b9420748ed656330fc95f960f7c3d1c0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

b9420748ed656330fc95f960f7c3d1c0N.exe
Size

443KB
MD5

b9420748ed656330fc95f960f7c3d1c0
SHA1

389c8f7a586ace9f5fa313029add0b85ba90a0e3
SHA256

3d7ab7d32842d69052a5ab447d439df859084159564519c424b91292119f9082
SHA512

ffa218bfe022f756b374dd6f2af262b8ed58fa42169c336b8cb51823986a90e40c30db32313b043186c7e7de1e538d1ccbd404fb7a47a9b802f47d8d37372442
SSDEEP

12288:WIDnFdjeeqVqVXOGGIv7y4XHnDHjPxlyw01g1KW2:WIDPjgqV++7y43nr3ywe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9420748ed656330fc95f960f7c3d1c0N.exe

Files

b9420748ed656330fc95f960f7c3d1c0N.exe
.exe windows:4 windows x86 arch:x86

fd99ba36faea7b0f32389931249a6425

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetWindowExtEx
ExtCreateRegion
GetWindowOrgEx
CreateScalableFontResourceA
SetAbortProc
GetCharABCWidthsW
PaintRgn
SetWorldTransform
PlgBlt
GetTextExtentExPointA
GetRgnBox
RemoveFontResourceW
CreateDIBPatternBrushPt
GetTextFaceW
SetWinMetaFileBits
GetCharacterPlacementW
CreateDiscardableBitmap
GdiGetBatchLimit
GetTextMetricsW
GetSystemPaletteUse
UpdateColors
CreatePalette

user32

DdeUninitialize
SetLastErrorEx
EndPaint
MessageBoxIndirectA
FindWindowA
CreateAcceleratorTableA
GetWindowRgn
GetMenuState
LoadCursorFromFileA
GetCursorInfo
DdeQueryConvInfo
CreateIconFromResource
DialogBoxParamA
DispatchMessageW
CloseWindowStation
GetKeyboardType
GetWindowTextLengthW
FlashWindow
EndDeferWindowPos

advapi32

RegSetValueW
CreateServiceA
LookupPrivilegeValueW
CryptGetDefaultProviderW
CryptSignHashW
RegEnumKeyA
RegDeleteValueW
CryptImportKey
CryptSetHashParam
CryptVerifySignatureA
RegOpenKeyA
LookupAccountSidA
CreateServiceW
CryptSetProvParam
CryptEncrypt
RegFlushKey
RegOpenKeyExA
GetUserNameA
RevertToSelf
LookupPrivilegeValueA
RegSaveKeyA
CryptDeriveKey
CryptVerifySignatureW
CryptGenRandom
RegConnectRegistryA

wininet

InternetShowSecurityInfoByURLW
InternetAttemptConnect

kernel32

DeleteCriticalSection
RtlUnwind
GetOEMCP
GetCommandLineW
GetTimeZoneInformation
GetCurrentProcessId
GetLastError
FreeEnvironmentStringsA
GetModuleFileNameW
TlsSetValue
GetProcessAffinityMask
HeapSize
GetSystemInfo
GetTempFileNameA
WideCharToMultiByte
GetLocaleInfoA
GetCurrentThread
GetACP
CreateSemaphoreW
VirtualQuery
EnumSystemLocalesA
SetEnvironmentVariableA
ExitProcess
HeapReAlloc
LeaveCriticalSection
GetEnvironmentStrings
OpenEventA
EnumDateFormatsW
GetProcAddress
InterlockedExchange
TlsGetValue
HeapDestroy
GetCurrentProcess
GetCurrentThreadId
GetStringTypeA
VirtualFree
MultiByteToWideChar
GetEnvironmentStringsW
GetCPInfo
GetStringTypeW
GetVersionExA
LCMapStringA
GetCommandLineA
GlobalAddAtomA
GetModuleFileNameA
TerminateProcess
WriteConsoleW
IsValidCodePage
UnhandledExceptionFilter
QueryPerformanceCounter
EnterCriticalSection
VirtualAlloc
VirtualProtect
SetLastError
GetTickCount
HeapCreate
GetSystemTimeAsFileTime
LoadLibraryA
FindNextFileA
LCMapStringW
WriteFile
lstrcmpA
CompareStringW
HeapAlloc
GetStdHandle
GetDateFormatA
GetModuleHandleA
RtlZeroMemory
WriteConsoleInputW
TlsAlloc
GetSystemTimeAdjustment
HeapFree
SetHandleCount
IsValidLocale
GetTimeFormatA
GetStartupInfoW
GetUserDefaultLCID
CompareStringA
OpenFileMappingW
IsBadWritePtr
FreeEnvironmentStringsW
InitializeCriticalSection
TlsFree
GetLocaleInfoW
GetFileType
GetStartupInfoA

Sections

.text
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 309KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd99ba36faea7b0f32389931249a6425

Headers

File Characteristics

Imports

gdi32

user32

advapi32

wininet

kernel32

Sections

.text Size: 130KB - Virtual size: 130KB

.data Size: 309KB - Virtual size: 308KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 130KB - Virtual size: 130KB

.data
Size: 309KB - Virtual size: 308KB

.rsrc
Size: 3KB - Virtual size: 2KB