b3f09649dfc6a9580bd307447c9e8ec3

Sharing

Copy URL

Twitter E-mail

General

Target

b3f09649dfc6a9580bd307447c9e8ec3
Size

169KB
MD5

b3f09649dfc6a9580bd307447c9e8ec3
SHA1

62f2c4e8ef148e3fd1dafb0b5da67a523897cf2d
SHA256

20235ba84417e3ab059380aae16a83f9262f38eea1a6c7f7c1f7db701c1f81df
SHA512

e80bae9ad9408c7c7833518fd0a15f841200015080eaf4b081ea8f8489d4aab7a780584a7cd79fe4613b959ae3c54853906dd0671253b5b049968363dcdee427
SSDEEP

3072:0PdDTjKkRA1xtApfyTpxsIdecln94SQZ+Tm+XxXaipjBdQZvWZ3mHYCGkkEQa:6/iphTL/declumKuzdB1pUFkEn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3f09649dfc6a9580bd307447c9e8ec3

Files

b3f09649dfc6a9580bd307447c9e8ec3
.exe windows:5 windows x86 arch:x86

8b578580b2377cd639581211b55d62eb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
LocalAlloc
LoadLibraryA
GetProcAddress
ExitProcess
Sleep

user32

SetMenu
IntersectRect
GetForegroundWindow
EnableWindow
GetScrollPos
GetWindowTextA
IsIconic
CharToOemA
RegisterClassA
GetWindowLongA
PtInRect
EnableScrollBar
GetClipboardData
ActivateKeyboardLayout
RegisterWindowMessageA
DrawEdge
GetDesktopWindow
GetKeyboardLayout
SetScrollPos
WaitMessage
SetScrollInfo
GetFocus
EnableMenuItem
CreatePopupMenu
EnumThreadWindows
GetScrollInfo
SetActiveWindow
TranslateMDISysAccel
SetCursor
GetTopWindow
SetWindowTextA
SetTimer
GetMenuItemCount
RemovePropA
FindWindowA
InvalidateRect
LoadIconA
EndPaint
SetWindowLongA
DestroyMenu
GetCursorPos
ShowScrollBar
GetClassInfoA
RemoveMenu
FillRect
SetParent
ClientToScreen
GetClassNameA
LoadKeyboardLayoutA
DrawIconEx
GetMenuState
FrameRect
GetIconInfo
GetSubMenu
IsRectEmpty
SetForegroundWindow
MessageBoxA
LoadStringA
TrackPopupMenu
RedrawWindow
GetSystemMenu
SetFocus
SetWindowPlacement
GetWindowPlacement
SystemParametersInfoA
CreateIcon
OffsetRect
GetPropA
IsWindowVisible
DestroyIcon
IsWindow
IsZoomed
SetClassLongA
PeekMessageA
DefWindowProcA
DispatchMessageA
EqualRect
CallNextHookEx
ShowOwnedPopups
DefFrameProcA
CharLowerBuffA
MsgWaitForMultipleObjects
GetDCEx
IsDialogMessageA
InsertMenuA
RegisterClipboardFormatA
CharLowerA
SetWindowPos
SetMenuItemInfoA
WinHelpA
GetSystemMetrics
ScrollWindow
GetMenuItemInfoA
CallWindowProcA
SetRect
GetDC
PostQuitMessage
InsertMenuItemA
IsWindowEnabled
CreateMenu
DrawMenuBar
MapWindowPoints
SetCapture
GetSysColor
ShowWindow
IsChild
KillTimer
CreateWindowExA
EnumWindows
GetActiveWindow
GetKeyState
UnhookWindowsHookEx
UpdateWindow
OemToCharA
DrawIcon
DrawFrameControl
GetKeyboardLayoutList
GetLastActivePopup
GetMenuStringA
GetCursor
GetKeyNameTextA
ReleaseDC
GetWindowRect
PostMessageA
GetScrollRange
GetParent
SetScrollRange
SendMessageA
DestroyWindow
ReleaseCapture
MapVirtualKeyA
DrawTextA
DefMDIChildProcA
DeleteMenu
DestroyCursor
GetWindowDC
UnregisterClassA
GetMenuItemID
InflateRect
GetCapture
AdjustWindowRectEx
LoadCursorA
GetWindowThreadProcessId
CharNextA
GetMenu
ScreenToClient
WindowFromPoint
CheckMenuItem
LoadBitmapA
BeginPaint
SetWindowsHookExA
TranslateMessage
GetClientRect
GetWindow
GetKeyboardState
GetSysColorBrush
SetPropA
ShowCursor

gdi32

SetBkColor
GetDCOrgEx
CreateHalftonePalette
GetEnhMetaFileHeader
SetEnhMetaFileBits
GetPaletteEntries
SetROP2
GetPixel
GetBitmapBits
PlayEnhMetaFile
GetWindowOrgEx
SetStretchBltMode
SetBkMode
CreateDIBSection
MaskBlt
GetStockObject
Polyline
LineTo
GetObjectA
CreatePenIndirect
RestoreDC
GetDIBits
GetEnhMetaFilePaletteEntries
Rectangle
UnrealizeObject
CopyEnhMetaFileA
GetTextExtentPoint32A
GetEnhMetaFileBits
BitBlt
SaveDC
SetTextColor
CreateCompatibleDC
IntersectClipRect
GetClipBox
GetSystemPaletteEntries
CreatePalette
GetDeviceCaps
CreateDIBitmap
DeleteEnhMetaFile
CreateBitmap
ExcludeClipRect
SelectPalette
CreateBrushIndirect
StretchBlt
GetDIBColorTable
CreateSolidBrush
CreateFontIndirectA
DeleteDC
GetWinMetaFileBits
SetPixel
SetWindowOrgEx
RealizePalette
SetViewportOrgEx
RectVisible
CreateCompatibleBitmap
GetBrushOrgEx
PatBlt
GetTextMetricsA
DeleteObject
SetBrushOrgEx
SelectObject
SetDIBColorTable
GetCurrentPositionEx
SetWinMetaFileBits
MoveToEx

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

oleaut32

VariantChangeType
SafeArrayGetUBound
VariantCopy
SafeArrayPtrOfIndex
SafeArrayGetLBound
VariantInit
SafeArrayCreate
VariantClear

comctl32

ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_DrawEx
ImageList_SetIconSize
ImageList_DragMove
ImageList_DragEnter
ImageList_EndDrag
ImageList_Write
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_Create
ImageList_Read
ImageList_DragLeave
ImageList_SetDragCursorImage
ImageList_Draw
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_Add
ImageList_Remove
ImageList_GetImageCount
ImageList_Destroy

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

netapi32

NetApiBufferSize

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asdew
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b578580b2377cd639581211b55d62eb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

oleaut32

comctl32

version

netapi32

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 18KB - Virtual size: 54KB

.asdew Size: 3KB - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 18KB - Virtual size: 54KB

.asdew
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 1KB