0b1e01ac1aaeafc609c27ae8ea903ad6cc2fe77084a90a6cfdef1794042a761fN[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

0b1e01ac1aaeafc609c27ae8ea903ad6cc2fe77084a90a6cfdef1794042a761fN.exe
Size

644KB
MD5

73cd0edbfc8b247b3ef93380e3149290
SHA1

0c95351f4474b389822ce74a9e671b4657dec0b3
SHA256

0b1e01ac1aaeafc609c27ae8ea903ad6cc2fe77084a90a6cfdef1794042a761f
SHA512

8335160c8b1cc0580c242f05017b546250d604e01bb1443e7d7cf089206733c3673a631b480eed956e43835ad6b4b94f28ded399da5502a29abf23e54b48b58c
SSDEEP

6144:THET7YCN/8J0AhicMVv4kIUPk1OSChe5GMPSk7y/DG:r4Y0eogkIUPR9hNkH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b1e01ac1aaeafc609c27ae8ea903ad6cc2fe77084a90a6cfdef1794042a761fN.exe

Files

0b1e01ac1aaeafc609c27ae8ea903ad6cc2fe77084a90a6cfdef1794042a761fN.exe
.exe windows:5 windows x86 arch:x86

2601938d30920b2060f269fc56d53692

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
lstrcpynW
lstrcpyW
lstrcmpiW
lstrcatW
WritePrivateProfileStringW
WriteFile
WaitForSingleObject
WaitForMultipleObjects
UnhandledExceptionFilter
TerminateThread
TerminateProcess
SystemTimeToFileTime
Sleep
SetUnhandledExceptionFilter
SetEvent
SetConsoleScreenBufferSize
ResetEvent
QueryPerformanceCounter
OutputDebugStringW
Module32Next
LockResource
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
IsBadWritePtr
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
Heap32ListNext
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GlobalAlloc
GetWindowsDirectoryW
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetStdHandle
GetStartupInfoW
GetProcessHeap
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleHandleW
GetModuleHandleA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCPInfo
FreeLibrary
FreeConsole
AllocConsole
FormatMessageW
FindResourceW
ExpandEnvironmentStringsW
EnumResourceTypesW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateThread
CreateFileW
CreateEventW
CreateDirectoryW
CloseHandle

user32

SendMessageW
SendDlgItemMessageA
ScrollWindowEx
ScreenToClient
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterWindowMessageA
RegisterClassW
RegisterClassExW
RegisterClassExA
RedrawWindow
PtInRect
PostMessageW
PeekMessageW
OffsetRect
ModifyMenuW
MessageBoxW
MessageBoxA
MessageBeep
MapWindowPoints
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
KillTimer
IsWindowVisible
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageW
InvertRect
InvalidateRect
IntersectRect
InsertMenuW
GetWindowTextW
GetWindowRect
GetWindowLongW
GetWindow
GetTabbedTextExtentW
GetSystemMetrics
GetSystemMenu
GetSysColor
GetSubMenu
GetParent
GetNextDlgGroupItem
GetMenuStringW
SetActiveWindow
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuInfo
GetMenu
GetLastActivePopup
GetKeyboardLayoutNameW
GetKeyState
GetGUIThreadInfo
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetClientRect
GetClassInfoW
GetActiveWindow
FindWindowW
FindWindowExW
FillRect
EqualRect
EndPaint
EndMenu
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawFocusRect
DestroyWindow
DestroyMenu
DeleteMenu
DeferWindowPos
DefWindowProcW
DdeQueryStringW
DdeKeepStringHandle
DdeInitializeA
CreateWindowExW
CreatePopupMenu
CreateDialogIndirectParamA
CopyRect
SetCapture
SetClassLongW
SetCursor
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenuDefaultItem
SetMenuItemInfoW
SetRect
SetRectEmpty
SetTimer
SetWindowLongW
SetWindowPos
ShowCaret
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TrackPopupMenuEx
UnloadKeyboardLayout
UpdateWindow
ValidateRect
WaitMessage
WinHelpW
mouse_event
LoadIconA
GetCapture
CopyImage
ClientToScreen
CheckMenuRadioItem
CheckMenuItem
CharPrevW
CharNextW
CallWindowProcW
GetClipboardOwner
AnyPopup
CreateMenu
CloseClipboard
GetClipboardSequenceNumber
GetCaretBlinkTime
LoadCursorFromFileA
GetMenuState
wvsprintfW
BeginPaint
BeginDeferWindowPos
AppendMenuW
SetWinEventHook

