8b0b3035029cb55c4a0ddd5c7b7c3e1a451b44fd80bee8a68f16f7f720724b19

Sharing

Copy URL Twitter E-mail

General

Target

8b0b3035029cb55c4a0ddd5c7b7c3e1a451b44fd80bee8a68f16f7f720724b19
Size

205KB
MD5

339d119ad11314a530985d8ebee4c65c
SHA1

f77ec6458dc9feff0a3492e1e466ba9ace49b710
SHA256

8b0b3035029cb55c4a0ddd5c7b7c3e1a451b44fd80bee8a68f16f7f720724b19
SHA512

0560c2dc0315f31fba25ee9483d35cd2819e391bfa06287d9e6692365c622f6efde78d2a052f1095e6631056c50c0f60a9047068d36a3b9ff36c660dce7652d3
SSDEEP

6144:LD+LVYIt+dbpAk5Q2DiVahD8Nj76ZF7NSnMt/el0lRO1WF:fQrwbv5RighgNjSFYMgl0rO4F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b0b3035029cb55c4a0ddd5c7b7c3e1a451b44fd80bee8a68f16f7f720724b19

Files

8b0b3035029cb55c4a0ddd5c7b7c3e1a451b44fd80bee8a68f16f7f720724b19
.exe windows:4 windows x86 arch:x86

c1e7cc004ffcb00fef181f2a07f3866e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameA
GetWindowsDirectoryA
MoveFileExA
RemoveDirectoryA
CopyFileA
CompareFileTime
GetFileTime
SetFileAttributesA
GetVersionExA
GetLastError
CreateMutexA
GetFileSize
GetModuleFileNameA
GetCommandLineA
GetCurrentProcess
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
GetCurrentDirectoryA
VirtualAlloc
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapFree
HeapSize
TerminateProcess
HeapAlloc
HeapReAlloc
ExitProcess
GetVersion
GetStartupInfoA
SetCurrentDirectoryA
MultiByteToWideChar
SetErrorMode
GetProcAddress
FreeLibrary
CreateProcessA
LCMapStringW
Sleep
GetExitCodeProcess
GetTempPathA
GetTickCount
GetFileAttributesA
WriteFile
CreateFileA
SetFilePointer
CloseHandle
ReadFile
GlobalReAlloc
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
DeleteFileA
lstrcpyA
lstrlenA
lstrcatA
GetModuleHandleA
LoadLibraryA
MulDiv

user32

SetDlgItemTextA
MessageBoxA
GetParent
DialogBoxParamA
GetWindowTextA
PostQuitMessage
GetDlgItem
GetDlgItemTextA
ReleaseDC
GetDC
GetDesktopWindow
LoadCursorA
ExitWindowsEx
EnableWindow
GetWindowRect
SystemParametersInfoA
ShowWindow
SetFocus
SendDlgItemMessageA
IsDialogMessageA
WaitMessage
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageA
PeekMessageA
GetMessageA
GetSystemMetrics
RegisterClassExA
SetWindowTextA
DefWindowProcA
ChildWindowFromPoint
GetWindowLongA
SetCursor
InvalidateRect
LoadIconA
LoadImageA
GetSysColor
CreateWindowExA
SetWindowLongA
SendMessageA
EndDialog

gdi32

CreateSolidBrush
GetDeviceCaps
GetStockObject
DeleteDC
StretchDIBits
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateFontA
SetBkMode
SetBkColor
SetTextColor
DeleteObject
CreatePalette

advapi32

RegQueryValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegEnumKeyExA

shell32

ShellExecuteA

ole32

CoUninitialize
OleInitialize
OleUninitialize
CoInitialize

oleaut32

UnRegisterTypeLi
LoadTypeLi

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

comctl32

ord17

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1e7cc004ffcb00fef181f2a07f3866e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

version

comctl32

Sections

.text Size: 33KB - Virtual size: 33KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 33KB - Virtual size: 33KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 3KB