cb7975afef52b1c945ede82c329f63ea

Sharing

Copy URL Twitter E-mail

General

Target

cb7975afef52b1c945ede82c329f63ea
Size

392KB
MD5

cb7975afef52b1c945ede82c329f63ea
SHA1

f05ea6fbaa093671abc44f5f2034e6c1dc0a985d
SHA256

04603b5b50c4e043bc0020c0725686a10f5ab2c355436b2441e8395e415d6f74
SHA512

0346e9484b6bf1ce880e37ff0212cfca24100c63b43733a8b13f2cd80595ed7749dfe5b5bc765de55fd88e5b12196c7afdc91d776cdee6ab39072404afe464ad
SSDEEP

3072:Z+vAwZY4fGUA4npdan8SMgHVHXnt2s1L/RsCjplIm5ONN8OzOcGxy90CFF:cvCUA4pgn8StHVH3Js0l55ebGx8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb7975afef52b1c945ede82c329f63ea

Files

cb7975afef52b1c945ede82c329f63ea
.exe windows:4 windows x86 arch:x86

f26a68a1ac26e7baf27fd28127696c72

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleNumberOfCommandsA
UnregisterWait
WriteFile
CreateWaitableTimerA
GetLongPathNameA
GetFullPathNameA
SetTapeParameters
GetTimeZoneInformation
GetConsoleCharType
SetTimeZoneInformation
OpenThread
SetEnvironmentVariableA
HeapSize
MapUserPhysicalPages
GetProcessShutdownParameters
FindResourceA
ReadConsoleOutputCharacterA
GetVersionExA
SetPriorityClass
GetModuleFileNameA
GetVersion
UpdateResourceA
DeleteTimerQueueEx
GetDiskFreeSpaceA
FindResourceExW
PeekConsoleInputA
GetTempFileNameA
SetProcessWorkingSetSize
GetCalendarInfoA
GetDiskFreeSpaceExA
GetConsoleWindow
SetCurrentDirectoryA
GetCurrentProcessId
WriteConsoleOutputCharacterA
BeginUpdateResourceA
GetCurrentThreadId
GetConsoleCommandHistoryLengthA
GetDriveTypeA
GetCPInfo
GetBinaryTypeA
SetFilePointerEx
GlobalUnWire
GetFileAttributesA
GetPrivateProfileIntA
GetConsoleInputExeNameA
GetLogicalDriveStringsA
GetWindowsDirectoryA
GetProcessHandleCount
GetCurrentDirectoryA
GetFileTime
GetDiskFreeSpaceExA
SetInformationJobObject
ClearCommError
GetVolumePathNameA
GetTickCount
Toolhelp32ReadProcessMemory
GetVersionExA
SetThreadPriorityBoost
SetDllDirectoryA
GetMailslotInfo
GetConsoleMode
WriteConsoleInputA
EnumTimeFormatsA
GetOverlappedResult
WritePrivateProfileStructA
IsValidLocale
RequestDeviceWakeup
HeapQueryInformation
GlobalUnfix
GlobalSize
GetConsoleTitleA
SetFileTime
GetCurrentDirectoryA
GetProcessTimes
WaitForSingleObjectEx
UnlockFile
GetEnvironmentVariableA
SetFileAttributesA
GlobalFlags
OpenEventA
GetFileSize
FindNextVolumeA
IsBadStringPtrA
GetCommProperties
SizeofResource
SearchPathA
ReadConsoleInputA
VirtualAlloc
VirtualAllocEx
ReadConsoleInputA
VerifyVersionInfoA
WaitCommEvent
BeginUpdateResourceA
QueryDosDeviceA
SetThreadIdealProcessor
GetDllDirectoryA
PulseEvent
GetTickCount
SetThreadIdealProcessor
GetComputerNameA
PeekConsoleInputA
SetFilePointer
UpdateResourceA
PeekConsoleInputA
GetEnvironmentVariableA
SetConsoleCtrlHandler
GetConsoleAliasExesLengthA
WaitCommEvent
GetModuleFileNameA
ReadConsoleInputA
GetFileAttributesExA
RemoveDirectoryA
GetDllDirectoryA
GetCommandLineA
IsBadReadPtr
FlushFileBuffers
GetConsoleWindow
GetCPInfo
GlobalAddAtomA
RegisterWaitForInputIdle
SetCommConfig
LocalLock
SetThreadIdealProcessor
HeapCreate
GetConsoleHardwareState
FindNextFileA
OpenProcess
GetCurrentDirectoryA
QueryDosDeviceA
ReadConsoleA
GetTickCount
VirtualQueryEx
OpenWaitableTimerA
GetVolumeInformationA
DeleteTimerQueue
WriteProcessMemory
GetProcessId
GetCommTimeouts
ReleaseSemaphore
GetCurrentThreadId
CommConfigDialogA
LocalSize
GetThreadPriorityBoost
SuspendThread
ReadConsoleA
SetHandleContext
IsWow64Process
MoveFileA
GetThreadContext
SetMessageWaitingIndicator
GetProcessPriorityBoost
AddAtomA
GetSystemInfo
SetFilePointer
QueryInformationJobObject
SearchPathA
ReadConsoleOutputAttribute
GetFileAttributesExA
GetProfileSectionA
IsValidCodePage
GetCommMask
GetConsoleWindow
GetProcessPriorityBoost
IsBadReadPtr
GetThreadPriority
GetThreadTimes
FindFirstChangeNotificationA
IsDebuggerPresent
WriteConsoleOutputCharacterW
IsBadStringPtrA
HeapSize
GetCurrentThread

