be871bfd1f134deec9add9098355ff80

Sharing

Copy URL Twitter E-mail

General

Target

be871bfd1f134deec9add9098355ff80
Size

168KB
MD5

be871bfd1f134deec9add9098355ff80
SHA1

2a5dc3927ec5477a8435fe3670d68772039f5afc
SHA256

73eb81959e55e1fd2181a1e5fd4bf0be2a541bb6ff5423dc734f9aca91a26e07
SHA512

4a2a569c1b7ddd292d9840fc66a0baed50b35c5b1a81471a1f2675ea65329276b5dd3f2dfa58ea658fff640dbdebf62c5c3249ebb9f4cfbee759b33cfaf8307d
SSDEEP

3072:ILBiIqfXNiIEyOzBPvzLDg2AwPSnyt47cVhpcSq79EsUyf7utTvfjQy6EDS/N:+Bi9ayOdPvzLDgmPic5cSqGsTzuRv8yk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be871bfd1f134deec9add9098355ff80

Files

be871bfd1f134deec9add9098355ff80
.exe windows:4 windows x86 arch:x86

49ddecc3f2b53f13b55f29365d10c2dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePenIndirect
GetBitmapBits
GetPaletteEntries
GetObjectA

user32

TrackPopupMenu
CallNextHookEx
FillRect
GetIconInfo
GetDesktopWindow
GetMenuItemInfoA
FindWindowA
DefWindowProcA
CreateMenu
GetWindowTextA
EnableWindow
MessageBoxA
GetClassInfoA
GetClassLongA
GetWindow
GetParent
DispatchMessageW
GetKeyState
CreatePopupMenu
EnumWindows
DrawTextA
DrawFrameControl
IsDialogMessageA
CallWindowProcA
ClientToScreen
GetScrollPos
GetDC
FrameRect
CreateWindowExA
GetKeyNameTextA
IsWindowVisible
GetClipboardData
SetTimer
GetCapture
GetDCEx
GetFocus
IsChild
SetCursor
DispatchMessageA
CharNextA
SystemParametersInfoA
GetMenu
GetMenuItemID
GetSysColor
CreateIcon
DrawIconEx
GetScrollRange
GetCursorPos
DrawIcon
GetDlgItem
GetScrollInfo
HideCaret
DeferWindowPos
ShowScrollBar
GetMenuItemCount
CharLowerA
GetClientRect
IsWindowEnabled
DefFrameProcA
GetLastActivePopup
GetCursor
CheckMenuItem
CharLowerBuffA
EnableScrollBar
DrawEdge
GetMenuStringA
ShowWindow
EndDeferWindowPos
RegisterClassA
DefMDIChildProcA
SetWindowPos
GetSysColorBrush
SetWindowLongA
GetSubMenu
GetForegroundWindow
EndPaint
GetMessagePos
SetWindowTextA
DrawMenuBar
GetMenuState
CharToOemA
EnableMenuItem
BeginDeferWindowPos
GetActiveWindow
IsMenu

msvcrt

rand
time
calloc
wcsncmp
sprintf
memmove
wcstol
memcpy
_acmdln
atol
srand
sqrt
wcscspn
memset
exit
wcschr
clock
tolower
swprintf
malloc
mbstowcs

kernel32

GetLocalTime
GetStringTypeW
DeleteCriticalSection
SetErrorMode
SetThreadLocale
lstrcpyA
FormatMessageA
CompareStringA
GetModuleHandleA
ReadFile
CloseHandle
GetProcAddress
SetEndOfFile
GetLocaleInfoA
MoveFileExA
VirtualFree
GetModuleFileNameA
SetHandleCount
GlobalAddAtomA
HeapDestroy
DeleteFileA
Sleep
GetCurrentThreadId
SetLastError
lstrcmpA
GetCurrentProcessId
VirtualAllocEx
GetVersionExA
CreateFileA
GetCurrentThread
ExitProcess
GetOEMCP
VirtualAlloc
ExitThread
FreeLibrary
LoadLibraryExA
GetCurrentProcess
LocalAlloc
GetFullPathNameA
lstrcmpiA
HeapAlloc
GetTickCount
HeapFree

Sections

.data
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 1024B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49ddecc3f2b53f13b55f29365d10c2dd

Headers

File Characteristics

Imports

gdi32

user32

msvcrt

kernel32

Sections

.data Size: 38KB - Virtual size: 38KB

.tls Size: 120KB - Virtual size: 120KB

INIT Size: 5KB - Virtual size: 5KB

.init Size: 1024B - Virtual size: 76KB

BSS Size: 1KB - Virtual size: 1KB

.data
Size: 38KB - Virtual size: 38KB

.tls
Size: 120KB - Virtual size: 120KB

INIT
Size: 5KB - Virtual size: 5KB

.init
Size: 1024B - Virtual size: 76KB

BSS
Size: 1KB - Virtual size: 1KB