8f239b89b3094927bed2a9990b49afc7

Sharing

Copy URL Twitter E-mail

General

Target

8f239b89b3094927bed2a9990b49afc7
Size

106KB
MD5

8f239b89b3094927bed2a9990b49afc7
SHA1

e1acda80629488af9a8b1f6da744d470cb327bd2
SHA256

a5832167852819df4b09c91cb6cb0ff144d75a6cb01ee6dec92cc92d19fe5359
SHA512

e3036bcfd9cd8f97f02ea779392487ae5ec24b05556bc510a120756b98c29621a8c859f722f26d7f7cad92c3df2b72ef291a14eaa333dc53933771397915ea4a
SSDEEP

1536:P85VLM90ZlUzHz0awcesWvwnt2LjF2uKyFobvO2fN3MIM0l:200ZurVntyQZyFGvV1vdl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f239b89b3094927bed2a9990b49afc7

Files

8f239b89b3094927bed2a9990b49afc7
.exe windows:5 windows x86 arch:x86

ff0c6758853453042f237e786260fcbd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

S:\taovjTecnnwj\hmcbjujI\uzPOvgTMoRO.pdb

Imports

user32

IsMenu
CreateIconIndirect
WaitForInputIdle
GetMenu
GetDlgItemTextW
GetWindowDC
DrawStateA
DestroyCaret
SetDlgItemTextA
ClipCursor
GetMessageTime
InvertRect
GetKeyboardLayoutNameW
ChildWindowFromPoint
HiliteMenuItem
SendMessageW
CharPrevW
TranslateAcceleratorA
CascadeWindows
IntersectRect
CopyRect
IsCharAlphaNumericW
FillRect
InternalGetWindowText
DialogBoxIndirectParamA
DispatchMessageA
SetWindowPlacement
CharLowerBuffW
GetNextDlgTabItem
MessageBoxExW
CharUpperW
SetClassLongW
CharToOemBuffA
LoadMenuW
GetClassLongA
EnableMenuItem
GetClassInfoA
GetClassInfoExA
GetSystemMetrics
SetWindowLongW
GetKeyboardLayoutList
CopyImage
TrackPopupMenuEx
IsWindowUnicode
IsWindowEnabled
ClientToScreen
CharUpperBuffA
DrawTextExW
AdjustWindowRectEx
GetMenuItemRect
GetScrollRange
RegisterWindowMessageA
ShowCursor
GetAltTabInfoA
GetUserObjectInformationW
GetDlgItemTextA
GetUserObjectInformationA
DrawMenuBar
GetNextDlgGroupItem
GetScrollInfo
OffsetRect
SetMenuItemInfoW
GetMonitorInfoW
GetDlgItem
GetMenuState
WaitMessage
GetWindow
BeginPaint
InvalidateRgn
SetFocus
CharNextExA
LoadBitmapA
ScreenToClient
DestroyMenu
DialogBoxParamW
TranslateAcceleratorW
SetRectEmpty
TrackPopupMenu
IsWindowVisible
WindowFromPoint
GetWindowRect
TranslateMessage
PostThreadMessageW
CreateMenu
SetUserObjectInformationW
SetCursorPos
CharNextW
InSendMessage
GetSystemMenu
GetMenuStringW
SendNotifyMessageW
IsWindow
ToUnicodeEx
GetUpdateRgn
GetWindowTextA
DeferWindowPos
GetClientRect
DrawTextW
GetClipCursor
SetScrollPos
GetSubMenu
LoadImageW
LoadCursorW
GetMenuItemID
RegisterClassExA
InsertMenuItemW
CreateDialogParamW
DestroyAcceleratorTable
SetWindowLongA
IsDlgButtonChecked
MonitorFromRect
DestroyCursor
DrawAnimatedRects
CreatePopupMenu
OpenInputDesktop
CallWindowProcA
RegisterWindowMessageW
IsCharAlphaW
CreateDialogIndirectParamW
UpdateWindow
CharToOemW

msvcrt

_controlfp
wcstod
setvbuf
__set_app_type
fgets
isspace
fseek
__p__fmode
wcstombs
isalnum
__p__commode
_amsg_exit
free
strtoul
isalpha
calloc
wcsstr
rand
isdigit
wcsncmp
clock
_initterm
realloc
tolower
islower
iswdigit
towupper
strstr
wcstoul
_ismbblead
mbtowc
_XcptFilter
wcslen
_exit
malloc
_cexit
floor
setlocale
isupper
wcsncpy
localtime
strchr
__setusermatherr
__getmainargs
exit
iswxdigit
fread

shlwapi

UrlIsA

kernel32

DefineDosDeviceW
RemoveDirectoryW
TlsFree
HeapWalk
HeapFree
GetLocalTime
IsValidLocale
GetTickCount
LockResource
OpenEventW
ReleaseSemaphore
GlobalReAlloc
WriteFile
LCMapStringA
GlobalMemoryStatus
CreateFileA
CreateFileW
HeapSize
ClearCommError
GetModuleFileNameW
IsBadReadPtr
GetThreadPriority
FindNextFileA
GetCurrentThreadId
GetShortPathNameA
SetPriorityClass
EnterCriticalSection
GetFileTime
HeapAlloc
TlsSetValue
DeleteAtom
GetCommandLineW
GlobalAlloc
GetCurrentThread
lstrcpyA
LocalUnlock
GetComputerNameA
SetSystemTimeAdjustment
LocalReAlloc
GetModuleHandleW
GlobalFindAtomW
IsBadWritePtr
GetWindowsDirectoryA
ConnectNamedPipe
SetHandleInformation
GetProcAddress
RaiseException
LocalLock
GetCommModemStatus
GetProcessHeap
lstrcpyW
GetSystemDirectoryA
lstrcatA
FindClose
GetModuleHandleA
QueryPerformanceCounter
UnhandledExceptionFilter
InitializeCriticalSection
GetCompressedFileSizeW

Exports

Exports

?TestAccountSecDUoiJDK@@YGKGE[D

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff0c6758853453042f237e786260fcbd

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 9KB - Virtual size: 88KB

.rsrc Size: 73KB - Virtual size: 72KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 9KB - Virtual size: 88KB

.rsrc
Size: 73KB - Virtual size: 72KB

.reloc
Size: 2KB - Virtual size: 1KB