8a0c002261568c369e60f266e780231d8bb811a779e8a117df09768fa36819b2

Sharing

Copy URL

Twitter E-mail

General

Target

8a0c002261568c369e60f266e780231d8bb811a779e8a117df09768fa36819b2
Size

80KB
MD5

c020b325e88d20d80345e7c99f910869
SHA1

b1c0f8d47e0b2d698e4b075c82024b473655f8be
SHA256

8a0c002261568c369e60f266e780231d8bb811a779e8a117df09768fa36819b2
SHA512

b55b5aba60a94389ea7129c37be6f8c02bd55c9c914c1be54c4895ed15da646e5885d18b4689a38ba67fb0f8c3aafe34935fe20157666ecce154c70f03472244
SSDEEP

1536:8iONFeneJA6CU+1VZoq94XTb2Tr2hyesoVb:8iZeJCUvROOhnsoVb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a0c002261568c369e60f266e780231d8bb811a779e8a117df09768fa36819b2

Files

8a0c002261568c369e60f266e780231d8bb811a779e8a117df09768fa36819b2
.dll windows:4 windows x86 arch:x86

8971a5619518be469880f494d236f97e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpA
GetModuleHandleA
HeapFree
lstrcmpiA
MapViewOfFile
CreateFileMappingA
lstrcatA
UnmapViewOfFile
GetFileSize
GetVersionExA
GetLastError
SetEndOfFile
HeapAlloc
SetFilePointer
WriteFile
GlobalUnlock
GlobalFree
HeapCreate
lstrlenA
lstrcpyA
HeapDestroy
GlobalLock
CreateFileA
CloseHandle
DisableThreadLibraryCalls
SetLastError
TlsAlloc
TlsFree
RtlUnwind
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
InterlockedDecrement
GetCommandLineA
GetVersion
RaiseException
GetProcAddress
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
GetStartupInfoA
DeleteCriticalSection
VirtualFree
InterlockedIncrement
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentStrings
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW

user32

CheckRadioButton
GetMenu
wsprintfA
DialogBoxParamA
MessageBoxA
EnableMenuItem
SetActiveWindow
SetFocus
WinHelpA
SetCursor
LoadCursorA
GetDC
ReleaseDC
PostMessageA
CreateDialogParamA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
ShowWindow
LoadIconA
SendMessageA
GetSystemMenu
RemoveMenu
SendDlgItemMessageA
SetWindowTextA
GetDlgItem
EnableWindow
EndDialog

gdi32

DeleteObject
EnumFontsA
CreateFontIndirectA

comdlg32

GetOpenFileNameA
PrintDlgA
ChooseFontA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

comctl32

ord17

Exports

Exports

cobenvsb

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8971a5619518be469880f494d236f97e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

comctl32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 8KB - Virtual size: 4KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 8KB - Virtual size: 5KB