8f56628d21b125ecca259fce9b2e3ca0

Sharing

Copy URL Twitter E-mail

General

Target

8f56628d21b125ecca259fce9b2e3ca0
Size

118KB
MD5

8f56628d21b125ecca259fce9b2e3ca0
SHA1

0f01577ec5b341a1d288e7078e19f14152db6424
SHA256

dc7ec9ddd132a58a25c1fc7711605f3faf3da1934433dc8a79b53c9b61636d59
SHA512

24574cbe825231cf2f6db9db5fd2dd0854bfc09e360c93f080d8b8dc4e35fe9adec3c0cf27b3249f343e447d0b130dc61cd4ddb9c6d5d9f65737c38cf93bd5ca
SSDEEP

1536:y5hn/ZcOw47/WX3QLBRnEuLyAWDBjTaDovZWIP2AiEB46WEI895BnrEc/oyGY2lz:i/ZK4SXSDA/1uNa44fecgyGY2l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f56628d21b125ecca259fce9b2e3ca0

Files

8f56628d21b125ecca259fce9b2e3ca0
.exe windows:5 windows x86 arch:x86

9d8f9e18f4ab21d8141ddb3d6fb46d63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
DeleteFileA
ExitProcess
FindResourceA
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetEnvironmentStrings
GetEnvironmentStringsW
GetFileAttributesA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetVersion
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
LCMapStringA
LCMapStringW
LoadLibraryA
LoadResource
LockResource
MultiByteToWideChar
RtlUnwind
SetFilePointer
SetHandleCount
SetStdHandle
SizeofResource
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcpyA

user32

AppendMenuA
CallWindowProcA
ClientToScreen
CopyIcon
CopyRect
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DestroyMenu
DestroyWindow
DialogBoxParamA
DispatchMessageA
DrawIconEx
EnableWindow
EndDialog
FindWindowA
GetActiveWindow
GetCursorPos
GetDC
GetDesktopWindow
GetDlgItem
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetMessageA
GetParent
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMetrics
GetWindowLongA
GetWindowRect
InflateRect
IsWindow
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadMenuA
MessageBeep
MessageBoxA
MoveWindow
PostMessageA
PostQuitMessage
PtInRect
RegisterClassA
ReleaseDC
ScreenToClient
SendMessageA
SetCursor
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UpdateWindow

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateFontIndirectA
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
GetTextExtentPoint32A
LineTo
MoveToEx
PatBlt
SelectObject
SetBkMode
SetTextAlign
SetTextColor
StretchBlt
TextOutA

comdlg32

ChooseFontA
CommDlgExtendedError
GetOpenFileNameA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
ExtractIconA
SHGetFileInfoA
ShellExecuteA
Shell_NotifyIconA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

Sections

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d8f9e18f4ab21d8141ddb3d6fb46d63

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

Sections

.text Size: 109KB - Virtual size: 112KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 16KB

.text
Size: 109KB - Virtual size: 112KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 16KB