gdi32

GdiGetSpoolMessage
GdiPrinterThunk
GetCharABCWidthsFloatW
GetCharWidth32W
GetDCOrgEx
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetDeviceGammaRamp
GetETM
GetEnhMetaFileDescriptionA
GetMapMode
GetMetaFileBitsEx
GetObjectW
GetPaletteEntries
GetPixel
GetStockObject
GetStretchBltMode
GetStringBitmapA
GetSystemPaletteEntries
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointW
GdiGetDevmodeForPage
LineTo
PATHOBJ_vEnumStart
PatBlt
PtInRegion
RealizePalette
Rectangle
ResizePalette
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetDCBrushColor
SetICMMode
SetMapMode
SetPixel
SetPolyFillMode
SetTextColor
SetViewportOrgEx
SetVirtualResolution
SetWindowExtEx
StretchBlt
TextOutW
UpdateICMRegKeyW
bMakePathNameW
GdiConvertFont
GdiComment
ExtTextOutW
ExtFloodFill
EudcUnloadLinkW
EngMultiByteToWideChar
EngDeletePath
DeviceCapabilitiesExA
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreatePolygonRgn
CreatePen
CreatePalette
CreateHalftonePalette
CreateFontIndirectW
CreateDIBitmap
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmapIndirect
CreateBitmap
Chord
BitBlt
GetTransform
AddFontResourceA
GetObjectType
GetDCPenColor
GetEnhMetaFileW
GetTextColor
GetSystemPaletteUse
UpdateColors
GetGraphicsMode
GetLayout
GetROP2
WidenPath
PathToRegion
SwapBuffers
GetEnhMetaFileA
SaveDC
UnrealizeObject
SetMetaRgn
GetFontLanguageInfo
GetPolyFillMode
GetTextAlign
StrokePath
GetTextCharacterExtra
GetTextCharset
GetPixelFormat
gdiPlaySpoolStream
AddFontResourceW

comdlg32

GetFileTitleA

advapi32

RegSetValueW
RegOpenKeyW
FreeSid
GetUserNameW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExW

shell32

ExtractIconExA
ShellExecuteW
ShellExecuteExW
ShellExecuteA
SHPathPrepareForWriteW
SHIsFileAvailableOffline
SHInvokePrinterCommandW
SHGetSpecialFolderPathW
DoEnvironmentSubstW
DragFinish
DragQueryFile
DragQueryFileA
DragQueryFileAorW
DuplicateIcon
ExtractAssociatedIconA
ExtractIconA
Shell_NotifyIconW
ExtractIconW
SHAppBarMessage
SHBrowseForFolderW
SHGetDataFromIDListA
SHGetFolderLocation
SHGetFolderPathW
SHGetPathFromIDList
SHGetPathFromIDListW
SHGetSpecialFolderPathA

ole32

CoInitialize
CoInitializeEx
CoTaskMemFree
CoUninitialize
OleInitialize
CoCreateInstance

shlwapi

StrChrA
StrChrIA
StrChrIW
StrCmpNW
StrRChrA
StrStrA
PathIsUNCA
StrStrIA

comctl32

ImageList_AddMasked
ImageList_Draw
_TrackMouseEvent
InitCommonControlsEx
ImageList_SetOverlayImage
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_DrawEx
CreateToolbarEx
ImageList_Destroy

msvcrt

_itow
wcstoul
wcsncpy
wcslen
wcscpy
wcscmp
wcschr
_XcptFilter
__CxxFrameHandler
__dllonexit
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wgetmainargs
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_ltow
_onexit
_purecall
_snwprintf
_wcmdln
_wcsdup
_wcsicmp
_wcsnicmp
_wtoi
_wtol
exit
free
iswctype
memmove
swprintf
towupper

Sections

.text
Size: 515KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2601938d30920b2060f269fc56d53692

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

comctl32

msvcrt

Sections

.text Size: 515KB - Virtual size: 515KB

.rdata Size: 111KB - Virtual size: 111KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 2KB - Virtual size: 1KB

We care about your privacy.

.text
Size: 515KB - Virtual size: 515KB

.rdata
Size: 111KB - Virtual size: 111KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 2KB - Virtual size: 1KB