cbebf5f89ce7071c3860445e744f5068

Sharing

Copy URL Twitter E-mail

General

Target

cbebf5f89ce7071c3860445e744f5068
Size

392KB
MD5

cbebf5f89ce7071c3860445e744f5068
SHA1

19092e9973ed96b22f66b3381167a7f511c23474
SHA256

94d60abb8c086cc050829406229c3f87c025b0b401ed26c04d5051be1ab1e3a5
SHA512

b8474edc1a35ef4a18eb8239755b788d6ed735c57f2454853fa86c23b6bcefed02f68824ccc75ebcd524bce48a3c7e53396b6e2ef44c327cdcb6fb8f558e93df
SSDEEP

3072:75cr54mqPH4n+plGE4tI8FsTY7kQu+sQI+UvrOmZxYO9iZDyh77MMKKQTMqnLU:Fc2mqf4ksBQY7k/HT+pOIZD7MKKWI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbebf5f89ce7071c3860445e744f5068

Files

cbebf5f89ce7071c3860445e744f5068
.exe windows:4 windows x86 arch:x86

6426a8028f2a546a5a667341266b7dd0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
GetThreadTimes
SetConsoleNumberOfCommandsA
SetConsoleCursor
GetSystemDirectoryA
GetConsoleOutputCP
GetCurrentConsoleFont
GetVolumeNameForVolumeMountPointA
SetProcessPriorityBoost
Thread32Next
UpdateResourceA
GetVolumePathNamesForVolumeNameA
WriteFileGather
SetInformationJobObject
VirtualQuery
GetConsoleAliasesLengthA
WriteProfileStringA
GetConsoleCharType
GetVolumeInformationA
FindFirstFileExA
GetFileSizeEx
GetConsoleAliasExesW
RegisterWaitForInputIdle
OpenWaitableTimerA
GetVersion
SetFileAttributesA
GlobalHandle
GetConsoleAliasExesLengthW
SetThreadPriority
SetVDMCurrentDirectories
SetConsoleInputExeNameA
GetConsoleWindow
GetLogicalDriveStringsA
IsProcessorFeaturePresent
WaitCommEvent
DuplicateConsoleHandle
GetCommModemStatus
RegisterWaitForSingleObjectEx
GetSystemInfo
LZOpenFileA
GetStdHandle
GetTickCount
ReadConsoleA
GetTimeFormatA
GetConsoleAliasExesLengthA
GetWindowsDirectoryA
GetConsoleCursorMode
DisconnectNamedPipe
VerifyVersionInfoA
WriteConsoleOutputA
OpenMutexA
GetDefaultCommConfigA
FileTimeToSystemTime
IsBadCodePtr
MoveFileA
GetLocaleInfoA
GetDiskFreeSpaceExA
MultiByteToWideChar
GetProcessVersion
CreateSocketHandle
SizeofResource
SetPriorityClass
GetFileInformationByHandle
IsDebuggerPresent
GetCommMask
GetPriorityClass
IsBadWritePtr
GetExitCodeProcess
GetFileTime
Process32Next
GetProcessHeap
GetDriveTypeA
GetEnvironmentStringsA
CancelWaitableTimer
GetSystemTimes
SetHandleInformation
FlushViewOfFile
GetProcAddress
GetVersionExA
VerifyVersionInfoA
GetTempPathA
ResetEvent
GlobalSize
SetThreadAffinityMask
GetTickCount
LoadLibraryExA
VirtualAlloc
IsValidCodePage
GetFileAttributesExA
GetLocalTime
GetConsoleInputExeNameA
GetLocaleInfoA
GetFileAttributesA
FlushInstructionCache
lstrcat
GetVersionExA
GetVersionExA
MulDiv
GetVolumePathNameA
UnlockFile
GetFileType
IsDebuggerPresent
ReleaseMutex
FindResourceExA
SetCommBreak
SetConsoleTextAttribute
GetVersionExA
GetComputerNameA
FindAtomA
VirtualProtectEx
ClearCommBreak
HeapSize
GetDefaultCommConfigA
LockFile
GetTickCount
ExitProcess
GetCurrentProcessId
GetStringTypeExA
SetDllDirectoryA
LockFileEx
GetTempPathA
UnlockFile
SetComputerNameExW
FindFirstVolumeMountPointA
SetFilePointerEx
GlobalSize
VirtualAlloc
SetTapeParameters
CreateSemaphoreA
LZCloseFile
GetDevicePowerState
WaitForDebugEvent
VerifyVersionInfoA
GetDiskFreeSpaceA
GetProcessHeap
GetFileAttributesExA
PeekConsoleInputA
DeleteTimerQueue
SetConsoleMaximumWindowSize
GetConsoleAliasesA
UnregisterConsoleIME
CreateDirectoryExA
GetDiskFreeSpaceExA
FindAtomA
LocalFlags
ReadConsoleOutputA
GetVersionExA
ResumeThread
ReadConsoleInputA
CopyFileExW
GetConsoleMode
SetFileTime
IsValidCodePage
HeapAlloc
WriteConsoleOutputCharacterA
OpenFileMappingA
WritePrivateProfileStringA
GlobalUnfix
GetEnvironmentVariableA
SetConsoleDisplayMode
WriteConsoleOutputCharacterA
EnumSystemLanguageGroupsA
VirtualFree
WaitForMultipleObjectsEx
GetCommState
CreateDirectoryExW
LoadModule
GetModuleHandleA
Heap32First
GetCurrentProcessId
DeleteFileA
VirtualUnlock
GetLongPathNameA
ReadConsoleOutputAttribute
IsWow64Process
GetConsoleCommandHistoryLengthA
SetConsoleMaximumWindowSize
GetVolumePathNameA
MapViewOfFileEx
IsBadStringPtrA

