cbb5750f29fcf86efaba0143d4d9d9d0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

cbb5750f29fcf86efaba0143d4d9d9d0N.exe
Size

184KB
MD5

cbb5750f29fcf86efaba0143d4d9d9d0
SHA1

0d0ac8ff2840bf4d6b11bf72fb04dd425bb568f8
SHA256

654f6818920d7d4c338838fd6ee428c53f344d5de8c9354fad7de6371815fdf5
SHA512

e4965bac6f621b15fccc27dbfdb9f7dfcff0f3c9fbc6926f5bd546bdc870857b4c7c806e0205e1e22d0971951350416669cdc26021d597989c225dcbd0d9a6c8
SSDEEP

3072:W5lBfpR7pLUGTHqST7IZOOFM8haBoDR5ck2EQkAjIfuTIWlCKJquzaKBembDChc:W5zpUGTpTMM8moETrjIfiIWsrusmbe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbb5750f29fcf86efaba0143d4d9d9d0N.exe

Files

cbb5750f29fcf86efaba0143d4d9d9d0N.exe
.exe windows:4 windows x86 arch:x86

00fc9ff7094a4a5392a10d643f627ca5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strtoul
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
?raw_name@type_info@@QBEPBDXZ
_adjust_fdiv
free
calloc
strrchr
strncpy
isprint
_fullpath
strstr
toupper
sprintf
_vsnprintf
vsprintf
_strnicmp
strncmp
strcspn
strchr
_stricmp
_onexit
memmove
isspace
__CxxFrameHandler
tolower
strspn
strpbrk
__dllonexit
_splitpath
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr

kernel32

GetCurrentThread
VirtualFree
GetSystemInfo
GetCurrentDirectoryA
VirtualLock
VirtualUnlock
GetLastError
GetFileAttributesA
DeleteFileA
CloseHandle
ReadFile
GetFileSize
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
GetDiskFreeSpaceA
CreateDirectoryA
GetModuleHandleA
MoveFileA
CopyFileA
GetTempFileNameA
GetWindowsDirectoryA
SetFileTime
WriteFile
GetTickCount
SetErrorMode
Sleep
GetLocalTime
GetSystemDefaultLangID
GetTimeZoneInformation
GetDriveTypeA
GetLogicalDriveStringsA
SetLastError
SetFilePointer
SetEndOfFile
GetModuleFileNameA
CreateEventA
GetStartupInfoA
LeaveCriticalSection
EnterCriticalSection
ExitProcess
VirtualAlloc
lstrcpynA
CreateThread
DeleteCriticalSection
OutputDebugStringA
InitializeCriticalSection
HeapFree
GetProcessHeap
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetExitCodeProcess
GetCurrentProcess
GetVersion
FindClose
FindFirstFileA
FormatMessageA
HeapAlloc
SetThreadPriority
MapViewOfFile
WaitForSingleObject
SetEvent
UnmapViewOfFile
FreeResource
SizeofResource
LockResource
LoadResource
FindResourceA
GetComputerNameA
CreateFileMappingA
GetVolumeInformationA
IsBadReadPtr
IsBadWritePtr
VirtualQuery

user32

IsWindow
SetForegroundWindow
GetClassInfoExA
MessageBoxA
wsprintfA
FindWindowA
GetLastActivePopup
GetTopWindow
LoadStringA
SetClassLongA
CheckDlgButton
MoveWindow
SetFocus
IsDlgButtonChecked
SendDlgItemMessageA
GetWindowRect
GetDC
ReleaseDC
CreateDialogParamA
UpdateWindow
DialogBoxParamA
DestroyWindow
DefWindowProcA
SetWindowPos
PostQuitMessage
LoadIconA
LoadCursorA
LoadImageA
RegisterClassExA
GetSystemMetrics
CreateWindowExA
SetWindowTextA
IsWindowVisible
EnableWindow
SetTimer
GetDlgItemTextA
GetDlgItem
ShowWindow
SetDlgItemTextA
EndDialog

gdi32

GetDeviceCaps
GetStockObject

comctl32

ord17

advapi32

RegQueryValueExA
GetUserNameA
RegCreateKeyExA
RegSetValueExA
RegFlushKey
RegCloseKey
RegOpenKeyExA
RegDeleteKeyA

shell32

ShellExecuteA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00fc9ff7094a4a5392a10d643f627ca5

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comctl32

advapi32

shell32

version

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 20KB - Virtual size: 42KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 20KB - Virtual size: 42KB

.rsrc
Size: 32KB - Virtual size: 28KB