b93bb0648bbbb40055e0c17f47ca8036

Sharing

Copy URL Twitter E-mail

General

Target

b93bb0648bbbb40055e0c17f47ca8036
Size

84KB
MD5

b93bb0648bbbb40055e0c17f47ca8036
SHA1

1e1b5d89555b9ed0652948319e2b0d9eab0da9dc
SHA256

32d802745430181f1856e4de51ee30b3a03895906e88418368e9915d2c271a2f
SHA512

d90bcef1b74e6468d4fe165b03b6d39e1aa4b122746d5fa94f9d35d9f1d6ebbc2b15f0b62d3cb9a0ecc35d79ea7de01d157cbc905473fa94ddb599c1bc008430
SSDEEP

1536:kyfAr6yhjv8/nYOrTkLgAx9TBLDB0l2cfIupjL8y01oJ3WT4mF:D4r6yhjvKYCosa708cftvZ0KJ3WM8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b93bb0648bbbb40055e0c17f47ca8036

Files

b93bb0648bbbb40055e0c17f47ca8036
.exe windows:4 windows x86 arch:x86

285163842426ee3075aaa3e81ba1220a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetDiskFreeSpaceA
SHGetFileInfoA

user32

InvalidateRect
GetMenuStringA
GetWindowLongA
PostMessageA
GetMenu
EmptyClipboard
RedrawWindow
GetWindow
ReleaseDC
SetFocus
FillRect
GetActiveWindow
LoadBitmapA
RegisterClassA
GetKeyboardLayoutList
CreatePopupMenu
InsertMenuItemA
EnumChildWindows
CallWindowProcA
GetCursor
GetMenuItemCount
GetClassNameA
GetClassLongA
GetParent
IsWindowEnabled
GetKeyboardLayout
CharLowerA
GetWindowLongW
PostQuitMessage
IsWindowVisible
SendMessageA
CharUpperBuffA
IsRectEmpty
GetSystemMenu
IsDialogMessageW
GetPropA
GetDC
CharNextA
PeekMessageW
CharToOemA
SetMenu
LoadCursorA
GetSubMenu
CharLowerBuffA
SetRect
EnableWindow
InflateRect
TrackPopupMenu
RemovePropA
GetWindowThreadProcessId
SetPropA
DeleteMenu
SetWindowsHookExA
GetMenuItemInfoA
CreateIcon
GetKeyboardState
RegisterWindowMessageA
GetLastActivePopup
GetWindowPlacement
SetWindowPlacement
IsDlgButtonChecked
DrawMenuBar

oleaut32

VariantCopyInd
SysStringLen
SysReAllocStringLen
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
SafeArrayPtrOfIndex
GetErrorInfo

kernel32

GetDateFormatA
GetStdHandle
GetCommandLineW
VirtualAllocEx
HeapAlloc
FreeLibrary
GetStringTypeW
GetLastError
GetSystemDefaultLangID
GetFullPathNameA
SetThreadLocale
GetTempPathA
ExitProcess
FormatMessageA
VirtualAlloc
LoadLibraryA
DeleteFileA
IsBadHugeReadPtr
HeapFree
LoadLibraryExA
LockResource
GetStringTypeA
FindFirstFileA
WideCharToMultiByte
GetLocaleInfoA

Exports

Exports

OZ1IWQoQ@4
_UukuIQvOoTFK
XSQzOa6d
_mSrU0ZnS3_J1mw
PtycInFi@8
_TPKuXsGm
_dYJvHM6ojYR_
_R96xx3mw7xJjrS@12
_5ejyN0@16
EaOg2sPK3T2
211MP@12

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 512B - Virtual size: 335B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

285163842426ee3075aaa3e81ba1220a

Headers

File Characteristics

Imports

shell32

user32

oleaut32

kernel32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 11KB - Virtual size: 50KB

.data Size: 51KB - Virtual size: 50KB

.abdata Size: 512B - Virtual size: 335B

.edata Size: 512B - Virtual size: 300B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 11KB - Virtual size: 50KB

.data
Size: 51KB - Virtual size: 50KB

.abdata
Size: 512B - Virtual size: 335B

.edata
Size: 512B - Virtual size: 300B

.rsrc
Size: 8KB - Virtual size: 8KB