bfa5bc277c3b04ff9fedcd1de278726f

Sharing

Copy URL

Twitter E-mail

General

Target

bfa5bc277c3b04ff9fedcd1de278726f
Size

74KB
MD5

bfa5bc277c3b04ff9fedcd1de278726f
SHA1

ec6a4ffaab303662cf0f9ecbf13110f15e1315d6
SHA256

b139310298fdb62f11b395bdb387d50086baf29f3d861e05186367ea68c02902
SHA512

d0d71eea14c61aa6f7f66b09c66d7b97ffaf3ea953dc63eaecb98fe28d55059440d59ae3d3eddb01b4ddbda1369dbbab0feda5eb95169dde547e86ff126121fc
SSDEEP

1536:B9e5iO4rfYxUggE1pVpOwWm6+QZVvrlnzsqMXNejAZsj1u+3:B9eZd1F/2KqmIAZsBuE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfa5bc277c3b04ff9fedcd1de278726f

Files

bfa5bc277c3b04ff9fedcd1de278726f
.exe windows:6 windows x86 arch:x86

eb235f118a89156e1dcb14c6474e4e75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetLastError
LoadLibraryA
ExitProcess
GetModuleHandleA
GetStartupInfoA
IsDebuggerPresent
OutputDebugStringA
RtlUnwind
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
HeapValidate
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsGetValue
TlsFree
VirtualAlloc
VirtualQuery
QueryPerformanceFrequency
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
GetCurrentProcess
DuplicateHandle
GetCommandLineA
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
CloseHandle
GetConsoleOutputCP
WriteFile
WriteConsoleW
WideCharToMultiByte
SetConsoleCtrlHandler
IsDBCSLeadByteEx
MultiByteToWideChar
CreateEventW
SetEvent
SetStdHandle
GetConsoleMode
SetFilePointerEx
WaitForSingleObject
Sleep
DeleteFileA

user32

GetWindowRect
GetSystemMetrics
MoveWindow
SystemParametersInfoA
SetWindowPos
CreateWindowExA
SendMessageA
GetWindowLongA
SetWindowLongA
GetDC
ReleaseDC
LoadCursorA
RegisterClassExA
GetPropA
SetPropA
ShowWindow
GetParent
RemovePropA
GetClientRect
MapWindowPoints
CallWindowProcA
DefWindowProcA
DestroyWindow
GetClassLongA
GetSysColor
MapDialogRect
GetClassInfoExA
UnregisterClassA
GetActiveWindow
MessageBoxA
LoadIconA
RedrawWindow
GetCursorPos
ScreenToClient
ChildWindowFromPoint
SetCursor
PostQuitMessage
FillRect
GetDpiForSystem
GetSystemMetricsForDpi
GetMenu
IsWindow
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetMessageA

gdi32

GetStockObject
SelectObject
GetTextExtentPoint32A
SetTextColor
SetBkMode
DeleteObject
CreateSolidBrush
SetBkColor
GetDeviceCaps
CreateFontA
TextOutA

comctl32

InitCommonControlsEx

ole32

OleInitialize
CoInitialize
OleUninitialize
CoUninitialize

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb235f118a89156e1dcb14c6474e4e75

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

ole32

Sections

.text Size: 41KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 32KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 41KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 32KB

.reloc
Size: 3KB - Virtual size: 3KB