b8280259b0d45455adcd5c848893d258

Sharing

Copy URL Twitter E-mail

General

Target

b8280259b0d45455adcd5c848893d258
Size

48KB
MD5

b8280259b0d45455adcd5c848893d258
SHA1

c547354caf48dd61a06399046babf69c8e0812f4
SHA256

6d53830ed80ba3731fce51a7c194f55bac10de54cf87c77dbc4f4d057ff4048d
SHA512

43286c62d16ebd7d019a25b0bbabcc7e9a1f24c939830cd9c4dc49bf73f7cbf4d0049405c8dacf610a46fc9fcf324534f0c863121cc0351b3e69a39d65f415d2
SSDEEP

768:sy7s+MP6gYS7wG4WWSGmCb1UfkWeSeXGf2rQGm+TK2jYYWVrJ/:sy/MP6UwLnNmChU8Yd2rQSreh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8280259b0d45455adcd5c848893d258

Files

b8280259b0d45455adcd5c848893d258
.exe windows:4 windows x86 arch:x86

d621235ef291c0154bbcea5d9a4a0447

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegFlushKey
RegCreateKeyExW
RegLoadKeyA
RegQueryInfoKeyW
RegDeleteValueA
RegCreateKeyW
RegDeleteKeyA
RegOpenKeyExW
RegQueryValueExW
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyExW
RegDeleteValueW
RegGetKeySecurity
RegEnumValueW
RegDeleteKeyW
RegReplaceKeyW
RegEnumKeyExA

user32

InsertMenuA
LoadCursorA
GetDlgItem
GetFocus
AlignRects
CreateIcon
BlockInput
DrawIconEx
CloseWindow
DialogBoxParamA
CopyIcon
DrawTextW
AppendMenuW
DrawTextA
LoadMenuA
DialogBoxParamW
EndDialog
GetDC
GetCursor
GetMenu
LoadMenuA
LoadCursorA
AppendMenuW
GetWindowTextLengthA
DialogBoxParamA
DrawIcon
CreateIcon
GetDlgItem
DialogBoxParamW
CloseWindow
CopyIcon
GetWindowTextA
CopyRect
GetMenu
GetCursor
GetDC
DrawIconEx
CalcMenuBar

kernel32

lstrcmpiA
lstrlenA
HeapAlloc
GetStringTypeW
GetFileAttributesA
GetCPInfo
HeapFree
FreeLibrary
lstrcmpA
lstrcpynA
GetFileType
CloseHandle
GetCommandLineA
GetStdHandle
GetLastError
GetModuleHandleA

comctl32

ImageList_Merge
ImageList_Copy
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_LoadImageW
ImageList_LoadImage
ImageList_GetImageCount
ImageList_DragLeave
ImageList_GetImageRect
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_GetIconSize
InitCommonControls
ImageList_DrawIndirect
ImageList_Replace
ImageList_DrawEx
ImageList_LoadImageA
ImageList_Remove
ImageList_Create

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydata
Size: 3KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mWdSQx
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eQBbzq
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d621235ef291c0154bbcea5d9a4a0447

Headers

File Characteristics

Imports

advapi32

user32

kernel32

comctl32

Sections

.text Size: 14KB - Virtual size: 13KB

.hdata Size: 25KB - Virtual size: 24KB

.ydata Size: 3KB - Virtual size: 22KB

.mWdSQx Size: - Virtual size: 1KB

.eQBbzq Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.hdata
Size: 25KB - Virtual size: 24KB

.ydata
Size: 3KB - Virtual size: 22KB

.mWdSQx
Size: - Virtual size: 1KB

.eQBbzq
Size: 2KB - Virtual size: 1KB