b9ef0adc6bf04f7d237787c3f68d9329

Sharing

Copy URL Twitter E-mail

General

Target

b9ef0adc6bf04f7d237787c3f68d9329
Size

142KB
MD5

b9ef0adc6bf04f7d237787c3f68d9329
SHA1

581c8e2596b0c816d9dad7b36224c827d21c59f8
SHA256

31b60ed91716254bb306c9d9e15bace4a58f8c2b43235806e3fc86e1365e526d
SHA512

3e2ee57482cccb30d00a6ea3d7936eb0e5e9a2ad5e9ade671ec0d65fd8c3303020595076914b934b7906226285f79f5482eadcfb055ea4f734f6dd967ced4236
SSDEEP

3072:oNiS3uhrPWqUTiobuJ3RTZzpnw/KGsJpUXNgaacufMKDgx:nS+hYOfsKpJpnaaPEn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9ef0adc6bf04f7d237787c3f68d9329

Files

b9ef0adc6bf04f7d237787c3f68d9329
.exe windows:5 windows x86 arch:x86

07fafb61bdb4670e8db1fb04dc2f4c36

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
CreateEventA
GlobalAlloc
GetEnvironmentStringsW
GetACP
OutputDebugStringA
FreeEnvironmentStringsA
FileTimeToSystemTime
SetEvent
DosDateTimeToFileTime
VirtualFree
lstrcpyW
VirtualProtect
GetFileAttributesA
LoadLibraryW
VirtualAlloc
GetThreadLocale
GetStdHandle
SetHandleCount
TerminateThread
GetLastError
CreateEventW
GetTimeFormatW
GetStartupInfoW
CloseHandle
lstrcpynA
EndUpdateResourceA
GetModuleHandleA
GetProcAddress
GetConsoleMode
ExitThread
GetCurrentDirectoryA
GetModuleFileNameW
GetCurrentProcess

msvcrt

_XcptFilter
_wcsicmp
swscanf
_wcsnicmp
wcsncpy
wcstol
wcscmp
printf
atoi
memset
__CxxFrameHandler
strncpy
__setusermatherr
wcstok
toupper
tmpnam
towupper
wcsrchr
_wcmdln
memcpy
_wtoi

user32

SetCapture
GetMenuItemCount
SendMessageW
CopyRect
DestroyWindow
MapWindowPoints
SetScrollPos
IsWindow
ScreenToClient
SendMessageA
LoadCursorA
GetProcessWindowStation
DispatchMessageW
DialogBoxParamA
wsprintfW
ReleaseDC
GetParent
BeginPaint
ClientToScreen
CheckDlgButton
RegisterClassA
LoadImageW
LoadMenuW
UnregisterClassW
ReleaseCapture
LoadCursorW
GetCursorPos

gdi32

PatBlt
CreateBitmap
SetTextColor
CreateCompatibleDC
Rectangle
RestoreDC
CreateFontIndirectW
StretchBlt
SetBkMode
TranslateCharsetInfo

opengl32

glTexCoord2d
GlmfBeginGlsBlock
glColor4i
glColor4d
glFogfv
glTexCoord2dv
glColor3ui
glColor4f
glStencilMask
wglShareLists

Exports

Exports

VilJlhuQpanqTzh
YaNgetjMbklbzIawgzWns
AeKzzenVyzzq

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07fafb61bdb4670e8db1fb04dc2f4c36

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.crt Size: 512B - Virtual size: 72B

.rdata Size: 3KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 115B

.data Size: 58KB - Virtual size: 57KB

.rsrc Size: 65KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 262B

.text
Size: 14KB - Virtual size: 13KB

.crt
Size: 512B - Virtual size: 72B

.rdata
Size: 3KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 58KB - Virtual size: 57KB

.rsrc
Size: 65KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 262B