ikatube-20240816-win32[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

ikatube-20240816-win32.zip
Size

1.8MB
MD5

8ae52a1c5912b9eebb21e433548f7a02
SHA1

956d683488c9daf6fa9c395d057f9729e65eaf87
SHA256

266e318f7612bcecadabf041ac33a857b6fde3251eb4b3f5a4c4462df7426c3c
SHA512

9574f6e5c5d2f8ab6e05e9a0f4f2e16c59a507611b745b7de21e2b13077696aa203d42f7ec401eb9f288bf99be83a237ab881f2c6233ad04ad4b3741f3dd30c0
SSDEEP

49152:WipM5I2vCvS7RuQL3o46S3OJTfrw6GKzef369B5INp:ZM5lvy1y3onsONfs6JefqrAp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ikatube/ikatube2.exe

Files

ikatube-20240816-win32.zip
.zip
ikatube/3rdparty/LICENSE-APACHE
ikatube/favlist.json
ikatube/font/EFM.ttf
ikatube/ikatk_portable_mode.txt
ikatube/ikatube.json
ikatube/ikatube2.exe
.exe windows:4 windows x86 arch:x86

b0e7727fbe6ad2b085281ef1b48cd221

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext

gdi32

CreateRectRgn
DeleteObject
GetDeviceCaps
StretchDIBits

imm32

ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow

kernel32

CloseHandle
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCommandLineW
GetExitCodeProcess
GetLastError
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

__getmainargs
__initenv
__p__acmdln
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_chdir
_errno
_findclose
_fileno
_fstat
_getcwd
_initterm
_iob
_mkdir
_onexit
_rmdir
_vsnprintf
_wfindfirst
_wfindnext
_wfopen
_wspawnvp
abort
acos
atoi
calloc
clock
exit
fclose
feof
fprintf
fputs
fread
free
fseek
ftell
fwrite
localeconv
malloc
perror
memcmp
memmove
memset
realloc
remove
rename
signal
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strlen
strncat
strncmp
strncpy
strspn
strstr
strtol
strtoul
time
vfprintf

shell32

DragAcceptFiles
DragFinish
DragQueryFileW

user32

AdjustWindowRect
CloseClipboard
CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
EmptyClipboard
GetClipboardData
GetDC
GetKeyState
GetMessageTime
GetSystemMetrics
GetWindowLongW
IsIconic
LoadCursorW
LoadImageW
MessageBoxA
OpenClipboard
PeekMessageW
RegisterClassW
ReleaseCapture
ReleaseDC
SendMessageW
SetCapture
SetClipboardData
SetForegroundWindow
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
TranslateMessage
ValidateRect

ws2_32

WSAGetLastError
WSAStartup
__WSAFDIsSet
accept
bind
closesocket
connect
gethostbyname
getsockname
getsockopt
htons
ioctlsocket
recv
recvfrom
select
send
setsockopt
shutdown
socket

Sections

.text
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ikatube/mascot/korone300.png
.png
ikatube/mascot/oscar200.png
.png
ikatube/themes/ikatube_colortheme_bocchi.json

Sharing

General

Malware Config

Signatures

Files

b0e7727fbe6ad2b085281ef1b48cd221

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

gdi32

imm32

kernel32

msvcrt

shell32

user32

ws2_32

Sections

.text Size: 367KB - Virtual size: 367KB

.data Size: 25KB - Virtual size: 24KB

.rdata Size: 37KB - Virtual size: 36KB

.bss Size: - Virtual size: 11KB

.idata Size: 4KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 48B

.tls Size: 512B - Virtual size: 8B

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 367KB - Virtual size: 367KB

.data
Size: 25KB - Virtual size: 24KB

.rdata
Size: 37KB - Virtual size: 36KB

.bss
Size: - Virtual size: 11KB

.idata
Size: 4KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 48B

.tls
Size: 512B - Virtual size: 8B

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 9KB - Virtual size: 8KB