8f0c0b062ca2d5c8c4f0a271289274ec

Sharing

Copy URL

Twitter E-mail

General

Target

8f0c0b062ca2d5c8c4f0a271289274ec
Size

19KB
MD5

8f0c0b062ca2d5c8c4f0a271289274ec
SHA1

8afc6c1af45c341fd6fc29ed1dc0f04d0f95eca8
SHA256

e54a32d3b33a04c2c27e054e91fdd3ebeac5ebea85b057f1936dc6646911da2a
SHA512

c9a8cc8721be4afb0b031da648c1af13e3324049a784e2f05b7564acb76bd0290f023d0f52be6c2bec10790e12213dadbe0d5502481e00cde53f44b49f8c88a8
SSDEEP

384:IZWiZtDIiI6W3UUnfIR5qzMDR7gFNhWd3Bmn:XdD3UUnfInqAxgFNkd34

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f0c0b062ca2d5c8c4f0a271289274ec

Files

8f0c0b062ca2d5c8c4f0a271289274ec
.exe windows:5 windows x86 arch:x86

eafd428bb273fbbb4fd7786ac97fa925

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddConsoleAliasA
BeginUpdateResourceW
ClearCommError
CommConfigDialogW
CopyFileA
CreateEventA
CreateIoCompletionPort
CreateJobObjectA
CreateJobObjectW
CreateNamedPipeW
DebugBreak
DefineDosDeviceA
DeleteTimerQueueEx
EndUpdateResourceW
EnumCalendarInfoExW
EnumDateFormatsExW
EnumSystemCodePagesA
EnumSystemLanguageGroupsW
EnumTimeFormatsA
FindFirstFileA
FreeLibrary
GetCPInfo
GetCalendarInfoA
GetCommTimeouts
GetCompressedFileSizeW
GetComputerNameA
GetComputerNameExA
GetConsoleAliasesLengthA
GetConsoleCursorInfo
GetConsoleMode
GetConsoleOutputCP
GetDateFormatW
GetEnvironmentStrings
GetFileAttributesExA
GetLastError
GetLogicalDrives
GetNamedPipeInfo
GetOEMCP
GetPrivateProfileStructA
GetStdHandle
GetSystemDefaultLCID
GetTempPathA
GetThreadTimes
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetProcAddress
GlobalGetAtomNameA
HeapDestroy
IsBadCodePtr
IsDebuggerPresent
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalCompact
LocalFileTimeToFileTime
MoveFileExW
Process32NextW
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleA
RtlUnwind
SetCommState
SetComputerNameW
SetConsoleCursor
SetConsoleCursorPosition
SetConsoleDisplayMode
SetConsoleWindowInfo
SetFileApisToOEM
SetFileAttributesA
SetFileAttributesW
SetHandleInformation
SetLastError
SetNamedPipeHandleState
SetVolumeMountPointA
SetVolumeMountPointW
SleepEx
SwitchToFiber
UnhandledExceptionFilter
VerifyVersionInfoA
VirtualFree
VirtualUnlock
WaitCommEvent
WaitForSingleObjectEx
WinExec
WritePrivateProfileStructW
lstrcat
lstrcmpA
lstrcpyA
lstrcpyW
lstrcpynW
lstrlenA
ExitProcess
GetVolumeInformationW
GetModuleHandleA

msvcrt

memset

advapi32

RegOpenKeyA
RegOpenKeyExW

ole32

CLIPFORMAT_UserSize
CLSIDFromString
CoAddRefServerProcess
CoAllowSetForegroundWindow
CoCancelCall
CoCopyProxy
CoCreateInstanceEx
CoFileTimeNow
CoFreeAllLibraries
CoFreeLibrary
CoGetClassVersion
CoImpersonateClient
CoInstall
CoLoadLibrary
CoLockObjectExternal
CoMarshalHresult
CoQueryProxyBlanket
CoRegisterMessageFilter
CoResumeClassObjects
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoUnmarshalHresult
CoUnmarshalInterface
CoWaitForMultipleHandles
CreateClassMoniker
CreateDataAdviseHolder
CreateDataCache
EnableHookObject
GetHGlobalFromILockBytes
HACCEL_UserMarshal
HACCEL_UserSize
HBRUSH_UserFree
HBRUSH_UserMarshal
HBRUSH_UserSize
HDC_UserFree
HDC_UserUnmarshal
HENHMETAFILE_UserMarshal
HENHMETAFILE_UserUnmarshal
HICON_UserFree
HMENU_UserFree
HMENU_UserUnmarshal
HMETAFILEPICT_UserMarshal
HMETAFILEPICT_UserUnmarshal
HMETAFILE_UserUnmarshal
HPALETTE_UserSize
HPALETTE_UserUnmarshal
IIDFromString
MkParseDisplayName
MonikerCommonPrefixWith
MonikerRelativePathTo
OleCreateDefaultHandler
OleCreateFromFileEx
OleCreateMenuDescriptor
OleCreateStaticFromData
OleDestroyMenuDescriptor
OleDoAutoConvert
OleDuplicateData
OleFlushClipboard
OleInitializeWOW
OleIsRunning
OleLockRunning
OleNoteObjectVisible
OleRegEnumFormatEtc
OleRegGetUserType
OleSetMenuDescriptor
RevokeDragDrop
SNB_UserMarshal
SNB_UserUnmarshal
StgConvertPropertyToVariant
StgCreatePropSetStg
StgCreatePropStg
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenPropStg
StgOpenStorageEx
StgSetTimes
StringFromCLSID
StringFromGUID2
UtConvertDvtd16toDvtd32
UtConvertDvtd32toDvtd16
UtGetDvtd16Info
WriteOleStg

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text4
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eafd428bb273fbbb4fd7786ac97fa925

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

ole32

Sections

.text Size: 7KB - Virtual size: 6KB

.text4 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 100B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 6KB

.text4
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 100B

.rsrc
Size: 2KB - Virtual size: 1KB