cb13a918d197683496bd0bb7641f6149

Sharing

Copy URL Twitter E-mail

General

Target

cb13a918d197683496bd0bb7641f6149
Size

520KB
MD5

cb13a918d197683496bd0bb7641f6149
SHA1

697ea291a5303197cc2c9e32be94647899cd196d
SHA256

10b65754130787e25ed8247dda6ffd470d2fafad500f9d53fc67aef2f9d53c6e
SHA512

b5733620f074407831a7901ab4dfd94537b45d2ecc7772c58d9624acc8defc8f6889d1a587aff62804da2db523b8dc2aaae34bf35b60947aa5271ea420eb0320
SSDEEP

12288:DJlZsHGHz0NFun07v6jLKAuJxcdZ/Wm2761W:VlZDHWF80vDJxcLQk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb13a918d197683496bd0bb7641f6149

Files

cb13a918d197683496bd0bb7641f6149
.exe windows:4 windows x86 arch:x86

299250b11b512a32e8dda74219ce9dc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

LoadAlterBitmap

user32

RegisterClassExA
EnumDisplaySettingsA
EnumDisplayMonitors
ArrangeIconicWindows
DrawIcon
RegisterClassA
DrawCaption
SetWindowLongW

shell32

FindExecutableA
SHFileOperation
SheChangeDirExW

wininet

InternetTimeFromSystemTimeW
FtpPutFileEx
InternetAttemptConnect
FindFirstUrlCacheEntryW
InternetErrorDlg

gdi32

CreatePen
ExtFloodFill
BeginPath
GetLogColorSpaceW
EnumFontFamiliesA
SetTextJustification

comctl32

InitCommonControlsEx

kernel32

ReadFile
EnumSystemLocalesA
Sleep
DeleteCriticalSection
GetStringTypeW
GetEnvironmentStrings
GetEnvironmentStringsW
CompareStringA
ExitProcess
GetCPInfo
TerminateProcess
GetVersionExA
GetStartupInfoA
HeapReAlloc
IsValidLocale
VirtualAlloc
GetLocaleInfoA
CompareStringW
GetFileType
DuplicateHandle
GetProcessHeap
GetCurrentProcess
UnhandledExceptionFilter
ResumeThread
CloseHandle
HeapAlloc
GetEnvironmentVariableW
GetCommandLineA
SetConsoleOutputCP
LoadLibraryExW
InterlockedExchange
GetLongPathNameW
CreateFileA
LCMapStringA
GetDateFormatA
EnterCriticalSection
GetStringTypeExA
SetFilePointer
OpenMutexA
WriteProfileSectionA
IsDebuggerPresent
CreateMutexA
GetCurrentThread
SetHandleCount
GetTickCount
TlsFree
FlushFileBuffers
WriteFile
RtlUnwind
GetProcAddress
GetCurrentThreadId
GetStringTypeExW
TerminateThread
GetStringTypeA
GetConsoleCP
GetModuleHandleA
ReadConsoleOutputCharacterA
SetEnvironmentVariableA
GlobalGetAtomNameW
InitializeCriticalSection
GetWindowsDirectoryA
WriteConsoleW
EnumResourceTypesW
SetStdHandle
GetCompressedFileSizeA
GetDriveTypeW
QueryPerformanceCounter
GetLastError
LoadLibraryA
HeapFree
OutputDebugStringA
GetConsoleMode
WaitCommEvent
WideCharToMultiByte
WaitForMultipleObjects
TlsSetValue
HeapCreate
LeaveCriticalSection
GetProfileStringA
MultiByteToWideChar
InterlockedDecrement
LCMapStringW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetACP
GetLocaleInfoW
FreeLibrary
HeapSize
SetLastError
CompareFileTime
TlsGetValue
HeapDestroy
SetConsoleCtrlHandler
GetTimeFormatA
GetConsoleOutputCP
VirtualQuery
TlsAlloc
GetCurrentProcessId
VirtualFree
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WriteConsoleA
IsValidCodePage
InterlockedIncrement
GetTimeZoneInformation
GetThreadPriorityBoost
GetStdHandle
GetUserDefaultLCID
GetSystemDirectoryW
SetUnhandledExceptionFilter
GetOEMCP
WriteConsoleOutputW

Sections

.text
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

299250b11b512a32e8dda74219ce9dc1

Headers

File Characteristics

Imports

comdlg32

user32

shell32

wininet

gdi32

comctl32

kernel32

Sections

.text Size: 188KB - Virtual size: 188KB

.rdata Size: 10KB - Virtual size: 23KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 188KB - Virtual size: 188KB

.rdata
Size: 10KB - Virtual size: 23KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 4KB - Virtual size: 4KB