8f217977365b19ab984fdd410b5afb2f5f0897b45c88512ea01e08b06f4c2215N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

8f217977365b19ab984fdd410b5afb2f5f0897b45c88512ea01e08b06f4c2215N.exe
Size

100KB
MD5

90ff8c49cdaa05aca288e2f85cf4b930
SHA1

15d6c4116534398c03ecb1ca2f47106289ca1e32
SHA256

8f217977365b19ab984fdd410b5afb2f5f0897b45c88512ea01e08b06f4c2215
SHA512

a57d8dc14f6aee245b1a38308dd69a75820f505b6beb83e0b1a36e02220009654add530a5b66c2b15e61f906122f0fcebf51f8861a06f2e34d98625a1ccaee54
SSDEEP

3072:rb8eh5TyMK8uuB2qI65gD+vzur9zzMxoelvWVLmNeQR9ss:seh5Tydusgq+v6JE+Z5mNfbss

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f217977365b19ab984fdd410b5afb2f5f0897b45c88512ea01e08b06f4c2215N.exe

Files

8f217977365b19ab984fdd410b5afb2f5f0897b45c88512ea01e08b06f4c2215N.exe
.exe windows:5 windows x86 arch:x86

51c9d9018b231470e86ab6fb8d620a54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
SetWindowLongW
EndDialog
LoadStringW
PostMessageW
SetCursor
ReleaseDC
LoadIconW
DialogBoxParamW
RegisterClipboardFormatW
GetDlgItemTextA
SendDlgItemMessageW
SetDlgItemTextW
SendMessageW
GetWindowLongW
GetParent
LoadCursorW
LoadBitmapW
GetDlgItem
GetDC
SetFocus
LoadImageW
InsertMenuItemW
SetWindowTextW
MessageBoxW
wsprintfW
SystemParametersInfoW
WinHelpW

msvcrt

mbstowcs
wcsstr
wcscpy
_wcsupr
??1type_info@@UAE@XZ
__RTDynamicCast
wcsrchr
wcscat
_onexit
vswprintf
_wcsicmp
?terminate@@YAXXZ
_initterm
_adjust_fdiv
??2@YAPAXI@Z
wcschr
memmove
__dllonexit
??3@YAXPAX@Z
free
_except_handler3
wcstoul
wcslen
wcscmp
malloc

certcli

CAUpdateCertType
CACloseCertType
CASetCertTypeProperty
CAFreeCAProperty
CASetCertTypeKeySpec
CAGetCertTypeKeySpec
CAEnumCertTypesForCA
CAGetCertTypeFlags
CAFindByName
CAUpdateCA
CAGetCertTypeProperty
CAEnumNextCertType
CACertTypeGetSecurity
CASetCertTypeFlags
CAGetCertTypeExtensions
CARemoveCACertificateType
CAAddCACertificateType
CAGetCAProperty
CAFindCertTypeByName
CAFreeCertTypeExtensions
CASetCertTypeExtension
CAEnumCertTypes
CACreateCertType
CACloseCA
CACertTypeSetSecurity
CAFreeCertTypeProperty
CAGetCertTypePropertyEx

kernel32

FileTimeToSystemTime
GlobalUnlock
InterlockedDecrement
GetCurrentProcess
GlobalLock
OutputDebugStringW
CreateFileW
GlobalAlloc
GetCPInfo
RemoveDirectoryA
lstrcpyW
GetLastError
WideCharToMultiByte
GetDateFormatW
GlobalFree
DeleteCriticalSection
GetTickCount
InitializeCriticalSection
lstrlenW
IsBadReadPtr
lstrcmpiW
GetSystemWindowsDirectoryW
InterlockedIncrement
QueryPerformanceCounter
LoadLibraryW
SetUnhandledExceptionFilter
FileTimeToLocalFileTime
GetStartupInfoA
OutputDebugStringA
LocalReAlloc
LocalFree
GetComputerNameW
CloseHandle
SetLastError
GetProcAddress
GetModuleHandleA
GetEnvironmentStringsW
FormatMessageW
GetSystemDefaultLangID
GetModuleFileNameW
GetSystemTimeAsFileTime

advapi32

RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteKeyW
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51c9d9018b231470e86ab6fb8d620a54

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 82KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 82KB

.rsrc
Size: 24KB - Virtual size: 24KB