b8fac20804b420b421ac9aa7b5610225

Sharing

Copy URL

Twitter E-mail

General

Target

b8fac20804b420b421ac9aa7b5610225
Size

560KB
MD5

b8fac20804b420b421ac9aa7b5610225
SHA1

585dbe7e4df4b067a5ff434661390e8b0f7c8de7
SHA256

1a803714229d2462d2b340ac369afddb6e31fcdf51b17bbae889a6987aa38d99
SHA512

345bb28fa92c13001f1d6b51a417d43cb169a4bb0e1d2e11f289a83d04634ffae1e5641cddf8238bf147125245dcbdc35f0705d8968075f8f4a2ecfd8943d909
SSDEEP

12288:WQuOVry7NVU9avKP/l/UNmeIdcfF+DNPnuxFy7F:B8QwvKlMPt2Pnux

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8fac20804b420b421ac9aa7b5610225

Files

b8fac20804b420b421ac9aa7b5610225
.exe windows:4 windows x86 arch:x86

5552975b540a1ee670e35dfb83b6831d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateToolbarEx
DrawStatusTextW
InitCommonControlsEx
ImageList_Destroy
ImageList_LoadImage
CreateToolbar
ImageList_GetIconSize
DrawInsert
ImageList_SetOverlayImage

comdlg32

FindTextA

user32

SetClassWord
CharPrevExA
IsCharAlphaA
SetMenuItemInfoA
GetClassInfoExA
DestroyWindow
DdeAbandonTransaction
WinHelpW
DefWindowProcW
SetWindowPlacement
DefMDIChildProcA
MonitorFromWindow
ChildWindowFromPoint
ScrollWindowEx
GetAsyncKeyState
CreateWindowExA
MessageBoxW
IsDlgButtonChecked
PostThreadMessageW
RegisterClassA
GetParent
GetClassNameW
LoadMenuW
VkKeyScanExA
MsgWaitForMultipleObjects
LoadKeyboardLayoutA
GetMessagePos
RegisterClassExA
CopyRect
UpdateWindow
SetCaretBlinkTime
EmptyClipboard
SetScrollInfo
FindWindowA
ClientToScreen
ShowWindow
ScrollDC
WinHelpA

kernel32

CommConfigDialogW
CreateMutexA
UnlockFileEx
GetCurrentDirectoryW
lstrcpynA
HeapReAlloc
FlushInstructionCache
TlsFree
SetConsoleCP
SetPriorityClass
HeapDestroy
WaitForMultipleObjects
InterlockedExchange
GetLocaleInfoW
FreeEnvironmentStringsW
lstrcatA
GetTickCount
GetCurrentThread
WriteProfileStringW
GetCommandLineW
CreateMutexW
UnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsA
GetLogicalDriveStringsW
FindFirstFileA
LoadResource
CreateThread
FindFirstFileExA
lstrcpynW
VirtualFree
GetLastError
CreateFileMappingW
MultiByteToWideChar
OpenFileMappingW
GetModuleHandleW
IsValidCodePage
GetStartupInfoA
InitializeCriticalSection
GetTempFileNameA
DeleteCriticalSection
GetFileType
SetHandleCount
GetDateFormatA
SetFilePointer
SleepEx
CloseHandle
SetCurrentDirectoryA
ReadConsoleW
CreateFileMappingA
GetVolumeInformationW
TransactNamedPipe
LoadLibraryA
GetCurrentProcess
TlsGetValue
CopyFileA
FlushFileBuffers
VirtualQuery
LocalShrink
SetStdHandle
RtlZeroMemory
GetLocaleInfoA
SetConsoleMode
CreateDirectoryExA
IsValidLocale
SetEnvironmentVariableW
GetOEMCP
GetACP
TerminateProcess
GetCPInfo
TlsSetValue
GetProcAddress
SetConsoleActiveScreenBuffer
GetModuleFileNameA
GetCommandLineA
LCMapStringA
ReadFile
GetProcessShutdownParameters
PulseEvent
GetTimeFormatA
SetUnhandledExceptionFilter
SetConsoleCursorInfo
GetThreadContext
GetUserDefaultLCID
SetConsoleTitleW
GetEnvironmentStrings
OpenMutexA
GetPriorityClass
GetSystemTimeAsFileTime
WideCharToMultiByte
GetCurrentThreadId
VirtualProtect
ExitProcess
SetFileTime
GetStringTypeA
IsBadWritePtr
TlsAlloc
GetTimeZoneInformation
CompareStringA
CommConfigDialogA
GetStringTypeW
GetSystemInfo
VirtualAlloc
EnumSystemLocalesA
CreateNamedPipeA
GetStringTypeExA
HeapFree
RtlUnwind
CreateRemoteThread
HeapSize
DebugBreak
QueryPerformanceCounter
SetVolumeLabelW
GetModuleFileNameW
GetCurrentProcessId
SetConsoleCtrlHandler
GetConsoleCursorInfo
WritePrivateProfileStringA
SetLastError
LeaveCriticalSection
GetCalendarInfoW
SetEnvironmentVariableA
ExpandEnvironmentStringsW
CompareStringW
GetFileAttributesW
GetSystemDirectoryW
GetVersionExA
GetEnvironmentStringsW
GetModuleHandleA
HeapCreate
EnterCriticalSection
WritePrivateProfileStringW
LCMapStringW
HeapAlloc
SetThreadIdealProcessor
ReleaseSemaphore
MoveFileExW
EnumDateFormatsExA
WriteFile
GetStartupInfoW

wininet

InternetSetOptionExW
FindFirstUrlCacheContainerW
InternetWriteFileExW
HttpAddRequestHeadersW
FindFirstUrlCacheEntryExW
InternetCombineUrlA
DeleteUrlCacheEntry

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5552975b540a1ee670e35dfb83b6831d

Headers

File Characteristics

Imports

comctl32

comdlg32

user32

kernel32

wininet

Sections

.text Size: 172KB - Virtual size: 171KB

.rdata Size: 252KB - Virtual size: 249KB

.data Size: 116KB - Virtual size: 122KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 172KB - Virtual size: 171KB

.rdata
Size: 252KB - Virtual size: 249KB

.data
Size: 116KB - Virtual size: 122KB

.rsrc
Size: 16KB - Virtual size: 15KB