File-Idle[.]Biceps_592205[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

File-Idle.Biceps_592205.exe
Size

8.8MB
MD5

5672f51f112c9bd4538f0ade691a259d
SHA1

606599070f9bfb5e09579a028e8efd35a5daddf8
SHA256

298c15c24c5c919e924894faa132cf8ada0bfc82b895f7d53d865616be20ee76
SHA512

3df5bad22aa6cbd0ee6f814b061141d090fe7b453f4eeb3ecdf0b5fe14c80973ebdadead38c4e71b318ca976219c250ef55673ae87ff1ce830b3c99a3cd1aa72
SSDEEP

196608:G/y4mp6lBo5/aGu03iYVUwJeekHCB8G4ulgpujV5C8rphiEzZ:kYPu03dSwJiCB8LuyeS8loE9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
File-Idle.Biceps_592205.exe

Files

File-Idle.Biceps_592205.exe
.exe windows:6 windows x86 arch:x86

ace20a751910b10ef6c3150601349824

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsW
PathCombineW

kernel32

EnumSystemLocalesW
LCMapStringEx
InitializeCriticalSectionEx
SetFilePointer
CreateThread
FindFirstFileA
GetFileAttributesW
RaiseException
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
GetCurrentDirectoryA
CreateDirectoryA
GetSystemTimeAsFileTime
HeapAlloc
GetSystemWow64DirectoryW
Sleep
GetConsoleMode
ExitProcess
DecodePointer
CreateDirectoryW
GetLastError
GetCommandLineA
InitializeSListHead
GetTickCount64
SetFileTime
TlsGetValue
GetFileInformationByHandle
SetLastError
SetEvent
GetCurrentDirectoryW
SetFileAttributesA
FindClose
HeapFree
LocalFree
GetCurrentProcess
CreateEventA
DeleteFileA
DeleteFileW
GetProcessHeap
GetEnvironmentStringsW
TlsFree
GetCommandLineW
RtlUnwind
LoadLibraryW
GetNativeSystemInfo
GetOEMCP
FreeEnvironmentStringsW
DeleteCriticalSection
VirtualProtect
GetSystemInfo
SetFileAttributesW
UnhandledExceptionFilter
GetCurrentProcessId
GetStringTypeW
AreFileApisANSI
FindFirstFileExW
VirtualFree
FindNextFileA
GetUserDefaultLCID
HeapSize
RemoveDirectoryA
FlushFileBuffers
FreeLibrary
GetTempPathA
GetProcessAffinityMask
GetACP
RemoveDirectoryW
FormatMessageA
GlobalMemoryStatus
FreeLibraryAndExitThread
SetStdHandle
MultiByteToWideChar
WriteConsoleW
GetFileSize
GetFileAttributesA
IsValidLocale
CreateFileA
VirtualAlloc
QueryPerformanceCounter
WideCharToMultiByte
GetConsoleOutputCP
EnterCriticalSection
GetVersionExA
SetUnhandledExceptionFilter
TlsAlloc
GetLocaleInfoW
SetEndOfFile
CloseHandle
LoadLibraryExW
ExitThread
GetProcAddress
lstrlenW
CreateSemaphoreA
WriteFile
GetStdHandle
FindFirstFileW
GetTempPathW
GetStartupInfoW
FormatMessageW
GetSystemDirectoryW
GetModuleHandleExW
GetTickCount
WaitForSingleObject
IsBadReadPtr
IsDebuggerPresent
GetModuleFileNameW
CreateFileW
InitializeCriticalSection
GetFileType
HeapReAlloc
IsProcessorFeaturePresent
LeaveCriticalSection
ReadFile
LoadLibraryA
GetModuleFileNameA
FindNextFileW
ReleaseSemaphore
EncodePointer
SetFilePointerEx
TlsSetValue
LCMapStringW
TerminateProcess
GetModuleHandleA
IsValidCodePage
ResetEvent
GetCurrentThreadId
lstrcatW

user32

LoadStringA
DialogBoxParamW
SendMessageA
PostMessageA
SetWindowTextW
DestroyWindow
CharUpperA
EndDialog
GetDlgItem
GetWindowLongA
LoadIconA
MessageBoxW
DialogBoxParamA
ShowWindow
CharUpperW
LoadStringW
SetWindowTextA
SetWindowLongA
KillTimer
SetTimer

shell32

SHGetSpecialFolderPathW

oleaut32

SysAllocStringLen
SysStringLen
VariantClear

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Sections

.text
Size: 937KB - Virtual size: 937KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6.2MB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ace20a751910b10ef6c3150601349824

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

shell32

oleaut32

advapi32

ole32

Sections

.text Size: 937KB - Virtual size: 937KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 6.2MB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 937KB - Virtual size: 937KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 6.2MB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 19KB - Virtual size: 18KB