user32

SetWindowLongA
GetRawInputDeviceInfoA
CreateAcceleratorTableA
ToUnicode
DefMDIChildProcA
MapVirtualKeyExW
GetDlgCtrlID
SetSysColorsTemp
SetDeskWallpaper
EndTask
LockSetForegroundWindow
DlgDirSelectComboBoxExA
EnumDisplaySettingsExA
GetGUIThreadInfo
SetMenuItemInfoA
EnumPropsA
DrawFrame
DlgDirListComboBoxA
IsCharUpperA
RecordShutdownReason
CharPrevExA
SetDebugErrorLevel
ChildWindowFromPointEx
GetWindowThreadProcessId
GetKeyboardLayoutNameA
CheckMenuRadioItem
ToAsciiEx
GetMenuDefaultItem
SetWinEventHook
FindWindowA
GetWindowTextA
LoadCursorFromFileW
MapWindowPoints
CreateMDIWindowA
MessageBoxExA
SetProcessWindowStation
EnumDisplaySettingsExA
CreateWindowStationA
SetMenuContextHelpId
OemToCharA
SetLayeredWindowAttributes
GetWindowTextLengthW
GetKeyboardLayoutList
GetCaretPos
GetTabbedTextExtentA
GetClassLongA
UnregisterMessagePumpHook
GetMessagePos
GetClassNameA
GetMessageExtraInfo
DestroyCursor
GetKeyboardLayoutNameA
LoadCursorA
PrivateExtractIconExA
GetComboBoxInfo
DestroyCursor
CreateAcceleratorTableA
SetWindowStationUser
SetMessageQueue
BroadcastSystemMessageExW
SetPropA
LoadStringA
ReasonCodeNeedsBugID
DrawCaption
SetWindowStationUser
ScrollDC
SetWinEventHook
SetWindowRgn
UnregisterClassA
DlgDirListComboBoxA
DispatchMessageA
GetDlgItemTextA
RegisterLogonProcess
PrivateExtractIconExA
GetWindowLongA
GetWindowDC
GetSystemMenu
SetWindowLongA
UnregisterDeviceNotification
DialogBoxParamA
UnhookWindowsHook
GetInputState
GetClassInfoA
DragObject
RealGetWindowClassA

ws2_32

closesocket

Exports

Exports

WriteGqdskkpjry
CloseNoltvvqyld
Mkqialivsn
Veptvnex
InitAcbakbjy
InitKbgepaejy

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 673KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6426a8028f2a546a5a667341266b7dd0

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 56KB - Virtual size: 673KB

.idata Size: 260KB - Virtual size: 257KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 673KB

.idata
Size: 260KB - Virtual size: 257KB

.rsrc
Size: 72KB - Virtual size: 71KB