8cba262f4687210dcbae5f5bf4e06a9312c27c5f69b844b58271ee2dd7f3d7b1

Sharing

Copy URL Twitter E-mail

General

Target

8cba262f4687210dcbae5f5bf4e06a9312c27c5f69b844b58271ee2dd7f3d7b1
Size

6.5MB
MD5

3c9297ea96901bd417c7a569d1d6e763
SHA1

525093778b2c36f4df07f70224ae19cc7d417465
SHA256

8cba262f4687210dcbae5f5bf4e06a9312c27c5f69b844b58271ee2dd7f3d7b1
SHA512

abbb0c75bf03aa387e47293d198e993635477f2072a0444514f5424eec19fe2d395636e3740b3adc2effb30ee09bdf8f52230fbbf5068d92494aeb4251799ce6
SSDEEP

98304:nVkkoHvrMqBbp5OYYWq7LQ5vyXU39MaDkhP+MKQM0ocdBqWGKeGu8rNqMuc1hD:WdHvlj4YK/NE39zDkhrKnnU5b7V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cba262f4687210dcbae5f5bf4e06a9312c27c5f69b844b58271ee2dd7f3d7b1

Files

8cba262f4687210dcbae5f5bf4e06a9312c27c5f69b844b58271ee2dd7f3d7b1
.dll windows:6 windows x86 arch:x86

7b4983dc60f39c9da4d94c5089298637

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetModuleFileNameW
WriteFile
GetStdHandle
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LoadLibraryExW
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetFileAttributesExW
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
SetEnvironmentVariableA
DeleteFileW
FileTimeToLocalFileTime
WinExec
GetThreadPriority
DeviceIoControl
VirtualAlloc
GetThreadLocale
GetCPInfoExW
GetTempPathW
SetThreadPriority
LoadLibraryW
GetPrivateProfileStringW
SystemTimeToTzSpecificLocalTime
SetFilePointer
EnumResourceNamesW
ResumeThread
GetSystemInfo
VerifyVersionInfoW
GetLastError
GetTempFileNameW
GetPrivateProfileIntW
WritePrivateProfileStringW
lstrcpynW
GetFileType
LCMapStringW
CompareStringW
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
HeapFree
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
GetCurrentThreadId
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
CreateFileW

user32

CreateDialogParamA
SetKeyboardState
IsZoomed
GetParent
CreateMenu
ModifyMenuW
SetPropA
GetWindowLongA
GetClassNameW
ReleaseDC
EnableMenuItem
EndDialog
SetMenu
SendMessageW
SetMenuItemInfoW
GetWindowLongW
GetClientRect
GetKeyboardState
PostQuitMessage
IsIconic
PostMessageW
GetKeyState
GetMenuStringW
BeginPaint
GetDoubleClickTime
GetDC
SetDlgItemInt
SetWindowLongA
UnionRect
GetWindowTextW
SetScrollPos
MonitorFromWindow
GetDesktopWindow
IsDlgButtonChecked
FlashWindow
InsertMenuW
SetDlgItemTextW
GetCaretBlinkTime
ValidateRect
GetMonitorInfoW
GetMessageTime

gdi32

DeleteDC
CreateFontIndirectW
CreateFontIndirectA
CreateHalftonePalette
CreatePalette
DeleteObject
PolyPolyline
GetCurrentPositionEx
GetCharABCWidthsFloatA
GetSystemPaletteEntries
SetTextAlign
GetStockObject
ExtCreatePen
PatBlt
SetTextColor
SetDIBColorTable
SetPixel
SelectClipRgn
CreateCompatibleBitmap
GetObjectType
SetPaletteEntries
CreatePen
RoundRect
GetPixel
RestoreDC
TextOutA
BitBlt

comdlg32

GetSaveFileNameW

advapi32

CloseServiceHandle
RegLoadKeyW
ChangeServiceConfigW
RegSetValueExW

shell32

ShellExecuteW

oleaut32

SafeArrayPtrOfIndex
VariantChangeType
SafeArrayGetLBound
SysReAllocStringLen
VariantInit

Sections

.text
Size: 579KB - Virtual size: 578KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b4983dc60f39c9da4d94c5089298637

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 579KB - Virtual size: 578KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 5KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 579KB - Virtual size: 578KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 5KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 13KB