c8455df3b8706068372d19538de264c5

Sharing

Copy URL Twitter E-mail

General

Target

c8455df3b8706068372d19538de264c5
Size

384KB
MD5

c8455df3b8706068372d19538de264c5
SHA1

0c7817a2bbc9cf0c9d79a27289277d774483bfbc
SHA256

9fe5021b2a560272b81469cb6783eaafb36a1261576a7462afa5ebbe951c2808
SHA512

e34b4fab8c0051e77695a8e0ba3aa3ffb4ec20630be5d7bfae9e82aa20e8ea8b169dd097e42a505969abdb248e6ed91f63c8c9818e98de3d3028adb4d8107efb
SSDEEP

6144:+XbMkrPdVfgCIsbl4FQnD7rUDzk7/CM0BkhdWauwmjKZpFrtzF6o/:+XY2FhgCpbaF8AD4rCbBqWar6ypZ9Ft

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8455df3b8706068372d19538de264c5

Files

c8455df3b8706068372d19538de264c5
.exe windows:4 windows x86 arch:x86

6220c0fe5cf92a5939e9ee89fac9b223

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetOverlayImage
CreateToolbar
DrawInsert
ImageList_GetIconSize
InitCommonControlsEx
ImageList_Read
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_Add
CreateStatusWindowA
MakeDragList
ImageList_Draw
InitMUILanguage
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_SetIconSize
ImageList_GetImageCount
ImageList_LoadImage
ImageList_BeginDrag
ImageList_GetIcon
_TrackMouseEvent
ImageList_EndDrag
CreateToolbarEx

user32

LoadCursorA
CharUpperBuffA
DrawTextExW
CallMsgFilterW
MessageBoxA
InsertMenuW
SetForegroundWindow
GetForegroundWindow
LoadStringA
MenuItemFromPoint
RegisterClassA
GetQueueStatus
ShowWindow
OemKeyScan
ChangeDisplaySettingsA
DestroyWindow
DdeDisconnectList
ToAscii
EnumThreadWindows
FindWindowExA
GetMessageExtraInfo
RegisterClassExA
CreateWindowExW
DefWindowProcA

shell32

ShellExecuteA
ExtractIconW

gdi32

IntersectClipRect
ExtCreateRegion
EnumFontsA
GetCurrentObject
MoveToEx
SetPaletteEntries
CopyEnhMetaFileW
EnumObjects
GdiGetBatchLimit
RestoreDC
EnumFontFamiliesA
RectInRegion
RemoveFontResourceW
StrokeAndFillPath
GdiSetBatchLimit
GetLayout
CreateDIBPatternBrushPt
CreateDIBSection

advapi32

LogonUserW
RegEnumKeyA
RegSetKeySecurity
RegEnumKeyExW
RegQueryMultipleValuesA
CryptEnumProvidersA
RegOpenKeyA
CryptDestroyHash
GetUserNameW
DuplicateTokenEx
RegReplaceKeyW
CryptSetProvParam
InitiateSystemShutdownW
CreateServiceW
CryptVerifySignatureW

kernel32

GetConsoleOutputCP
VirtualQuery
InitializeCriticalSection
LCMapStringW
GetProfileIntW
EnumDateFormatsA
MultiByteToWideChar
InterlockedDecrement
GetConsoleMode
FindResourceW
VirtualFree
CompareStringA
SetCurrentDirectoryW
CreateMutexA
HeapAlloc
SetStdHandle
IsValidCodePage
InterlockedIncrement
GetVersionExA
MoveFileExW
lstrcmpi
GetCurrentThreadId
GetModuleHandleA
GetLocaleInfoA
GetDateFormatA
RtlUnwind
GetTimeFormatA
TlsFree
GetLastError
LCMapStringA
GetCurrentProcessId
HeapCreate
GetStartupInfoA
LocalHandle
VirtualFreeEx
LeaveCriticalSection
HeapFree
SetEnvironmentVariableA
SetConsoleWindowInfo
CreateDirectoryExW
LockFileEx
FreeLibrary
SetFilePointer
TransmitCommChar
GetCPInfo
GetStringTypeW
HeapReAlloc
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
ReadFile
GetEnvironmentStrings
GetProcessHeap
IsValidLocale
DeleteCriticalSection
GetCommandLineW
GetModuleFileNameA
GetOEMCP
EnterCriticalSection
TlsGetValue
HeapValidate
GetModuleFileNameW
WriteConsoleA
WriteConsoleW
GetCurrentThread
GetTimeZoneInformation
GetStringTypeA
EnumResourceNamesW
EnumSystemLocalesA
GetSystemTimeAsFileTime
InterlockedExchange
HeapDestroy
SetConsoleCtrlHandler
GetCommandLineA
GetStdHandle
WriteFile
GetNamedPipeHandleStateW
SetUnhandledExceptionFilter
GetCurrentProcess
UnhandledExceptionFilter
CloseHandle
Sleep
ExitProcess
CreateFileA
SetHandleCount
OpenMutexA
VirtualAlloc
FreeEnvironmentStringsW
GetACP
GlobalFindAtomW
TlsAlloc
TerminateProcess
WideCharToMultiByte
GetUserDefaultLCID
CompareStringW
HeapSize
GetStartupInfoW
OpenFile
SetLastError
FindFirstFileA
TlsSetValue
IsDebuggerPresent
FreeEnvironmentStringsA
LoadLibraryA
GetFileType
GetProcAddress
GetConsoleCP
FlushFileBuffers
GetLocaleInfoW

wininet

InternetFindNextFileW
InternetGetLastResponseInfoA
GopherOpenFileW
DeleteUrlCacheEntry
GopherOpenFileA
InternetGetCookieW

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6220c0fe5cf92a5939e9ee89fac9b223

Headers

File Characteristics

Imports

comctl32

user32

shell32

gdi32

advapi32

kernel32

wininet

Sections

.text Size: 149KB - Virtual size: 148KB

.rdata Size: 89KB - Virtual size: 112KB

.data Size: 93KB - Virtual size: 92KB

.rsrc Size: 51KB - Virtual size: 51KB

.text
Size: 149KB - Virtual size: 148KB

.rdata
Size: 89KB - Virtual size: 112KB

.data
Size: 93KB - Virtual size: 92KB

.rsrc
Size: 51KB - Virtual size: 51KB