dbdced61d17865434e4086e54e10a3b0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

dbdced61d17865434e4086e54e10a3b0N.exe
Size

470KB
MD5

dbdced61d17865434e4086e54e10a3b0
SHA1

17035a649b45f43b319a228d47ec888c9d221e01
SHA256

040a4ebbda5d256e921937de98fa3f0ca667eb0f3ff300fd29fd2f29e783be83
SHA512

896a75a11688a99e69a625880b66bb29a2ad7260d103a420562d1c093d390894a739039153ca983bfa0549a0adf9c24d597837e42789c4705b6b553bc9b8837d
SSDEEP

12288:fCOp1LeKShwvsYXX2wSypeIii+WCedSfFgDcp94:fCqgOSypLiCI9Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbdced61d17865434e4086e54e10a3b0N.exe

Files

dbdced61d17865434e4086e54e10a3b0N.exe
.exe windows:4 windows x86 arch:x86

b5b0effd1b7a889e661bc438f5266747

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
lstrcmpiA
lstrcatA
lstrcpyA
GetTempFileNameA
FreeLibrary
_lclose
GetModuleFileNameA
LoadLibraryA
WaitForSingleObject
SetEvent
ResetEvent
CreateEventA
LocalFree
GetProfileStringA
GetVersionExA
lstrcpynA
GetLastError
FormatMessageA
GlobalMemoryStatus
GetTickCount
CopyFileA
GlobalReAlloc
WritePrivateProfileStringA
GetPrivateProfileIntA
CreateFileA
ReadFile
CloseHandle
_llseek
GlobalAlloc
GlobalLock
_hread
GlobalHandle
GlobalUnlock
GlobalFree
MultiByteToWideChar
FindResourceA
SizeofResource
LoadResource
LockResource
_hwrite
FreeResource
SystemTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTimeZoneInformation
GetWindowsDirectoryA
_lopen
_lcreat
_lread
_lwrite
lstrlenA
GetTempPathA
GetEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FreeEnvironmentStringsW
LCMapStringA
IsBadWritePtr
LCMapStringW
VirtualFree
HeapCreate
VirtualAlloc
GetEnvironmentVariableA
HeapSize
HeapDestroy
TerminateProcess
WriteFile
GetCurrentProcess
GetSystemTime
HeapReAlloc
GetLocalTime
GetVersion
GetCommandLineA
ExitProcess
GetModuleHandleA
CreateDirectoryA
GetStartupInfoA
FindClose
RemoveDirectoryA
HeapAlloc
HeapFree
FindFirstFileA
DeleteFileA
GetFileAttributesA
RtlUnwind
WideCharToMultiByte
RaiseException
GetEnvironmentStrings
SetFileAttributesA
InterlockedExchange
LocalAlloc
GetProcAddress
SetHandleCount
GetStdHandle
GetFileType
GetCPInfo
CompareStringA
SetFilePointer
SetUnhandledExceptionFilter
SetStdHandle
WinExec
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
SetEndOfFile
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
GetStringTypeA
GetStringTypeW

user32

RegisterClassA
LoadAcceleratorsA
SetWindowsHookA
OffsetRect
GetSystemMetrics
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
UnhookWindowsHook
LoadStringA
ShowWindow
InvalidateRect
LoadIconA
MoveWindow
SendDlgItemMessageA
SetWindowTextA
GetWindow
GetDlgItemTextA
CharLowerA
SetDlgItemTextA
GetDlgItemInt
IsZoomed
IsWindow
EnableMenuItem
KillTimer
CheckDlgButton
GetWindowRect
DefWindowProcA
SetRectEmpty
GetDlgItem
CopyRect
GetWindowPlacement
SetWindowPos
CreateWindowExA
SetWindowLongA
GetParent
GetWindowLongA
SetRect
DrawTextA
BeginPaint
GetMenuItemInfoA
GetMenuItemCount
CheckMenuItem
CallNextHookEx
GetPropA
RemovePropA
SetPropA
GetClassNameA
GetKeyState
IsDialogMessageA
EndPaint
GetMenu
GetSubMenu
EnableWindow
UpdateWindow
MessageBoxA
SendMessageA
DialogBoxParamA
IsIconic
PostQuitMessage
IsDlgButtonChecked
SetDlgItemInt
CheckRadioButton
EndDialog
GetFocus
IsWindowEnabled
EmptyClipboard
SetClipboardData
CloseClipboard
SetTimer
LoadBitmapA
LoadCursorA
GetScrollRange
GetClientRect
IsWindowVisible
WinHelpA
CharUpperBuffA
GetScrollInfo
PtInRect
GetCapture
InvertRect
EnableScrollBar
SetFocus
ClientToScreen
ReleaseCapture
SetCapture
PeekMessageA
GetDesktopWindow
ScrollWindow
CreateDialogParamA
GetScrollPos
ReleaseDC
SetScrollPos
GetDC
GetCursor
InflateRect
DrawTextExA
SetScrollRange
DestroyWindow
IsRectEmpty
IsCharAlphaA
DestroyCursor
GetWindowTextA
IsCharLowerA
CharUpperA
IsCharAlphaNumericA
ScreenToClient
IsCharUpperA
GetCursorPos
GetWindowTextLengthA
GetSysColor
CallWindowProcA
GetActiveWindow
FillRect
wsprintfA
SetCursor
PostMessageA
MessageBeep
SetActiveWindow
OpenClipboard
SetMenu
DrawMenuBar

gdi32

DeleteDC
SetBkMode
BitBlt
SelectObject
CreateCompatibleDC
GetStockObject
DeleteObject
GetObjectA
TextOutA
SetBkColor
SetTextColor
SetTextAlign
CreatePalette
CreateFontIndirectA
SetWindowOrgEx
CreateSolidBrush
SetRectRgn
ExtTextOutA
SelectClipRgn
CreateRectRgn
GetTextExtentPointA
GetTextMetricsA
PatBlt
CreatePatternBrush
CreateBitmap
SetViewportOrgEx
GetWindowOrgEx
LPtoDP
SetViewportExtEx
GetWindowExtEx
SetMapMode
GetDeviceCaps
EnumFontFamiliesA
CreatePen
RealizePalette
SelectPalette
LineTo
MoveToEx
CreateFontA
GetCharWidthA
StretchBlt
CreateDIBitmap
StretchDIBits
SetStretchBltMode
CreateICA
EndPage
StartPage
StartDocA
EndDoc
GetTextAlign
AbortDoc
CreateDCA

winspool.drv

DeviceCapabilitiesA
DocumentPropertiesA
ClosePrinter
OpenPrinterA
GetPrinterA

comdlg32

PrintDlgA
GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA

advapi32

RegDeleteKeyA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegCreateKeyExA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHChangeNotify
ShellExecuteA
SHGetSpecialFolderLocation

ole32

CoCreateInstance
CoInitialize
OleSetMenuDescriptor
StgCreateDocfile
CoUninitialize

rpcrt4

RpcStringFreeA
UuidToStringA

comctl32

InitCommonControlsEx
CreateToolbarEx

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 220KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5b0effd1b7a889e661bc438f5266747

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

rpcrt4

comctl32

version

Sections

.text Size: 220KB - Virtual size: 216KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 40KB - Virtual size: 49KB

.rsrc Size: 96KB - Virtual size: 95KB

.text
Size: 220KB - Virtual size: 216KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 40KB - Virtual size: 49KB

.rsrc
Size: 96KB - Virtual size: 95KB