user32

DefWindowProcA
MessageBoxIndirectA
UnregisterClassA
DrawCaptionTempA
IsIconic
SetWindowRgn
GetWindowRect
ModifyMenuA
GetWindowTextA
MenuWindowProcA
GetShellWindow
SetWindowsHookExA
TabbedTextOutA
UnlockWindowStation
GetMenuDefaultItem
GetShellWindow
NotifyWinEvent
GetWindowTextA
TranslateAcceleratorA
GetDlgItemTextA
LoadCursorA
GetActiveWindow
GetReasonTitleFromReasonCode
SetWindowStationUser
GetInternalWindowPos
UnregisterDeviceNotification
DrawEdge
RegisterClassA
LoadBitmapA
ShowCursor
PeekMessageA
GetKeyboardType
MessageBoxTimeoutA
GetWindowThreadProcessId
IsCharAlphaNumericA
GetSubMenu
MessageBoxIndirectA
FrameRect
GetScrollPos
GetWindowWord
GetWindowTextA
GetMenu
EnumDisplaySettingsExA
GetDCEx
GetClassInfoExW
IntersectRect
CreateIcon
ExcludeUpdateRgn
GetMenuContextHelpId
IsDlgButtonChecked
SetTaskmanWindow
GetClassLongA
GetWindowThreadProcessId
GetDlgItemTextA
GetKeyboardState
DlgDirListComboBoxA
MenuItemFromPoint
GetMessageTime
AlignRects
LoadBitmapA
EditWndProc
PostThreadMessageA
GetClassLongA
GetMessageExtraInfo
RegisterClipboardFormatA
GetWindowModuleFileNameA
RecordShutdownReason
GetSubMenu
ToUnicodeEx
EndMenu
ToUnicodeEx
CheckRadioButton
IsDialogMessageA
DlgDirSelectComboBoxExA
LoadCursorFromFileA
CreateMDIWindowA
GetThreadDesktop
SetClipboardData
GetMenu
RegisterServicesProcess
CreateIconFromResourceEx
SetClassWord
UpdatePerUserSystemParameters
ActivateKeyboardLayout
GetClassLongA

ws2_32

closesocket

Exports

Exports

IsBsxwyrjcqo
GetRalgnvqx
EndBhbxujcedt
Kemyqhfi
BeginPmjqqnujgr
AddDtlsbwfae

Sections

.itext
Size: - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 672KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f26a68a1ac26e7baf27fd28127696c72

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 784B

.text Size: 56KB - Virtual size: 672KB

.idata Size: 248KB - Virtual size: 245KB

.rsrc Size: 84KB - Virtual size: 81KB

.itext
Size: - Virtual size: 784B

.text
Size: 56KB - Virtual size: 672KB

.idata
Size: 248KB - Virtual size: 245KB

.rsrc
Size: 84KB - Virtual size: 81KB