8f9442278268a7b625da94c388c07adf

Sharing

Copy URL Twitter E-mail

General

Target

8f9442278268a7b625da94c388c07adf
Size

209KB
MD5

8f9442278268a7b625da94c388c07adf
SHA1

ef1a2c3bca35cf441bd9945152e855eaffb651d6
SHA256

98bf9776ff9f8f955ba904660d2ee0ec17b4633bb0aa935fdd9001097e146502
SHA512

58ccf5e0a848002a3a365cb40fa728aef7a88279e9847393d1698612f748d60acd30882b0ccbf8beca3b9110b5a54aedee599f6ffb830188ddddeb09bdfd6b9f
SSDEEP

6144:lkrnLna2Rvgn79Oud3P0DT5GuIUjvYPOyN:STa2Rvgn7jP0P5sUjvYW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f9442278268a7b625da94c388c07adf

Files

8f9442278268a7b625da94c388c07adf
.exe windows:4 windows x86 arch:x86

dc9fbbc00c4de713c67a08320ee4cc96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SafeArrayPtrOfIndex
SafeArrayGetUBound
SysAllocStringLen
SysFreeString
SafeArrayUnaccessData
RegisterTypeLib
SafeArrayGetElement
VariantChangeType
GetErrorInfo

user32

GetKeyboardState
DrawEdge
SetWindowTextA
GetKeyNameTextA
UnregisterClassA
wsprintfA
CreatePopupMenu
SendMessageW
TranslateMessage
IsZoomed
GetScrollInfo
GetDC
OffsetRect
CharToOemA
SetWindowPlacement
ScrollWindow
GetSysColorBrush
CloseClipboard
DefWindowProcA
InvalidateRect
ShowScrollBar
IsDialogMessageA
GetScrollRange
WindowFromPoint
DefFrameProcA
GetKeyboardLayout
DrawIconEx
ActivateKeyboardLayout
GetClassLongA
EndPaint
GetMenuItemCount
RegisterWindowMessageA
GetKeyState
DeleteMenu
AdjustWindowRectEx
SetCursor
CreateIcon
LoadCursorA
ShowWindow
SetPropA
ShowOwnedPopups
IsIconic
SetWindowLongA
PeekMessageA
GetDCEx
SetWindowLongW
DispatchMessageA
GetWindowDC
GetParent
GetMenuStringA
GetTopWindow
SetClassLongA
RegisterClassA
LoadIconA
DrawMenuBar
SystemParametersInfoA
CreateMenu
GetCursorPos
ReleaseDC
ScreenToClient
CharNextW
CreateWindowExA
MessageBeep
GetWindowPlacement
GetCapture
CharNextA
UpdateWindow
GetWindowLongA
CharLowerA
DrawIcon
DestroyIcon
GetLastActivePopup
PostQuitMessage
CheckMenuItem
ReleaseCapture
SetActiveWindow
OemToCharA
GetWindowThreadProcessId
EnumThreadWindows
SetTimer
PostMessageA

comdlg32

GetOpenFileNameA
FindTextA

kernel32

GetCommandLineA
LoadLibraryExA
GetModuleHandleA
LoadLibraryA
IsBadReadPtr
lstrlenA
ExitThread
ExitProcess
GetVersionExA
GetProcAddress
VirtualAllocEx
GlobalAlloc

Sections

CODE
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES9
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES7
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc9fbbc00c4de713c67a08320ee4cc96

Headers

File Characteristics

Imports

oleaut32

user32

comdlg32

kernel32

Sections

CODE Size: 55KB - Virtual size: 55KB

.data Size: 135KB - Virtual size: 135KB

RES3 Size: 2KB - Virtual size: 1KB

RES6 Size: 2KB - Virtual size: 1KB

RES2 Size: 4KB - Virtual size: 3KB

RES9 Size: 2KB - Virtual size: 1KB

RES5 Size: 1KB - Virtual size: 1KB

RES7 Size: 512B - Virtual size: 257B

RES4 Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

CODE
Size: 55KB - Virtual size: 55KB

.data
Size: 135KB - Virtual size: 135KB

RES3
Size: 2KB - Virtual size: 1KB

RES6
Size: 2KB - Virtual size: 1KB

RES2
Size: 4KB - Virtual size: 3KB

RES9
Size: 2KB - Virtual size: 1KB

RES5
Size: 1KB - Virtual size: 1KB

RES7
Size: 512B - Virtual size: 257B

RES4
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB