cb4d26959539a7bff795e2aa283f357c

Sharing

Copy URL

Twitter E-mail

General

Target

cb4d26959539a7bff795e2aa283f357c
Size

367KB
MD5

cb4d26959539a7bff795e2aa283f357c
SHA1

5bf3b65cee15bdd80b9ac31856227933a35d9252
SHA256

62d7f2612edf23e5ab34995d10111de34ac68caf918e157d3c0a4bed06467d98
SHA512

a6d817096c68a835e607472b9a00bdcf914829548fd6b6079a00959e06ff518add0e7f8925a2bab87371daf1d457e58ab40aa0e0b274c384e0dee567c28f0c11
SSDEEP

6144:D3z8vZLFzGFWwRNyLcX5RmjUXyjZkxEA2HAi8mX1bXrNcUEtDRypExP:D3z8vZLFNwRNyLiojUXIkG3H/8mX1bXO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb4d26959539a7bff795e2aa283f357c

Files

cb4d26959539a7bff795e2aa283f357c
.exe windows:4 windows x86 arch:x86

bd0141d866ee24d107104bf9c43ea356

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateDialogParamA
RegisterClassA
CreateIconIndirect
SetKeyboardState
LoadMenuW
RegisterWindowMessageA
RegisterClassExA
CloseWindow
TrackPopupMenu
DdePostAdvise
MonitorFromRect
GetKeyboardState
ModifyMenuW
WinHelpW
CreateCaret
CharNextA
GetWindowInfo
GrayStringW
MoveWindow
GetMenuItemInfoW
GetTitleBarInfo
ReuseDDElParam
wvsprintfA
CreateWindowStationA
MessageBoxIndirectA
GetKeyboardLayoutNameA

comdlg32

PrintDlgW
LoadAlterBitmap
PageSetupDlgW

kernel32

WriteFile
SetFilePointer
ReadFile
GetStringTypeW
GetDateFormatA
GetStringTypeA
VirtualQuery
VirtualFree
FreeEnvironmentStringsA
HeapFree
GetTickCount
CreateWaitableTimerW
CloseHandle
GetEnvironmentStringsW
CreateMutexA
InterlockedExchange
SetEnvironmentVariableA
GetLocaleInfoW
HeapAlloc
FreeEnvironmentStringsW
GetCurrentDirectoryA
RtlUnwind
GetModuleHandleA
OpenMutexA
EnumSystemCodePagesA
GetLastError
GetExitCodeThread
QueryPerformanceCounter
MultiByteToWideChar
GetFileType
LoadLibraryA
SetHandleCount
IsValidLocale
UnhandledExceptionFilter
GetStartupInfoA
GlobalGetAtomNameA
LocalLock
GetModuleFileNameW
GetLocaleInfoA
GetCurrentThreadId
HeapDestroy
HeapCreate
GetSystemInfo
GetUserDefaultLCID
CreateFileMappingA
GlobalFix
GetCommandLineW
GetCurrentProcess
HeapReAlloc
VirtualAlloc
FlushFileBuffers
FindNextChangeNotification
LCMapStringA
TerminateProcess
LCMapStringW
TlsFree
WaitForMultipleObjects
GetEnvironmentStrings
GetStartupInfoW
CompareStringW
SetLastError
IsValidCodePage
VirtualProtect
IsBadWritePtr
TlsAlloc
GetSystemTimeAsFileTime
GetVersionExA
TlsSetValue
EnterCriticalSection
EnumSystemLocalesA
GetTimeZoneInformation
ExitProcess
GetCurrentThread
GetCommandLineA
DeleteCriticalSection
InitializeCriticalSection
HeapSize
GetACP
CompareStringA
RtlZeroMemory
TlsGetValue
GetProcAddress
LeaveCriticalSection
EnumTimeFormatsW
GetCurrentProcessId
GetTimeFormatA
GetModuleFileNameA
GetStdHandle
WideCharToMultiByte
SetStdHandle
GetCPInfo
GetOEMCP

wininet

SetUrlCacheConfigInfoA
SetUrlCacheEntryInfoW
InternetSetDialState
SetUrlCacheGroupAttributeW

comctl32

InitCommonControlsEx

Sections

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd0141d866ee24d107104bf9c43ea356

Headers

File Characteristics

Imports

user32

comdlg32

kernel32

wininet

comctl32

Sections

.text Size: 176KB - Virtual size: 176KB

.rdata Size: 8KB - Virtual size: 26KB

.data Size: 174KB - Virtual size: 173KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 176KB - Virtual size: 176KB

.rdata
Size: 8KB - Virtual size: 26KB

.data
Size: 174KB - Virtual size: 173KB

.rsrc
Size: 7KB - Virtual size: 6KB