cb87183009a6bffe080ef5c9547c37ab

Sharing

Copy URL Twitter E-mail

General

Target

cb87183009a6bffe080ef5c9547c37ab
Size

555KB
MD5

cb87183009a6bffe080ef5c9547c37ab
SHA1

6c23a324d191bd7c7383dd0b1e7fcee630e68c7a
SHA256

3bd8fc05b7a8fe94362a5dc436f12bd962c1c1dd3935a9b26bd0da8012ec9ce1
SHA512

2173203f23b61a04a5ef25a5f7ddd65fb19d9569b5feff92c61c6034483eea3608ef277d2657db91b19cf2c89250c757e5f905fcc255afa84315268f6bf7385b
SSDEEP

12288:g7zd/vO3aLp9HA1r/Kr1UozcSVZTxwfQd5+BQmM6HS:g7ztvO3aLpBA1r/KpUopVZ9Oo+BTM6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb87183009a6bffe080ef5c9547c37ab

Files

cb87183009a6bffe080ef5c9547c37ab
.exe windows:4 windows x86 arch:x86

adae0255722af89b1865317b953c4bf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

SetWindowsHookExA
IsCharUpperW
RegisterClipboardFormatA
GetWindowContextHelpId
DefWindowProcA
InvalidateRect
SetClassLongA
CreateDesktopW
SetScrollPos
RegisterClassExA
GetMessageTime
UnhookWindowsHook
RegisterClassA
IsClipboardFormatAvailable
EnumDesktopWindows
GetKeyboardState
SetMenuDefaultItem
CharPrevW
MsgWaitForMultipleObjectsEx
CreateIconIndirect

kernel32

lstrcmpiW
RtlUnwind
CompareStringA
GetSystemTimeAsFileTime
SetStdHandle
GetConsoleCP
LeaveCriticalSection
IsDebuggerPresent
UnhandledExceptionFilter
DeleteCriticalSection
LCMapStringA
GetStringTypeA
GetModuleHandleA
FindNextChangeNotification
FlushFileBuffers
GetUserDefaultLCID
GetLocaleInfoW
GetConsoleOutputCP
GetCommandLineA
CloseHandle
ReadConsoleOutputA
HeapReAlloc
GlobalUnlock
HeapFree
WriteConsoleW
GetProcAddress
GetEnvironmentStrings
VirtualFree
IsValidLocale
TlsGetValue
InterlockedExchange
CreateFileA
GetStdHandle
GetProcessHeap
FreeLibrary
GetTimeFormatA
TlsAlloc
SetFilePointer
GetCurrentThreadId
GetStartupInfoA
GetCurrentProcessId
GetStartupInfoW
SetEnvironmentVariableA
SetConsoleCtrlHandler
GetTickCount
GetDateFormatA
GetModuleFileNameA
TlsFree
GetOEMCP
GetCommandLineW
HeapAlloc
WriteFile
OpenMutexA
TlsSetValue
ReadFile
LoadLibraryA
GetStringTypeW
LCMapStringW
CreateFileW
TerminateProcess
Sleep
CreateMutexA
SetHandleCount
WritePrivateProfileStringA
IsValidCodePage
QueryPerformanceCounter
VirtualQuery
MoveFileA
InterlockedDecrement
GetConsoleMode
SetLastError
FreeEnvironmentStringsA
MultiByteToWideChar
InterlockedIncrement
GetFileType
ReleaseMutex
GetTimeZoneInformation
HeapDestroy
EnumSystemLocalesA
GetCurrentProcess
InitializeCriticalSection
GetVersionExA
GetCPInfo
GetEnvironmentStringsW
GetCurrentThread
GetModuleFileNameW
GetLastError
ExitProcess
GetLocaleInfoA
GetACP
LoadLibraryExW
HeapSize
FreeEnvironmentStringsW
WideCharToMultiByte
HeapCreate
VirtualAlloc
SetUnhandledExceptionFilter
EnterCriticalSection
WriteConsoleA
CompareStringW

wininet

InternetTimeFromSystemTime

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 359KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adae0255722af89b1865317b953c4bf1

Headers

File Characteristics

Imports

comctl32

user32

kernel32

wininet

Sections

.text Size: 175KB - Virtual size: 174KB

.rdata Size: 10KB - Virtual size: 14KB

.data Size: 359KB - Virtual size: 358KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 175KB - Virtual size: 174KB

.rdata
Size: 10KB - Virtual size: 14KB

.data
Size: 359KB - Virtual size: 358KB

.rsrc
Size: 10KB - Virtual size: 10KB