cb5c8cca927a9f11629a1271681a925f

Sharing

Copy URL Twitter E-mail

General

Target

cb5c8cca927a9f11629a1271681a925f
Size

396KB
MD5

cb5c8cca927a9f11629a1271681a925f
SHA1

073125dac6d155f5f810af7d325baa99dc6ef527
SHA256

1b49032503cc6806ed4f4e754921936f55f27b9062b16d6aac41959c5faeaad8
SHA512

49e7f4a765bedbecb7ecc831d84111458abd95a09de8330a308fe1022404a110a287587871117fcd3ab61d9a4ffaec1808d71256395092dfe16db15c84f09f0d
SSDEEP

6144:zSvxkox5/fp61UeBK9vSB9RJ7jCpjIli2Y:GxkobIDDdW6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb5c8cca927a9f11629a1271681a925f

Files

cb5c8cca927a9f11629a1271681a925f
.exe windows:4 windows x86 arch:x86

9dbfbdf9c74e59daf334477eea2c0904

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenFile
EndUpdateResourceA
LocalFileTimeToFileTime
SetSystemTime
GlobalSize
SetVolumeMountPointA
SetHandleCount
OpenJobObjectA
CloseHandle
CreateDirectoryExA
GetLogicalDriveStringsA
GetFileInformationByHandle
GetThreadSelectorEntry
GetCommTimeouts
ReadConsoleOutputAttribute
DeleteTimerQueue
GetNativeSystemInfo
SetLocaleInfoA
GetBinaryTypeA
SetLocalPrimaryComputerNameA
LocalAlloc
GetConsoleScreenBufferInfo
RemoveDirectoryA
GetVolumeNameForVolumeMountPointA
GetFileAttributesExA
GetCommMask
lstrlenA
GetEnvironmentVariableA
FindFirstVolumeA
ReadConsoleOutputCharacterA
GetCommandLineA
SetThreadExecutionState
VerifyVersionInfoA
SetFirmwareEnvironmentVariableA
WinExec
GetTempPathA
ReleaseMutex
GetLocaleInfoA
GetModuleFileNameA
SleepEx
GetVersionExA
FindClose
GetDevicePowerState
SetFileShortNameA
GetCurrentDirectoryA
VirtualAlloc
GetCurrentConsoleFont
BuildCommDCBA
GetStdHandle
GetSystemWindowsDirectoryA
IsBadReadPtr
GetDriveTypeA
TransactNamedPipe
FindNextFileA
CopyFileA
CreateThread
ExpungeConsoleCommandHistoryA
FindNextVolumeMountPointA
WriteFile
ReadFileEx
SetFilePointer
GetTapeParameters
CreateNamedPipeA
GetDefaultCommConfigA
GetVolumeInformationA
GetProcessIoCounters
PeekNamedPipe
ProcessIdToSessionId
GetDefaultCommConfigA
FlushFileBuffers
GetFileSize
UnlockFile
EnumResourceNamesA
Process32First
GetFileAttributesExA
AddConsoleAliasA
SizeofResource
GetSystemDirectoryA
GetConsoleInputWaitHandle
GetThreadTimes
SearchPathA
GetConsoleAliasExesLengthA
OpenMutexA
VirtualAlloc
GetProcessShutdownParameters
GetConsoleAliasesA
GetConsoleTitleA
GetConsoleCursorMode
GetDllDirectoryA
OpenThread
GetTickCount
IsProcessorFeaturePresent
SetFilePointer
GetLogicalDriveStringsA
WritePrivateProfileStructA
ClearCommError
ReleaseSemaphore
OpenProcess
AddAtomA
SetFirmwareEnvironmentVariableA
GetModuleHandleA
GetSystemDirectoryA
IsBadStringPtrA
FlushConsoleInputBuffer
GetDevicePowerState
GetTimeFormatA
GetWindowsDirectoryA
SetCurrentDirectoryA
SetConsoleTitleA
GetCurrentProcess
WriteFileEx
SetConsoleCursor
IsBadWritePtr
GetCurrentDirectoryA
GetTapeParameters
ConnectNamedPipe
GetExitCodeProcess
SetConsoleCP
GetConsoleAliasesLengthW
LoadModule
OpenEventA
EnumSystemCodePagesA
GetConsoleAliasExesA
FindVolumeClose
GetConsoleCursorInfo
IsBadReadPtr
GetModuleFileNameA
GetVersionExA
OpenThread
SetConsoleCursorInfo
GetProcessVersion
GetOverlappedResult
Toolhelp32ReadProcessMemory
PeekNamedPipe
SetUserGeoID
GetPrivateProfileStringA
FindVolumeMountPointClose
LZCopy
OutputDebugStringA
SetConsoleCursorPosition
SetProcessWorkingSetSize
GetVolumePathNameA
CreateFileMappingA
GlobalFix
GetVersionExA
GetConsoleTitleA
SetSystemPowerState
SetFilePointerEx
DeleteTimerQueueTimer
GetOEMCP
GetEnvironmentStringsA
HeapAlloc
IsValidCodePage
GetTickCount
OutputDebugStringA
ProcessIdToSessionId
ReleaseSemaphore
GetConsoleFontSize
HeapDestroy
GetVolumePathNamesForVolumeNameA
ShowConsoleCursor
GlobalFlags
IsProcessorFeaturePresent
SystemTimeToFileTime
PulseEvent
OpenMutexA
OpenWaitableTimerA
ExpandEnvironmentStringsA
GetSystemDefaultLCID
SetEvent
ReleaseSemaphore
GetEnvironmentVariableA
SetThreadPriorityBoost
DeleteFileA
TransmitCommChar
UnmapViewOfFile
GetProcessHeaps
SetFileAttributesA
ExpungeConsoleCommandHistoryA
LZStart
GetNumberOfConsoleMouseButtons
GlobalHandle

