bfe242dcedee4b6f27c4e17c88f6ba56

General

Target

bfe242dcedee4b6f27c4e17c88f6ba56
Size

9KB
MD5

bfe242dcedee4b6f27c4e17c88f6ba56
SHA1

5dc7bbe907e658d1fc0a789079903da4bd6eb4df
SHA256

02fb94de0cfda049f055167bd963b018e025f8707206ec2a6a6a8dc9a4f4bc3e
SHA512

f22bc46108ab32da875824063d7f70cac02cf64e681e503ec512c9a1e0422a79bd9a4218fe513c9415b5eccbb376041ceb047d84c50340518da79012547d257c
SSDEEP

96:1f6OkzTLDFcj9WwFLVAp26URNL7qHL9jMAiAgyRPVue9BvdFMj1:0fhcj9LFLKPipqLRMlsN99Bkj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfe242dcedee4b6f27c4e17c88f6ba56

Files

bfe242dcedee4b6f27c4e17c88f6ba56
.exe windows:4 windows x86 arch:x86

dbc994ef8233805540b47e02a03bb870

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msrt32

InstallHook
UninstallHook

user32

TranslateMessage
SetTimer
SendMessageA
RegisterClassExA
PostQuitMessage
OpenClipboard
KillTimer
GetWindowTextA
GetMessageA
GetForegroundWindow
GetClipboardData
GetClassNameA
FindWindowExA
FindWindowA
DispatchMessageA
DefWindowProcA
CreateWindowExA
CloseClipboard
wsprintfA

kernel32

GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
WinExec
SetFilePointer
RtlZeroMemory
ReadFile
Process32Next
CloseHandle
CompareStringA
CreateFileA
CreateToolhelp32Snapshot
ExitProcess
GetCommandLineA
GetFileSize
GetModuleHandleA
GetProcAddress
GetSystemTime
GetWindowsDirectoryA
GlobalAlloc
Process32First

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
GetUserNameA
RegOpenKeyA

wsock32

inet_addr
inet_ntoa
htons
send
socket
gethostbyname
connect
closesocket
recv
WSAStartup

wininet

FindNextUrlCacheEntryA
FindFirstUrlCacheEntryA
DeleteUrlCacheEntryA
InternetGetConnectedState

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dbc994ef8233805540b47e02a03bb870

Headers

File Characteristics

Imports

msrt32

user32

kernel32

advapi32

wsock32

wininet

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 81KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 81KB