
DrawFrameControl
GetMenuState
EndPaint
SystemParametersInfoA
FindWindowA
GetCursorPos
GetKeyNameTextA
RegisterClassA
DispatchMessageW
CreateMenu
BeginPaint
CallWindowProcA
EnumChildWindows
BeginDeferWindowPos
CreatePopupMenu
GetIconInfo

kernel32

SetErrorMode
GetModuleFileNameA
GetCommandLineA
Sleep
MulDiv
lstrcpyA
FreeLibrary
CreateThread
FindFirstFileA
SetLastError
GetCurrentThread
WideCharToMultiByte
GetVersion
EnterCriticalSection
LocalFree
ResetEvent
GetFullPathNameA
HeapDestroy
LocalReAlloc
GlobalDeleteAtom
SetHandleCount
CompareStringA
WriteFile
LoadLibraryExA
SetEndOfFile
GetLastError
MoveFileExA
GetCurrentProcess
GetThreadLocale
LoadResource
GetVersionExA
MoveFileA
DeleteCriticalSection
GlobalAddAtomA
CreateFileA
GetCurrentProcessId
ExitThread
GlobalFindAtomA
VirtualAllocEx
GetStringTypeW
LockResource
FindResourceA
HeapFree

ole32

CoGetContextToken
CoDisconnectObject

msvcrt

memset
calloc
_acmdln
sprintf
time
memmove
sqrt
memcpy
rand
mbstowcs
wcschr
clock
tolower
malloc
wcscspn
atol
wcstol
wcsncmp
srand
exit
swprintf

Sections

.data
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 411B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 512B - Virtual size: 411B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68063ae4a5a1f656d290211e66062640

Headers

File Characteristics

Imports

ntdll

user32

kernel32

ole32

msvcrt

Sections

.data Size: 34KB - Virtual size: 33KB

.init Size: 47KB - Virtual size: 47KB

.idata Size: 8KB - Virtual size: 7KB

.tls Size: 512B - Virtual size: 411B

.bss Size: 512B - Virtual size: 411B

.rsrc Size: 1024B - Virtual size: 571B

.data
Size: 34KB - Virtual size: 33KB

.init
Size: 47KB - Virtual size: 47KB

.idata
Size: 8KB - Virtual size: 7KB

.tls
Size: 512B - Virtual size: 411B

.bss
Size: 512B - Virtual size: 411B

.rsrc
Size: 1024B - Virtual size: 571B