b4ebe81c6a22f8bd472762e5dc086fe4

Sharing

Copy URL Twitter E-mail

General

Target

b4ebe81c6a22f8bd472762e5dc086fe4
Size

136KB
MD5

b4ebe81c6a22f8bd472762e5dc086fe4
SHA1

792024bd1e457f3a6c08fc73bff94b03c28446f0
SHA256

9d71ce2196ee2d9d1a92e4c5f98f11a8628c2159e22ceb81362165485d0df4fe
SHA512

a8e63960f16b33215dcaae2c435dc85e91d3f74ede847ad6220d3964c4be77e0ac82297c378c616bb5583311b5b719e8c02d4ba563d29bd76ada89d4bdaa7698
SSDEEP

3072:iZa5kVsY2QopLYtlx2qvs9+gdy+cGVklM/LP:io26NQ5tl4x8+NVkl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4ebe81c6a22f8bd472762e5dc086fe4

Files

b4ebe81c6a22f8bd472762e5dc086fe4
.exe windows:5 windows x86 arch:x86

fded2cceda40306a1d57eb1366cf813a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
HeapFree
GlobalFree
FindNextFileW
ExitThread
TlsGetValue
CreateProcessA
GetTimeFormatW
VirtualProtect
RtlUnwind
VirtualFree
GetNumberFormatW
GetModuleHandleA
GetACP
GetProcAddress
lstrcmpW
GetCurrentDirectoryA
CreateDirectoryExA
SetErrorMode
OutputDebugStringA
VirtualAlloc
LoadLibraryW
GetLastError
CreateDirectoryA

msvcrt

iswlower
toupper
wcscmp
__setusermatherr
towupper
memcpy
_XcptFilter
wcsrchr
_wcsicmp
wcsncpy
strncpy
_wcmdln
atoi
wcstol
_wtoi
__CxxFrameHandler
printf
swscanf
wcstok
_wcsnicmp

user32

LoadCursorW
SendMessageW
DialogBoxParamA
GetProcessWindowStation
UnregisterClassW
ReleaseDC
SetCapture
LoadCursorA
SendMessageA
ClientToScreen
wsprintfW
GetMenuItemCount
MapWindowPoints
CopyRect
SetScrollPos
DispatchMessageW
DestroyWindow
GetParent
IsWindow
LoadImageW
LoadMenuW
BeginPaint
GetCursorPos
ScreenToClient
CheckDlgButton
RegisterClassA
ReleaseCapture

gdi32

TranslateCharsetInfo
Rectangle
CreateFontIndirectW
CreateBitmap
SetTextColor
RestoreDC
StretchBlt
SetBkMode
CreateCompatibleDC
PatBlt

opengl32

glColor4i
glTexCoord2dv
glFogfv
glColor4f
wglShareLists
glColor3ui
glColor4d
glTexCoord2d
glStencilMask
GlmfBeginGlsBlock

Exports

Exports

HwrbFsrbBxzpe
Musxrb
HxNxfutRxfxlmAammUv
Fyol
CsoohumMfhsfdnQhfndjc

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fded2cceda40306a1d57eb1366cf813a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 72B

.adata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 168B

.data Size: 55KB - Virtual size: 55KB

.rsrc Size: 62KB - Virtual size: 61KB

.reloc Size: 512B - Virtual size: 102B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 72B

.adata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 168B

.data
Size: 55KB - Virtual size: 55KB

.rsrc
Size: 62KB - Virtual size: 61KB

.reloc
Size: 512B - Virtual size: 102B