bfb24709867f480f33e36c55e0a01e6f

Sharing

Copy URL

Twitter E-mail

General

Target

bfb24709867f480f33e36c55e0a01e6f
Size

507KB
MD5

bfb24709867f480f33e36c55e0a01e6f
SHA1

660f206e7d4b2d6163ba138fe9987f2d0ba13dae
SHA256

20dfa16017165bf9997ce340034b1a0d90a7741b6e45c3302ceb17ceb20c1249
SHA512

1dadfc83b792881ce17d4b8e5bef701dde0bc5173de307f5ecd10abcc600e937fab5b8a1d335e9f4ecd0d6e2b68ca4b50f0e951595f3aa69fb9fa98c4f0677cb
SSDEEP

12288:DlF+r+AuOqMr2SSyuPaGbhMZ2uE4R57XVHGr9BgYPh:JA4n/aG9Mf57XVc/Ph

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfb24709867f480f33e36c55e0a01e6f

Files

bfb24709867f480f33e36c55e0a01e6f
.exe windows:4 windows x86 arch:x86

530ac6d9f421c40c8accc90decbe45b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
LCMapStringW
DeleteCriticalSection
LoadLibraryA
CloseHandle
GetStartupInfoA
GetLastError
GetLocaleInfoA
SetConsoleCtrlHandler
GetCurrentThreadId
HeapFree
GetConsoleOutputCP
FreeLibrary
GetCPInfo
GetModuleHandleA
LeaveCriticalSection
QueryPerformanceCounter
GetLocaleInfoW
UnhandledExceptionFilter
SetLastError
TlsSetValue
IsDebuggerPresent
GetEnvironmentStrings
WideCharToMultiByte
TlsGetValue
SetFilePointer
EnumCalendarInfoA
SetUnhandledExceptionFilter
VirtualAlloc
CompareStringW
HeapDestroy
GetDateFormatA
GetSystemDefaultLangID
GetConsoleCP
SetEnvironmentVariableA
VirtualQuery
EnterCriticalSection
LCMapStringA
SetStdHandle
ExitProcess
VirtualFree
InterlockedIncrement
GetACP
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetStringTypeA
GetCurrentProcessId
LocalReAlloc
MultiByteToWideChar
GetTimeFormatA
FreeEnvironmentStringsW
GetCurrentProcess
TerminateProcess
GetTimeZoneInformation
TlsFree
ReadConsoleInputW
GetOEMCP
InterlockedDecrement
TlsAlloc
GetStdHandle
GetModuleFileNameA
GetCurrentThread
HeapAlloc
GetSystemTimeAsFileTime
WriteConsoleA
GetCommandLineA
CompareStringA
WriteConsoleW
IsValidLocale
RtlUnwind
GetProcAddress
GetVersionExA
InterlockedExchange
GetStringTypeW
GetUserDefaultLCID
SetHandleCount
FlushFileBuffers
OpenWaitableTimerW
FindFirstFileExW
HeapReAlloc
GetConsoleMode
InitializeCriticalSection
CreateMutexA
GetFileType
CreateFileA
HeapCreate
OpenMutexA
GetTickCount
GetProcessHeap
EnumSystemLocalesA
HeapSize
Sleep
WriteFile
LocalCompact
ReadFile

comctl32

InitCommonControlsEx

user32

RegisterClassExA
AnyPopup
GetKeyboardLayoutList
AdjustWindowRect
WindowFromDC
OpenDesktopW
DrawFrameControl
IsCharAlphaA
SetParent
IsCharLowerW
CreateDialogIndirectParamW
LoadStringA
RegisterWindowMessageA
EnumDisplaySettingsW
DdeFreeDataHandle
RegisterClassA
RegisterDeviceNotificationW
DdeGetData
TabbedTextOutA
ScrollDC
GetMenuState
GetWindowContextHelpId
DlgDirListComboBoxA
SetWindowPlacement
ClientToScreen
GetWindowPlacement

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

530ac6d9f421c40c8accc90decbe45b1

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 9KB - Virtual size: 35KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 9KB - Virtual size: 35KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 10KB - Virtual size: 9KB