8bf95358c55c2ccbcfcc4b86a89292e6ef8f9e18722a9a8e7253d531432aea2b[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

8bf95358c55c2ccbcfcc4b86a89292e6ef8f9e18722a9a8e7253d531432aea2b.exe
Size

2.1MB
MD5

cf83ffab58df8e3aecd99554a00e6f60
SHA1

1be5b6f3a2d3a210750c404c1b88d96024830852
SHA256

8bf95358c55c2ccbcfcc4b86a89292e6ef8f9e18722a9a8e7253d531432aea2b
SHA512

ca59203076b38ac1efa770a3ddeceff71a30361debb2fcd06ac87e8e560d0ad060426625135bb121e66083b8cffbca28e74a58b7878927adb1bd22c0db15c93f
SSDEEP

49152:8GHDovC3VcSCF9QWSiGhCZTI9kNKuUGaXVD4iBAUZLYCs:3D42jq9QWS4GBAUZLa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bf95358c55c2ccbcfcc4b86a89292e6ef8f9e18722a9a8e7253d531432aea2b.exe

Files

8bf95358c55c2ccbcfcc4b86a89292e6ef8f9e18722a9a8e7253d531432aea2b.exe
.dll windows:5 windows x86 arch:x86

ef34bc38b39b698ae399073591a28d73

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\projects\libbluray\build_out\lib\x86\bluray.pdb

Imports

ws2_32

inet_ntoa
recv
select
send
socket
gethostbyaddr
gethostbyname
getservbyport
getservbyname
WSAStartup
WSASetLastError
WSAGetLastError
bind
getsockname
ntohs
inet_addr
htons
htonl
getsockopt
ioctlsocket
connect
closesocket
listen
__WSAFDIsSet

kernel32

TerminateProcess
DisableThreadLibraryCalls
InitializeSListHead
GetCurrentProcessId
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
GetLongPathNameW
GetFileAttributesExW
GetSystemWindowsDirectoryW
GetTempPathW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetFullPathNameW
FindNextFileW
FindFirstFileW
FindClose
GetACP
LoadLibraryA
IsDebuggerPresent
ReadFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetLastError
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
LoadLibraryExW
FormatMessageW
CreateDirectoryW
GetFileAttributesW
LoadLibraryW
SetDllDirectoryW
DeleteCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentThread
SetThreadAffinityMask
CloseHandle
DuplicateHandle
ReleaseMutex
WaitForSingleObject
CreateMutexW
Sleep
GetCurrentProcess
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
GetModuleFileNameA
GetSystemDirectoryA
UnhandledExceptionFilter

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFolderPathW

vcruntime140

_setjmp3
memchr
longjmp
strstr
__std_type_info_destroy_list
strchr
strrchr
memset
memcpy
_except_handler4_common
wcsrchr
memmove

api-ms-win-crt-runtime-l1-1-0

strerror
_cexit
_endthread
abort
_beginthread
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_set_errno
_initterm_e
perror
_initterm
_errno

api-ms-win-crt-heap-l1-1-0

free
calloc
malloc
realloc

api-ms-win-crt-stdio-l1-1-0

_get_osfhandle
fwrite
_ftelli64
_lseeki64
_fseeki64
fread
fflush
fopen
setvbuf
__acrt_iob_func
_wfopen_s
fseek
ftell
_wopen
ferror
__stdio_common_vfprintf
__stdio_common_vsprintf_s
_close
_open
_dup
_read
_write
_getcwd
_fileno
_lseek
fclose
__stdio_common_vsprintf
__stdio_common_vsscanf
_wfopen

