8f6b065defd3a25d6f816ae9242144d0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

8f6b065defd3a25d6f816ae9242144d0N.exe
Size

523KB
MD5

8f6b065defd3a25d6f816ae9242144d0
SHA1

d6e786211cad99af92f28cd6f636c02b96cba991
SHA256

80d14a1c21e1315cfb8b3b65a317dff63c26998e4bad1a7e67714a8dbc6e6368
SHA512

d100d8187def9bc63aa00969265535560b844ce6c5a6e0b748f3342dee41003ea105220bcf7615ac33736c5d59203752e014b0a72528e0f3aef663a790c1911b
SSDEEP

12288:693tF0ESykuwNLeh2wwXcIXFJP5iCNA6mj/sGTJUIJvMV:At6bQqen9EFJBWnJUIJvM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f6b065defd3a25d6f816ae9242144d0N.exe

Files

8f6b065defd3a25d6f816ae9242144d0N.exe
.exe windows:4 windows x86 arch:x86

8e5f40bd911a7b4b0c74b0f24ea6e691

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

LoadAlterBitmap
ChooseColorW

user32

CharPrevW
SetDlgItemInt
DdeSetQualityOfService
GetNextDlgGroupItem
RegisterClassA
TranslateAcceleratorW
IsDialogMessage
DdeQueryNextServer
DeleteMenu
CheckRadioButton
SetWindowLongA
SetCaretPos
IsMenu
RegisterClassExA
SetSystemCursor
GetSystemMenu
GetMenuItemInfoA
KillTimer
CheckMenuItem
InsertMenuItemA
IsZoomed
CreateMDIWindowA
CloseDesktop

kernel32

CreateProcessA
GetUserDefaultLCID
GetDateFormatA
GetCurrentThreadId
RtlUnwind
GetStartupInfoA
GetACP
GetProcAddress
GetWindowsDirectoryA
HeapCreate
SetLocaleInfoA
SetConsoleMode
ExitProcess
GetLocaleInfoA
GetStdHandle
HeapReAlloc
SetEnvironmentVariableA
CompareStringW
GetLocaleInfoW
HeapDestroy
GetLastError
MultiByteToWideChar
WriteFile
OpenFileMappingW
SetStdHandle
HeapSize
GetCurrentThread
SetHandleCount
VirtualProtect
GetFileType
LocalFree
CompareStringA
GetStringTypeW
GetSystemInfo
LeaveCriticalSection
GetTickCount
FreeEnvironmentStringsA
lstrcmpiA
HeapFree
EnterCriticalSection
IsBadWritePtr
GetCurrentProcessId
GetCPInfo
LoadLibraryA
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetCommandLineA
GetAtomNameA
LCMapStringW
HeapAlloc
VirtualAlloc
QueryPerformanceCounter
SetThreadAffinityMask
IsValidCodePage
TlsSetValue
GetStartupInfoW
OpenMutexA
GetVersionExA
TlsAlloc
DeleteCriticalSection
IsValidLocale
GetEnvironmentStringsW
InitializeCriticalSection
CreateDirectoryExA
GetStringTypeA
InterlockedExchange
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetEnvironmentStrings
UnhandledExceptionFilter
GetThreadPriority
SetLastError
OpenMutexW
EnumDateFormatsExA
VirtualQuery
GetModuleHandleA
SetFilePointer
ReadFile
EnumResourceLanguagesW
CreateMutexA
FreeEnvironmentStringsW
TlsGetValue
CloseHandle
WideCharToMultiByte
CreateSemaphoreW
FlushFileBuffers
GetModuleHandleW
GetModuleFileNameW
LCMapStringA
GetDriveTypeA
EnumSystemLocalesA
VirtualFree
TlsFree
WritePrivateProfileStringW
GetCommandLineW
GetConsoleMode
GetOEMCP
GetTimeFormatA
CreateRemoteThread
SetComputerNameW

comctl32

InitCommonControlsEx

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e5f40bd911a7b4b0c74b0f24ea6e691

Headers

File Characteristics

Imports

comdlg32

user32

kernel32

comctl32

Sections

.text Size: 189KB - Virtual size: 188KB

.rdata Size: 8KB - Virtual size: 12KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 189KB - Virtual size: 188KB

.rdata
Size: 8KB - Virtual size: 12KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 12KB - Virtual size: 11KB