b8798ee35ff19b252a0ed58b373b09d1

Sharing

Copy URL Twitter E-mail

General

Target

b8798ee35ff19b252a0ed58b373b09d1
Size

138KB
MD5

b8798ee35ff19b252a0ed58b373b09d1
SHA1

fb21ea5ba4351cbeb1ee9dae4e5b05a5034ec2c3
SHA256

733605b4923fdf8bbdd0220fa17a10c0f3d4ac04bb37857311f1a5b18292bd82
SHA512

8b3b8b09524ed232606ebf65b3bc0bea0e8afc5fb10326566380e30b878b475aac56b29746580ba7c28124a74d934e12d48e63fe947b93be247d104e433233af
SSDEEP

3072:BJa5xsY2QopLYtlx2qvMM+gdy+cGVklM/LK:B4ANQ5tl4vm8+NVkl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8798ee35ff19b252a0ed58b373b09d1

Files

b8798ee35ff19b252a0ed58b373b09d1
.exe windows:5 windows x86 arch:x86

fe82c5674fa1a7d4d2df287f24dbe63b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
GlobalFree
TlsGetValue
GetProcAddress
GetCurrentDirectoryA
GetNumberFormatW
GetLastError
ExitThread
CreateProcessA
HeapFree
lstrcmpW
OutputDebugStringA
VirtualAlloc
VirtualProtect
CreateDirectoryA
GetACP
CreateMutexA
DeleteFileA
CreateDirectoryExA
VirtualFree
RtlUnwind
FindNextFileW
DnsHostnameToComputerNameA
LoadLibraryW
GetModuleHandleA
GetTimeFormatW

msvcrt

toupper
wcstok
towupper
printf
atoi
memcpy
wcsrchr
_wcsnicmp
__setusermatherr
_wcmdln
wcsncpy
__CxxFrameHandler
_wcsicmp
wcstol
_wtoi
strncpy
_XcptFilter
iswlower
swscanf
wcscmp

user32

LoadCursorW
SendMessageW
DialogBoxParamA
GetProcessWindowStation
UnregisterClassW
ReleaseDC
SetCapture
LoadCursorA
SendMessageA
ClientToScreen
wsprintfW
GetMenuItemCount
MapWindowPoints
CopyRect
SetScrollPos
DispatchMessageW
DestroyWindow
GetParent
IsWindow
LoadImageW
LoadMenuW
BeginPaint
GetCursorPos
ScreenToClient
CheckDlgButton
RegisterClassA
ReleaseCapture

gdi32

TranslateCharsetInfo
Rectangle
CreateFontIndirectW
CreateBitmap
SetTextColor
RestoreDC
StretchBlt
SetBkMode
CreateCompatibleDC
PatBlt

opengl32

glColor4i
glTexCoord2dv
glFogfv
glColor4f
wglShareLists
glColor3ui
glColor4d
glTexCoord2d
glStencilMask
GlmfBeginGlsBlock

Exports

Exports

HwrbFsrbBxzpe
Musxrb
HxNxfutRxfxlmAammUv
Fyol
CsoohumMfhsfdnQhfndjc

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe82c5674fa1a7d4d2df287f24dbe63b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 2KB

.crt Size: 512B - Virtual size: 72B

.adata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 168B

.data Size: 55KB - Virtual size: 55KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 108B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 2KB

.crt
Size: 512B - Virtual size: 72B

.adata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 168B

.data
Size: 55KB - Virtual size: 55KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 108B