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-string-l1-1-0

strtok_s
strncat
strncmp
_strnicmp
isalpha
strncpy
toupper
strncpy_s
strcat_s
strcpy_s
tolower
_strdup

api-ms-win-crt-filesystem-l1-1-0

_wstat64i32
_wmkdir
_wchmod
rename
_findclose
_wfindfirst64i32
_stat64i32
_waccess
_rmdir
_wremove
_unlink
_wfindnext64i32

api-ms-win-crt-convert-l1-1-0

wcstombs
strtoul
atoi
strtoull
strtol
strtod

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-utility-l1-1-0

srand
rand
qsort

api-ms-win-crt-math-l1-1-0

_fdopen

api-ms-win-crt-locale-l1-1-0

localeconv
setlocale

Exports

Exports

_Java_java_awt_BDFontMetrics_charWidthN@20
_Java_java_awt_BDFontMetrics_charsWidthN@28
_Java_java_awt_BDFontMetrics_destroyFontN@16
_Java_java_awt_BDFontMetrics_destroyN@16
_Java_java_awt_BDFontMetrics_getFontFamilyAndStyleN@20
_Java_java_awt_BDFontMetrics_initN@8
_Java_java_awt_BDFontMetrics_loadFontN@24
_Java_java_awt_BDFontMetrics_resolveFontN@16
_Java_java_awt_BDFontMetrics_stringWidthN@20
_Java_java_awt_BDFontMetrics_unloadFontConfigN@8
_Java_java_awt_BDGraphics_drawStringN@32
_Java_org_videolan_Libbluray_cacheBdRomFileN@24
_Java_org_videolan_Libbluray_getAacsDataN@20
_Java_org_videolan_Libbluray_getBdjoN@20
_Java_org_videolan_Libbluray_getPlaylistInfoN@20
_Java_org_videolan_Libbluray_getTitleInfosN@16
_Java_org_videolan_Libbluray_getUOMaskN@16
_Java_org_videolan_Libbluray_listBdFilesN@24
_Java_org_videolan_Libbluray_readRegN@24
_Java_org_videolan_Libbluray_seekN@32
_Java_org_videolan_Libbluray_selectAngleN@20
_Java_org_videolan_Libbluray_selectPlaylistN@36
_Java_org_videolan_Libbluray_selectRateN@24
_Java_org_videolan_Libbluray_selectTitleN@20
_Java_org_videolan_Libbluray_setKeyInterestN@20
_Java_org_videolan_Libbluray_setUOMaskN@24
_Java_org_videolan_Libbluray_setVirtualPackageN@24
_Java_org_videolan_Libbluray_soundEffectN@20
_Java_org_videolan_Libbluray_tellTimeN@16
_Java_org_videolan_Libbluray_updateGraphicN@44
_Java_org_videolan_Libbluray_writeRegN@32
_Java_org_videolan_Logger_logN@24
bd_chapter_pos
bd_close
bd_free_bdjo
bd_free_clpi
bd_free_mobj
bd_free_mpls
bd_free_title_info
bd_get_clpi
bd_get_current_angle
bd_get_current_chapter
bd_get_current_title
bd_get_debug_mask
bd_get_disc_info
bd_get_event
bd_get_main_title
bd_get_meta
bd_get_meta_file
bd_get_playlist_info
bd_get_sound_effect
bd_get_title_info
bd_get_title_size
bd_get_titles
bd_get_version
bd_init
bd_menu_call
bd_mouse_select
bd_open
bd_open_disc
bd_open_stream
bd_play
bd_play_title
bd_read
bd_read_bdjo
bd_read_clpi
bd_read_ext
bd_read_file
bd_read_mobj
bd_read_mpls
bd_read_skip_still
bd_refcnt_dec
bd_refcnt_inc
bd_register_argb_overlay_proc
bd_register_dir
bd_register_file
bd_register_overlay_proc
bd_seamless_angle_change
bd_seek
bd_seek_chapter
bd_seek_mark
bd_seek_playitem
bd_seek_time
bd_select_angle
bd_select_playlist
bd_select_stream
bd_select_title
bd_set_debug_handler
bd_set_debug_mask
bd_set_player_setting
bd_set_player_setting_str
bd_set_scr
bd_start_bdj
bd_stop_bdj
bd_tell
bd_tell_time
bd_user_input

Sections

.text
Size: 1011KB - Virtual size: 1010KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef34bc38b39b698ae399073591a28d73

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

kernel32

advapi32

shell32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-locale-l1-1-0

Exports

Exports

Sections

.text Size: 1011KB - Virtual size: 1010KB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 3KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 38KB - Virtual size: 37KB

.text
Size: 1011KB - Virtual size: 1010KB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 3KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 38KB - Virtual size: 37KB