user32

ScreenToClient
SendIMEMessageExA
RegisterDeviceNotificationA
MonitorFromWindow
GetMonitorInfoA
GrayStringA
RegisterServicesProcess
ShowCaret
DrawEdge
SetForegroundWindow
RealGetWindowClassA
SendIMEMessageExA
CharToOemBuffA
MessageBeep
GetMenuBarInfo
GetClassInfoExA
CreateIconIndirect
GetWindowTextA
MessageBoxTimeoutA
GetNextDlgGroupItem
GetScrollBarInfo
AlignRects
GetLayeredWindowAttributes
RegisterLogonProcess
ChangeDisplaySettingsA
RegisterClassExA
GetDlgItemTextA
BroadcastSystemMessageA
BroadcastSystemMessageExA
LockWorkStation
EnumDesktopsA
EnterReaderModeHelper
ToAscii
CharPrevExA
MapVirtualKeyA
GetTaskmanWindow
TranslateAcceleratorA
GetComboBoxInfo
DefMDIChildProcA
DialogBoxIndirectParamA
ReasonCodeNeedsBugID
TabbedTextOutA
GetQueueStatus
GetClipboardData
DrawStateA
SetShellWindowEx
IsMenu
ReuseDDElParam
GetClassLongA
SetCapture
UnhookWindowsHook
TranslateMDISysAccel
ReleaseDC
InsertMenuItemA
AppendMenuA
SendMessageCallbackA
MessageBeep
DlgDirListComboBoxA
DlgDirListComboBoxW
PrivateExtractIconExA
OemKeyScan
ToAsciiEx
GetMenuItemID
LoadKeyboardLayoutEx
SetCaretPos
EnumClipboardFormats
SetDlgItemInt
SendMessageCallbackA
EnumDisplayMonitors
SetDeskWallpaper
GetClassWord
GetUserObjectInformationA
UnregisterDeviceNotification
GetTitleBarInfo
LoadRemoteFonts
GetMenuStringA
SetActiveWindow
SendIMEMessageExA
SetCaretPos
ScrollChildren
AttachThreadInput
EnumDisplaySettingsExA
IsWindowEnabled
MessageBeep

ws2_32

closesocket

Exports

Exports

WriteHfqvcpoi
Httjmsgljr
Htnwkjkbbj
GetVawkjjcmuwc
AddYvqpuvqabyn
OpenDcjaaet

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 670KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9dbfbdf9c74e59daf334477eea2c0904

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 52KB - Virtual size: 670KB

.idata Size: 268KB - Virtual size: 264KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 670KB

.idata
Size: 268KB - Virtual size: 264KB

.rsrc
Size: 72KB - Virtual size: 71KB