b95f1b7d5608d0a635bb43ae07749f08

Sharing

Copy URL

Twitter E-mail

General

Target

b95f1b7d5608d0a635bb43ae07749f08
Size

260KB
MD5

b95f1b7d5608d0a635bb43ae07749f08
SHA1

d8fee1a4f9618729f1db7fa9efd62fc06be1c9bb
SHA256

713152923478ece98f94554ff4238d525398f9710096d9a4385b6a3af580a5d5
SHA512

52a36ac5f62011d565250789d61ef4129105eea0689b434920f5690f9ef7954875c17ba8378fb39fc32493816690037fa18eb776c8cf1a978967a9ddc674bde9
SSDEEP

6144:0MYWUoFIa0GkHuMJrSIDMKvsvn0J6wQ/BpCd1+NTPKY7ty:oWxaXvHSIIlv0JlkKd1+1PKYhy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b95f1b7d5608d0a635bb43ae07749f08

Files

b95f1b7d5608d0a635bb43ae07749f08
.dll windows:1 windows x86 arch:x86

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBA
ConvertThreadToFiber
DebugBreak
DisconnectNamedPipe
DosDateTimeToFileTime
EnumResourceLanguagesW
ExitProcess
FindFirstChangeNotificationA
GetCommMask
GetCommState
GetConsoleAliasesW
GetConsoleMode
GetCurrencyFormatW
GetEnvironmentVariableA
GetFileSize
GetLocaleInfoW
GetLogicalDrives
GetModuleFileNameA
GetPrivateProfileStringA
GetProfileIntA
GetSystemTimeAsFileTime
GlobalMemoryStatus
HeapReAlloc
InterlockedDecrement
IsBadWritePtr
MapViewOfFileEx
MulDiv
OpenMutexW
PeekNamedPipe
PrepareTape
ScrollConsoleScreenBufferA
SetConsoleInputExeNameW
SetConsoleWindowInfo
SetDefaultCommConfigA
SetEvent
SetFileAttributesW
SetHandleInformation
SetSystemTimeAdjustment
Sleep
VirtualProtect
WaitCommEvent
WritePrivateProfileStructA
lstrcmpA
lstrcmpiA

user32

CallNextHookEx
CallWindowProcW
CharToOemA
ChildWindowFromPoint
CopyAcceleratorTableA
CreateIconFromResourceEx
DdeReconnect
DeferWindowPos
DrawEdge
EnumDesktopsW
EnumDisplaySettingsExW
EnumPropsW
GetClassWord
GetCursor
GetDesktopWindow
GetDialogBaseUnits
GetMenuContextHelpId
GetMenuState
GetParent
GetWindowContextHelpId
GrayStringA
LoadMenuIndirectA
OpenIcon
SetWindowTextA
ToAsciiEx
ToUnicodeEx
UnionRect
UserHandleGrantAccess
WINNLSEnableIME

gdi32

CreateScalableFontResourceA
DeviceCapabilitiesExA
DeviceCapabilitiesExW
EnumEnhMetaFile
ExcludeClipRect
FrameRgn
GdiComment
GetClipBox
GetClipRgn
GetKerningPairsW
GetPaletteEntries
GetPath
GetPixel
GetPixelFormat
GetRasterizerCaps
GetTextFaceA
GetTextFaceW
PlayEnhMetaFileRecord
SelectObject
UnrealizeObject

msvcrt

_ecvt
_expand
_getcwd
_hypot
_spawnl
_unloaddll
_unlock
_wchmod
_wmakepath
fgets
mblen
putc
strftime
strxfrm
tan
tanh
tmpnam
vsprintf
wcsftime
wcsrchr

Exports

Exports

ALbxogFWsuYEpgyj
BKfTzp
FojDOkqzeqxCtzmsjq
HxgaxfTkeE
KdZSzyuy
OymyvsydOufOk
PdtPuZnd
PuiyhDisJvOSfqLhpu
VHYfgcmsimdu
VenHSomvisr
VgzyeactZhIcBYlCG
WKQeiIaXtSrzJh

Sections

.text
Size: 8KB - Virtual size: 664KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 246KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mdata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 664KB

.data Size: 246KB - Virtual size: 260KB

.mdata Size: 512B - Virtual size: 340B

.rdata Size: 1024B - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 800B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 664KB

.data
Size: 246KB - Virtual size: 260KB

.mdata
Size: 512B - Virtual size: 340B

.rdata
Size: 1024B - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 800B

.reloc
Size: 2KB - Virtual size: 1KB