cbda118a61feaff4dfae249f2d36191b03778a36b5626eac8c47adb43df36005

Sharing

Copy URL Twitter E-mail

General

Target

cbda118a61feaff4dfae249f2d36191b03778a36b5626eac8c47adb43df36005
Size

907KB
MD5

3a04b719b478fcdbbc0a005304827125
SHA1

2d8f55b06c213b8e9739a874a8e2a6f6dd5f1e06
SHA256

cbda118a61feaff4dfae249f2d36191b03778a36b5626eac8c47adb43df36005
SHA512

ca0cc3bfdc39be71fcff781a5968061f1db9e157d6ac4217aadde04e69c98e7c2513335571e5cc8f2a5c5889a35f3cd2a85554b04004c5a8a2364f0c8450ce7b
SSDEEP

6144:eis6P4JeHyX2vXOoSmoz73fThQaUASwfxhyrAgN3F/p/uwONct43j92U:eis6P4JeHfvTozj+acwO9pGHNu4B2U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbda118a61feaff4dfae249f2d36191b03778a36b5626eac8c47adb43df36005

Files

cbda118a61feaff4dfae249f2d36191b03778a36b5626eac8c47adb43df36005
.exe windows:5 windows x86 arch:x86

63204d3dbe27945daf4931d4e8670cc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\__pkg\2022\_UI\LoadingPage\LoadingPage_v1.0.7\Debug\LoadingPage.pdb

Imports

mfc90ud

ord942
ord961
ord8084
ord1926
ord2493
ord8633
ord6816
ord7044
ord872
ord2942
ord3761
ord8266
ord5062
ord598
ord5990
ord8530
ord8489
ord5863
ord3848
ord1133
ord286
ord292
ord446
ord1189
ord4426
ord3462
ord1140
ord6531
ord6093
ord8111
ord778
ord2112
ord9378
ord8225
ord7448
ord439
ord5218
ord6504
ord7294
ord2174
ord9152
ord291
ord4477
ord2166
ord935
ord2390
ord8595
ord4008
ord9017
ord952
ord2849
ord2565
ord7569
ord6407
ord7029
ord7203
ord2411
ord2410
ord2251
ord2250
ord4659
ord8780
ord2339
ord2336
ord5987
ord2032
ord6446
ord7538
ord2701
ord7420
ord9365
ord6377
ord7593
ord3245
ord1900
ord5197
ord7015
ord6487
ord2307
ord8868
ord7644
ord7642
ord1218
ord1223
ord1227
ord1225
ord1229
ord3551
ord3571
ord3555
ord3561
ord3559
ord3557
ord3574
ord3569
ord3553
ord3576
ord3564
ord3546
ord3548
ord3566
ord3256
ord3243
ord2209
ord9367
ord5739
ord9369
ord5071
ord7299
ord8730
ord4493
ord1968
ord7562
ord2782
ord2385
ord2384
ord2306
ord7590
ord4348
ord6712
ord6466
ord3033
ord1769
ord4899
ord406
ord354
ord486
ord302
ord1476
ord6142
ord963
ord5487
ord701
ord811
ord723
ord753
ord5779
ord1453
ord8902
ord1498
ord1601
ord1561
ord5064
ord2863
ord930
ord950
ord6164
ord6121
ord9366
ord5738
ord9368
ord6537
ord2906
ord2861
ord8169
ord5747
ord1389
ord7462
ord9297
ord7868
ord5781
ord2716
ord4474
ord7626
ord7628
ord3337
ord5991
ord6804
ord7638
ord7603
ord8152
ord3804
ord4122
ord4320
ord6518
ord4097
ord4323
ord3807
ord3996
ord3796
ord5598
ord5599
ord5589
ord3994
ord5994
ord6707
ord6465
ord3140
ord1857
ord8287
ord690
ord5054
ord6772
ord5530
ord5948
ord943
ord1663
ord1408
ord1503

msvcr90d

_configthreadlocale
__setusermatherr
_adjust_fdiv
_time64
_mktime64
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_amsg_exit
__CxxFrameHandler3
_gmtime64_s
_localtime64_s
_snprintf_s
_errno
??_V@YAXPAX@Z
free
strcpy
wcscpy
_vsnprintf_s
memset
_vsnwprintf_s
_snwprintf_s
wcscpy_s
wcsncpy_s
strcpy_s
calloc
_recalloc
memcmp
_wcsicmp
memmove_s
wcslen
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
_invalid_parameter
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_CrtDbgReportW
strlen
_CrtDbgReport
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_invoke_watson
_controlfp_s
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
_CRT_RTC_INITW
_initterm_e
_initterm
_CrtSetCheckCount
_wcmdln
exit
_cexit
_XcptFilter
_exit
__wgetmainargs

kernel32

GetTickCount
Sleep
GetModuleFileNameW
lstrlenW
WideCharToMultiByte
DeleteFileW
InterlockedExchange
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
OpenFileMappingA
GetCurrentThread
CreateFileMappingA
MapViewOfFile
GetSystemInfo
UnmapViewOfFile
VirtualAlloc
OutputDebugStringW
OutputDebugStringA
OpenEventA
SetEvent
CloseHandle
MulDiv
CreateMutexW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
IsDebuggerPresent
RaiseException
DebugBreak
MultiByteToWideChar
lstrlenA
GetProcAddress
LoadLibraryA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
HeapFree
HeapAlloc
GetProcessHeap
VirtualQuery
FreeLibrary
LocalFileTimeToFileTime
GetLastError

user32

PeekMessageW
GetSystemMetrics
GetClassInfoW
ShowWindow
CopyRect
IsRectEmpty
PtInRect
SetRect
SetRectEmpty
EqualRect
InflateRect
OffsetRect
IntersectRect
SubtractRect
UnionRect

comctl32

InitCommonControlsEx

shlwapi

PathFileExistsW

oleaut32

SysFreeString

msvcp90d

?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Debug_message@std@@YAXPB_W0I@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??1_Container_base_secure@std@@QAE@XZ
?_Orphan_all@_Container_base_secure@std@@QBEXXZ
??0_Container_base_secure@std@@QAE@XZ

advapi32

RevertToSelf
SetThreadToken
OpenThreadToken

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 762KB - Virtual size: 761KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63204d3dbe27945daf4931d4e8670cc8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mfc90ud

msvcr90d

kernel32

user32

comctl32

shlwapi

oleaut32

msvcp90d

advapi32

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 1024B - Virtual size: 2KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 762KB - Virtual size: 761KB

.reloc Size: 7KB - Virtual size: 7KB

.textbss
Size: - Virtual size: 64KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 1024B - Virtual size: 2KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 762KB - Virtual size: 761KB

.reloc
Size: 7KB - Virtual size: 7KB