8bfce68069087decf9a46b64f142d5b41b80409caac0f691efdb6922e4231062[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

8bfce68069087decf9a46b64f142d5b41b80409caac0f691efdb6922e4231062.exe
Size

202KB
MD5

13f8dad4f9c52e28c6cf853c8d9bc25c
SHA1

9b9722da179a902db8d6a6e0a777df721f90422d
SHA256

8bfce68069087decf9a46b64f142d5b41b80409caac0f691efdb6922e4231062
SHA512

0d57b9690e50acd23e9eb87bdad52ac4a195503018a63b0bb4932a41e438fdab2addf51351fa274845bff803c9a8618f2654a471f2628319f429e8321a715f0d
SSDEEP

3072:wypmD4BXsvUnMp4Yh+xcUmeonBXmuRozZWNAXd:VY4B8v3ecnTZmuRozgNA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bfce68069087decf9a46b64f142d5b41b80409caac0f691efdb6922e4231062.exe

Files

8bfce68069087decf9a46b64f142d5b41b80409caac0f691efdb6922e4231062.exe
.exe windows:4 windows x86 arch:x86

cdde3194d02dc0425eeace99ead4384a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
lstrcpynA
TerminateThread
OutputDebugStringA
Sleep
CreateThread
GetTempPathA
DeleteFileA
WriteFile
GetModuleHandleA
GetSystemDirectoryA
SetThreadExecutionState
SetProcessShutdownParameters
GetLocalTime
FileTimeToSystemTime
GetVersionExA
WideCharToMultiByte
lstrcatA
CreateMutexA
GetLastError
GetCurrentProcess
lstrcpyA
GetModuleFileNameA
CreateFileA
CloseHandle
SetFileAttributesA
GetSystemDefaultLangID
GetPrivateProfileStringA
WritePrivateProfileStringA
SystemTimeToFileTime
LocalFileTimeToFileTime
LoadLibraryA
GetProcAddress
FreeLibrary
lstrlenA
GetStartupInfoA

user32

SetWindowTextA
EnableWindow
PostMessageA
DefWindowProcA
KillTimer
SetTimer
GetDlgItem
DestroyWindow
LoadImageA
DialogBoxParamA
EnumWindows
PostQuitMessage
CreateWindowExA
GetWindowLongA
TrackPopupMenuEx
FrameRect
GetWindowRect
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
wsprintfA
SendMessageTimeoutA
RegisterWindowMessageA
SendMessageA
SendDlgItemMessageA
SetMenuItemInfoA
DrawEdge
SetWindowsHookExA
OffsetRect
GetSysColorBrush
CallNextHookEx
MapWindowPoints
GetClientRect
UnhookWindowsHookEx
GetMessagePos
DestroyMenu
GetMenuItemCount
GetMenuItemInfoA
CallWindowProcA
GetIconInfo
CreateIconIndirect
GetSubMenu
DrawAnimatedRects
FindWindowExA
DestroyIcon
GetSysColor
DrawTextA
GetDC
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CreateMenu
EndDialog
GetWindowTextA
MessageBoxA
ClientToScreen
CreatePopupMenu
AppendMenuA
CheckMenuItem
EnableMenuItem
TrackPopupMenu
IsWindowVisible
SetWindowLongA
SetForegroundWindow
ExitWindowsEx
SystemParametersInfoA
GetSystemMetrics
SetWindowPos
ShowWindow
ScreenToClient
ReleaseDC

gdi32

DeleteDC
SetPixel
GetPixel
CreateCompatibleDC
SetBkColor
SetBkMode
SetTextColor
ExtTextOutA
SelectObject
DeleteObject
GetStockObject
GetObjectA
CreateFontIndirectA
CreateBitmap

advapi32

RegOpenKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
RegDeleteValueA
RegCloseKey
OpenProcessToken

shell32

ShellExecuteExA
SHAppBarMessage
Shell_NotifyIconA
ExtractIconExA
ShellExecuteA

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
_onexit
__dllonexit
_mbscmp
strstr
clock
??2@YAPAXI@Z
fread
_filbuf
_flsbuf
exit
vsprintf
_CIfmod
_mbsstr
_mbsrchr
atoi
_ftol
malloc
free
??3@YAXPAX@Z

comctl32

InitCommonControlsEx
ImageList_Draw
ImageList_ReplaceIcon
ord17
ImageList_Create

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdde3194d02dc0425eeace99ead4384a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

msvcrt

comctl32

Sections

.text Size: 31KB - Virtual size: 31KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 18KB - Virtual size: 59KB

.rsrc Size: 147KB - Virtual size: 146KB

.text
Size: 31KB - Virtual size: 31KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 18KB - Virtual size: 59KB

.rsrc
Size: 147KB - Virtual size: 146KB