8fbce2e219dc19a123f367c6decec363f85b02e09e7bd675afa978b7de538541N

Sharing

Copy URL

Twitter E-mail

General

Target

8fbce2e219dc19a123f367c6decec363f85b02e09e7bd675afa978b7de538541N
Size

102KB
MD5

759fc2bd1d1905a916d97685f230e9a0
SHA1

582ba5f601f43bdfe575562932147c8bc3af79a5
SHA256

8fbce2e219dc19a123f367c6decec363f85b02e09e7bd675afa978b7de538541
SHA512

3789dc69c2a4d0cad2cdcfa5899bcd7e754a66a4e8da77f55e5e1bf9e5eab3d5af646613c65c1cd8571a250853070ed5a50da0945dc4518d3201c8789d70e90f
SSDEEP

1536:h54KBZO54lTzarAGkx607UBEKEKCeC6T5S7JauR2kP8dG4/ia6I6:h5lZOKTmkx6doKCe09au4OLa69

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8fbce2e219dc19a123f367c6decec363f85b02e09e7bd675afa978b7de538541N

Files

8fbce2e219dc19a123f367c6decec363f85b02e09e7bd675afa978b7de538541N
.exe windows:5 windows x86 arch:x86

7245202fbd4586dc74a328310a4640e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxParamW
SetCursor
SetDlgItemTextW
SystemParametersInfoW
EndDialog
PostMessageW
ReleaseDC
LoadBitmapW
WinHelpW
RegisterClipboardFormatW
EnableWindow
GetParent
GetDlgItem
LoadCursorW
LoadIconW
GetDlgItemTextA
InsertMenuItemW
LoadImageW
MessageBoxW
SetWindowLongW
GetWindowLongW
SendMessageW
SetFocus
GetDC
LoadStringW
SendDlgItemMessageW
SetWindowTextW
wsprintfW

msvcrt

wcsrchr
_adjust_fdiv
wcslen
?terminate@@YAXXZ
__dllonexit
wcstoul
_except_handler3
wcsstr
_initterm
_wcsupr
memmove
__RTDynamicCast
??3@YAXPAX@Z
_wcsicmp
wcschr
free
malloc
??1type_info@@UAE@XZ
wcscat
wcscmp
??2@YAPAXI@Z
mbstowcs
_onexit
wcscpy
vswprintf

certcli

CAFindCertTypeByName
CASetCertTypeKeySpec
CASetCertTypeProperty
CAEnumCertTypesForCA
CACloseCA
CAEnumNextCertType
CAGetCertTypeExtensions
CAEnumCertTypes
CAFreeCertTypeExtensions
CAFindByName
CAGetCertTypeFlags
CACloseCertType
CAFreeCAProperty
CACertTypeSetSecurity
CAGetCertTypeProperty
CARemoveCACertificateType
CAFreeCertTypeProperty
CAGetCAProperty
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CASetCertTypeExtension
CASetCertTypeFlags
CACertTypeGetSecurity
CAUpdateCertType
CAAddCACertificateType
CAUpdateCA
CACreateCertType

kernel32

GlobalUnlock
SetLastError
GetTickCount
GetStartupInfoA
lstrcpyW
InterlockedIncrement
GetDateFormatW
LocalReAlloc
GetSystemWindowsDirectoryW
GetSystemDefaultLangID
FormatMessageW
CloseHandle
lstrlenW
LoadLibraryW
DeleteCriticalSection
lstrcmpiW
FileTimeToSystemTime
LocalFree
GetCurrentProcess
GetComputerNameW
WideCharToMultiByte
QueryPerformanceCounter
GlobalFree
GetLastError
OutputDebugStringA
GetModuleFileNameW
CreateFileW
OutputDebugStringW
GetModuleHandleA
InterlockedDecrement
GetCPInfo
RemoveDirectoryA
IsBadReadPtr
GetProcAddress
InitializeCriticalSection
GlobalAlloc
GlobalLock
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
SetUnhandledExceptionFilter
GetEnvironmentStringsW

advapi32

RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7245202fbd4586dc74a328310a4640e3

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 122KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 122KB

.rsrc
Size: 25KB - Virtual size: 25KB