mr_0x0003B03B43F6EE12[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

mr_0x0003B03B43F6EE12.exe
Size

2.1MB
MD5

0468a32ad1ed1169e98b897d87f51164
SHA1

0d9dc54a5f91e6ed7d324c2a65b152a168d57b08
SHA256

643dde3f461907a94f145b3cd8fe37dbad63aec85a4e5ed759fe843b9214a8d2
SHA512

7deb90629608f3a227e96d948bbb4c78ad21e1eb659bfdab903d4f25bdb1e6c8af7edec9604274aa745dd90f8253e48fbccf661f2bc2b6609e5b8807645750ca
SSDEEP

24576:GQZEhAybJ37KtuUZ786qGbAJYhIRKPS0dJDhrI4ufnLVVx90e+7ym:WAC3a78sIRSGVV8V5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
mr_0x0003B03B43F6EE12.exe

Files

mr_0x0003B03B43F6EE12.exe
.exe windows:6 windows x64 arch:x64

f17865074bdf68334aac0395602ab098

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

RtlPcToFileHeader
RaiseException
EncodePointer
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetStdHandle
EnterCriticalSection
SetLastError
GetLastError
RtlUnwindEx
GetModuleHandleW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WriteFile
GetModuleFileNameW
GetCurrentProcess
ExitProcess
TerminateProcess
GetModuleHandleExW
HeapAlloc
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetFileType
GetStringTypeW
FlsAlloc
GetModuleHandleA
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GetProcessHeap
HeapSize
HeapReAlloc
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
CreateFileW
CloseHandle
WriteConsoleW
HeapCreate
GetProcAddress
LoadLibraryA
LeaveCriticalSection
IsDebuggerPresent
RtlVirtualUnwind
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry

user32

GetKeyboardLayoutList
GetWindowInfo
EnumDisplaySettingsExW
EnumDisplaySettingsW
ChangeDisplaySettingsW
WinHelpW
MapDialogRect
LookupIconIdFromDirectoryEx
DeregisterShellHookWindow
GetDesktopWindow
GetClassLongW
SetClassWord
EqualRect
UnionRect
IntersectRect
ChildWindowFromPoint
ShowCaret
SetCaretBlinkTime
GetCursor
SetCursorPos
MessageBoxExW
GetWindowContextHelpId
AdjustWindowRect
GetClientRect
GetWindowTextLengthW
SetWindowTextW
EnumPropsW
SetPropW
EnableScrollBar
ShowScrollBar
SetScrollRange
ScrollDC
InvalidateRgn
GetWindowRgn
SetWindowRgn
WindowFromDC
GetTabbedTextExtentW
GrayStringW
GetMenuItemRect
SetMenuInfo
AppendMenuW
GetMenuItemCount
GetSubMenu
CheckMenuItem
DrawMenuBar
HiliteMenuItem
IsWindowEnabled
KillTimer
SetTimer
GetLastInputInfo
SetKeyboardState
GetKeyState
GetActiveWindow
IsCharAlphaW
CharNextExA
CharPrevW
CharNextW
CharLowerBuffW
CharUpperBuffW
CharToOemW
CountClipboardFormats
ChangeClipboardChain
GetDlgCtrlID
GetNextDlgGroupItem
IsDlgButtonChecked
SetDlgItemTextW
AnyPopup
DeferWindowPos
BeginDeferWindowPos
GetWindowPlacement
MoveWindow
SetLayeredWindowAttributes
UpdateLayeredWindow
DrawAnimatedRects
DrawCaption
IsHungAppWindow

gdi32

SetMetaRgn
GdiGetBatchLimit
GdiSetBatchLimit
UnrealizeObject
SetWindowOrgEx
SetViewportExtEx
LPtoDP
GetObjectW
SetMiterLimit
SelectClipPath
PathToRegion
ArcTo
AbortPath
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
GetTextMetricsW
EnumEnhMetaFile
SetPixel
SetMetaFileBitsEx
SetLayout
SetMapperFlags
SetDIBits
SetBoundsRect
SetDCPenColor
SaveDC
ResizePalette
RestoreDC
Rectangle
PolyPolygon
PaintRgn
PlayMetaFile
Pie
PatBlt
OffsetClipRgn
PlgBlt
GetWindowOrgEx
GetCharABCWidthsI
GetCharacterPlacementW
GetTextExtentPointW
GetTextColor
GetSystemPaletteUse
GetSystemPaletteEntries
GetRgnBox
GetRegionData
GetRasterizerCaps
GetPaletteEntries
GetFontData
GetClipRgn
GetCharABCWidthsW
GetBitmapBits
EqualRgn
EnumFontFamiliesW
EnumFontFamiliesExW
DrawEscape
CreateHatchBrush
CombineRgn
AnimatePalette

userenv

GetUserProfileDirectoryW

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f17865074bdf68334aac0395602ab098

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

userenv

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 5KB - Virtual size: 22KB

.pdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 5KB - Virtual size: 22KB

.pdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB