51031eb2957eac19640529de0c551b6f[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

51031eb2957eac19640529de0c551b6f.bin
Size

853KB
MD5

51031eb2957eac19640529de0c551b6f
SHA1

141b1a09330a11a7ff8da00eb02fbe1670f0fbb0
SHA256

1547745358f542a3620a00dd50235f6cf7665687064adf1d6a0a112b45081644
SHA512

c268709bbd6be466dff2e0c4dc8824337cbfd25818a02afa45328d50cf548c8367cdb18dde527431334de3bc1e80cf76e9fb83b7acd6620110b87cb08094a854
SSDEEP

12288:W9j+65uTSP/FqLm/jkqyq/7lOOTfnqTRUz/W64ZUVPhfC:r8uTojk+70OTfnqyz/62I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51031eb2957eac19640529de0c551b6f.bin

Files

51031eb2957eac19640529de0c551b6f.bin
.exe windows:4 windows x86 arch:x86

367929fdc3d2ef4c96944adbe3cb9327

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
TerminateProcess
HeapSize
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
SetStdHandle
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetErrorMode
GetOEMCP
GetCPInfo
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
WritePrivateProfileStringA
VirtualProtect
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
FreeResource
GlobalAddAtomA
SetLastError
GlobalFree
MulDiv
GlobalUnlock
lstrcpynA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcatA
lstrcpyA
IsBadReadPtr
FormatMessageA
LocalFree
GetModuleFileNameA
RaiseException
GetTickCount
GetCurrentThread
GetModuleHandleA
GetProcAddress
LoadLibraryA
FreeLibrary
VirtualFree
VirtualAlloc
GetSystemInfo
GetCurrentThreadId
GetCurrentProcess
CloseHandle
InterlockedDecrement
InterlockedIncrement
lstrlenA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FreeEnvironmentStringsA

user32

DestroyMenu
EndPaint
BeginPaint
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
GetWindowPlacement
CopyRect
UnhookWindowsHookEx
SetWindowPos
SetFocus
ShowWindow
SetDlgItemTextA
SetActiveWindow
CreateDialogIndirectParamA
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
GetActiveWindow
ValidateRect
GetLastActivePopup
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PostQuitMessage
SetWindowTextA
GetDesktopWindow
GetDlgCtrlID
GetWindowLongA
GetClassNameA
GetWindowTextA
IsWindowEnabled
IsDialogMessageA
GetWindow
GetCursorPos
SetWindowLongA
SetCursor
GetWindowRect
PtInRect
GetKeyState
WinHelpA
GetParent
GetFocus
PostMessageA
SystemParametersInfoA
GetSysColor
GetSysColorBrush
LoadCursorA
IsWindow
DestroyWindow
SendDlgItemMessageA
ReleaseDC
GetDC
UnregisterClassA
DispatchMessageA
RegisterWindowMessageA
wsprintfA
PeekMessageA
MessageBoxA
GetSystemMetrics
EnableWindow
LoadIconA
IsWindowVisible
GetClientRect
IsIconic
SendMessageA
DrawIcon

gdi32

DeleteObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
RectVisible
PtVisible
SetMapMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
SelectObject
TextOutA
GetStockObject
GetObjectA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumValueA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegCloseKey

comctl32

ord17

shlwapi

PathFindFileNameA
PathFindExtensionA

ole32

CoInitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoFreeUnusedLibraries
CoUninitialize
CLSIDFromString

oleaut32

VariantChangeType
VariantClear
VariantInit
SysFreeString

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 620KB - Virtual size: 620KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

367929fdc3d2ef4c96944adbe3cb9327

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 620KB - Virtual size: 620KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 620KB - Virtual size: 620KB