b84a23d06e2ff5258bf00c2edf20437f

Sharing

Copy URL Twitter E-mail

General

Target

b84a23d06e2ff5258bf00c2edf20437f
Size

126KB
MD5

b84a23d06e2ff5258bf00c2edf20437f
SHA1

92ff5f35c5d9fe2b8c672257af22a5ef3089f34c
SHA256

2a0403651170927610d051b2551b5e0c107fdc73c46c15ac7735dfe7a3c9fb87
SHA512

4f5d54bbcf783a4e6ec979b5db5309e8f12af0f32f52f562da3f61c39179d584e42f3cb24ca36c1432f4a90b0514216cb26bd07e3021dcf1335c05cc810a2792
SSDEEP

3072:t9uLpXv4Zflu7oohHc910PD17zW0pXcY/6o1:typ/tbhHc967ZzfpXcXo1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b84a23d06e2ff5258bf00c2edf20437f

Files

b84a23d06e2ff5258bf00c2edf20437f
.exe windows:4 windows x86 arch:x86

f06f875ba955678f77ed16249f6918e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathW
SetCurrentDirectoryW
SetEndOfFile
LocalFree
WideCharToMultiByte
GetVersionExA
WriteConsoleW
InitializeCriticalSection
ResumeThread
GetSystemInfo
GetLocaleInfoW
GetACP
HeapCreate
InterlockedDecrement
GlobalAlloc
LockResource
GetFileAttributesW
SetLastError
FileTimeToSystemTime
GetCurrentProcess
GlobalSize
FindClose
VirtualAllocEx
GetProcAddress
LoadLibraryA
GetLocaleInfoA
GetStringTypeW
HeapReAlloc
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapSize
VirtualQuery
RtlUnwind
GetCPInfo
GetOEMCP
IsBadWritePtr
FlushFileBuffers
SetStdHandle
HeapDestroy
GetFileType
SetHandleCount
FreeEnvironmentStringsW
GetEnvironmentStrings
UnhandledExceptionFilter
GetStdHandle
WriteFile
HeapFree
SetFilePointer
TerminateProcess
ExitProcess
GetLastError
CreateDirectoryW
GetCurrentThreadId
GetEnvironmentStringsW
WaitForSingleObject
FreeEnvironmentStringsA
CreateThread
TlsAlloc
GetCurrentDirectoryA
TlsGetValue
GetModuleFileNameW
InterlockedExchange
GetModuleHandleA
GlobalUnlock
GetModuleHandleW
VirtualProtect
ReadFile
LoadLibraryW
CreateEventW
GetConsoleOutputCP
lstrcatW
HeapAlloc
CloseHandle
VirtualAlloc
GetDriveTypeW
GetModuleFileNameA
GetCommandLineA
lstrcpynW
CreateFileW
VirtualFree
WriteConsoleA
GlobalLock
FindResourceW
LocalAlloc
MoveFileW
GetStringTypeA
GetStartupInfoA

user32

DestroyCursor
GetDlgCtrlID
wsprintfW
CreateAcceleratorTableW
SetScrollInfo
DestroyWindow
GetFocus
TranslateAcceleratorW
CreateWindowExW
TrackPopupMenu
LoadImageW
GetScrollPos
GetDlgItem
SetWindowPlacement
GetKeyboardState
RegisterClassExW
GetClipboardData
FrameRect
SendMessageW
RedrawWindow
MoveWindow
CallNextHookEx
GetSubMenu
GetWindowRect
ShowWindow
UpdateWindow
EnableWindow
GetSysColor
CheckMenuItem
IsZoomed
LoadCursorW
SetClipboardData
LoadMenuW
GetActiveWindow
DefWindowProcW
IsWindowUnicode
RegisterClassW
DrawEdge
RemoveMenu
GetWindowLongW
GetWindowTextW
DestroyCaret
IsClipboardFormatAvailable
SetMenu
DrawFocusRect
SystemParametersInfoW
DispatchMessageW
GetSystemMetrics
IsDialogMessageW
CreateCursor
DrawTextW
LoadIconW
CallWindowProcW
CreatePopupMenu
GetCapture
DestroyIcon
PtInRect
SetWindowLongA
GetDC
HideCaret
GetCursorPos
ShowScrollBar
BeginPaint
SetCapture

gdi32

DeleteDC
Rectangle
GetTextMetricsW
CreateCompatibleBitmap
EndPage
CreateSolidBrush
GetTextExtentPoint32W
CreateFontW
SaveDC
SelectObject
CreateFontIndirectW
SetTextAlign
SetBkMode
ExtTextOutW
GetPixel
SetTextColor
CreatePen
MoveToEx
GetTextExtentPointW
GetDeviceCaps
DPtoLP
AddFontResourceW
PatBlt
EnumFontFamiliesExW
GetObjectW
EndDoc
GetStockObject
SetBkColor
SetWindowOrgEx
RestoreDC
CreateBitmap
DeleteObject
CreateHatchBrush
SetBrushOrgEx

comdlg32

ChooseFontA
ChooseColorW
GetOpenFileNameW
GetFileTitleW
ChooseFontW
PrintDlgW
FindTextA
ReplaceTextW
ChooseColorA
GetSaveFileNameA
PageSetupDlgA
GetSaveFileNameW
PrintDlgA
GetOpenFileNameA
FindTextW
GetFileTitleA
PageSetupDlgW
ReplaceTextA

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f06f875ba955678f77ed16249f6918e6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 83KB - Virtual size: 131KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 83KB - Virtual size: 131KB

.rsrc
Size: 4KB - Virtual size: 4KB