b8c1e118f99714d16681ed188de01974

Sharing

Copy URL

Twitter E-mail

General

Target

b8c1e118f99714d16681ed188de01974
Size

495KB
MD5

b8c1e118f99714d16681ed188de01974
SHA1

82f06e52136db1af3ab6e26d0fcfffd8504625e5
SHA256

abbcf9ea73d7e9d958af0219fa082cbb470f49e64e743e2a27943fd4c3f6f965
SHA512

88548ff439378044bc104e64d966d4adb07b2f0b05191ec74b29bd12df6a303d8384efb1a503da6a587161f529ee86174df8262d93f868dde9f9b939e3fd8556
SSDEEP

12288:un/pk6jHn42oiL1DaB7YfVPxZWk/b+JM+4B/KEii5j:o/pNHn42oeBatclj/qk/KDg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8c1e118f99714d16681ed188de01974

Files

b8c1e118f99714d16681ed188de01974
.exe windows:4 windows x86 arch:x86

1aa5b31a9bfc23c30926318c65dfeef4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSaveKeyA
GetUserNameA
CryptEnumProviderTypesA
InitiateSystemShutdownW
CryptSetKeyParam
LogonUserW
RegRestoreKeyA
CryptSetProviderExA
RegDeleteKeyW
RegRestoreKeyW

comdlg32

GetSaveFileNameW
LoadAlterBitmap
GetFileTitleA

user32

GetWindowTextA
GetMenuStringW
GetCaretPos
RegisterClipboardFormatA
TrackPopupMenu
RegisterClassA
LoadIconW
BroadcastSystemMessage
DrawIconEx
UnregisterDeviceNotification
UnregisterClassA
GetListBoxInfo
DdeUnaccessData
DlgDirListW
RegisterClassExA
DlgDirSelectComboBoxExA
SetShellWindow
EnumPropsA
GetUserObjectInformationA
AdjustWindowRectEx

gdi32

CreateRoundRectRgn
PlgBlt
SetTextCharacterExtra
GetColorSpace
SetMetaRgn
PolyPolygon
GetObjectType
GetBitmapBits
Arc
CreatePolygonRgn
CreateEllipticRgnIndirect
WidenPath
EnumICMProfilesA
SetMagicColors
ExtEscape
ResetDCA
ResizePalette
GetLogColorSpaceW
GetBitmapDimensionEx
CombineRgn
CopyEnhMetaFileW
GetBkMode

shell32

ShellAboutW
InternalExtractIconListW
SHEmptyRecycleBinW

kernel32

CreateFileA
EnterCriticalSection
GetVersionExA
VirtualQuery
InterlockedDecrement
OpenMutexA
FreeEnvironmentStringsW
HeapSize
EnumSystemLocalesA
SetStdHandle
SetFilePointer
SetUnhandledExceptionFilter
TlsGetValue
TlsAlloc
GetOEMCP
GetPrivateProfileSectionNamesW
ReadFile
Sleep
GetCPInfo
GetModuleFileNameW
GlobalDeleteAtom
GetStdHandle
WriteConsoleA
InitializeCriticalSection
GetCommandLineA
VirtualAlloc
GetConsoleMode
GlobalAddAtomW
RtlUnwind
SetHandleCount
WideCharToMultiByte
GetSystemTimeAsFileTime
IsDebuggerPresent
CompareStringW
QueryPerformanceCounter
CommConfigDialogA
LoadLibraryA
GetACP
TlsFree
WritePrivateProfileSectionA
IsValidCodePage
GetConsoleCP
SetLastError
DeleteCriticalSection
InterlockedIncrement
GetEnvironmentStringsW
CreateMutexA
GetDateFormatA
GetModuleHandleA
LCMapStringA
GetFileType
GetCurrentProcess
GetUserDefaultLCID
GetConsoleOutputCP
GetStringTypeA
GetStartupInfoW
SetConsoleCtrlHandler
GetCurrentThreadId
VirtualFree
GetProcAddress
CloseHandle
LocalUnlock
ExitProcess
GetLocaleInfoA
FreeLibrary
GetModuleFileNameA
GetLastError
CompareStringA
GetTickCount
GetCommandLineW
HeapAlloc
HeapReAlloc
MultiByteToWideChar
HeapCreate
InterlockedExchange
LeaveCriticalSection
GetProcessHeap
InterlockedExchangeAdd
GetTimeZoneInformation
GetStartupInfoA
FreeEnvironmentStringsA
HeapDestroy
WriteConsoleW
RtlMoveMemory
GetStringTypeW
GetTimeFormatA
GetEnvironmentStrings
IsValidLocale
LCMapStringW
SetEnvironmentVariableA
HeapFree
GetLocaleInfoW
GetCurrentProcessId
UnhandledExceptionFilter
WriteFile
TerminateProcess
TransmitCommChar
TlsSetValue
GetCurrentThread
FlushFileBuffers

comctl32

InitCommonControlsEx

Sections

.text
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1aa5b31a9bfc23c30926318c65dfeef4

Headers

File Characteristics

Imports

advapi32

comdlg32

user32

gdi32

shell32

kernel32

comctl32

Sections

.text Size: 154KB - Virtual size: 153KB

.rdata Size: 11KB - Virtual size: 33KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 154KB - Virtual size: 153KB

.rdata
Size: 11KB - Virtual size: 33KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 16KB - Virtual size: 16KB