dbe65bd95297daadf44f2928a02d6f776a0796cbaeaf65497fee5a9e065dc7a1[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

dbe65bd95297daadf44f2928a02d6f776a0796cbaeaf65497fee5a9e065dc7a1.exe
Size

583KB
MD5

ce5319f6516c8b5e37532a30df7c52e0
SHA1

dbb5b6bb098b05ff34fd4bade741986ca7cce9a6
SHA256

dbe65bd95297daadf44f2928a02d6f776a0796cbaeaf65497fee5a9e065dc7a1
SHA512

b61a8aa9ae9382189633d14bd2237ea56206061ac24636e9bd5a5a9490024e63525e9f3957eea122bc87adeba45749bdb1ac75e2d399ebb8572ea939ee10f5f0
SSDEEP

3072:+XYCwCEfnnaH6/Yi+BqGvu9PXqxt1tQPeygCi5OVByh94etZjAdKk86O5ghK8KBo:4dwCOaHYH+VXtUe7Cs0ITPAdb86d5Ki

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbe65bd95297daadf44f2928a02d6f776a0796cbaeaf65497fee5a9e065dc7a1.exe

Files

dbe65bd95297daadf44f2928a02d6f776a0796cbaeaf65497fee5a9e065dc7a1.exe
.exe windows:5 windows x86 arch:x86

51f4141aaa939cc639b7f08c8fbd3214

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetPrivateProfileStringW
GetProcAddress
GetProcessHeap
GetShortPathNameW
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultLCID
GetSystemDefaultUILanguage
GetSystemDirectoryW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameW
GetTempPathW
GetThreadLocale
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultUILanguage
GetVersion
GetVersionExA
GetVersionExW
GetWindowsDirectoryW
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomW
GlobalFree
GlobalLock
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsDBCSLeadByte
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
MoveFileExW
MoveFileW
GetNumberOfConsoleInputEvents
MultiByteToWideChar
OpenProcess
PeekConsoleInputA
QueryPerformanceCounter
RaiseException
ReadConsoleInputA
ReadFile
RemoveDirectoryW
ResetEvent
ResumeThread
RtlUnwind
ScrollConsoleScreenBufferA
SearchPathW
SetConsoleCtrlHandler
SetConsoleCursorPosition
SetConsoleMode
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetLastError
SetStdHandle
SetThreadLocale
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SwitchToThread
TerminateProcess
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
VirtualQueryEx
WaitForMultipleObjects
WaitForMultipleObjectsEx
WaitForSingleObject
WideCharToMultiByte
WriteConsoleW
WriteFile
WritePrivateProfileStringW
lstrcatW
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA
lstrlenW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeThread
GetExitCodeProcess
GetEnvironmentVariableW
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeA
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryA
GetConsoleScreenBufferInfo
GetConsoleMode
GetCommandLineW
GetCommandLineA
GetCPInfoExW
GetCPInfo
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsW
ExitThread
ExitProcess
EnumSystemLocalesW
EnumSystemLocalesA
EnumCalendarInfoW
EnterCriticalSection
DuplicateHandle
DosDateTimeToFileTime
DeleteFileW
DeleteCriticalSection
CreateThread
CreateProcessW
CreateProcessA
CreateFileW
CreateFileA
CreateEventW
CreateDirectoryW
CopyFileW
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
MulDiv
Beep

user32

OpenClipboard
MessageBoxIndirectW
LoadStringW
LoadStringA
LoadImageW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindowEnabled
IsWindow
InvalidateRect
GetWindowRect
GetWindowLongW
GetSystemMetrics
GetSystemMenu
GetSysColor
GetMessagePos
GetDlgItemTextW
GetDlgItem
GetDC
GetClientRect
GetClassInfoW
FindWindowExW
PeekMessageW
ExitWindowsEx
EndPaint
EndDialog
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DispatchMessageW
DialogBoxParamW
DestroyWindow
DefWindowProcW
CreateWindowExW
CreatePopupMenu
CreateDialogParamW
CloseClipboard
CheckDlgButton
CharUpperW
CharPrevW
CharPrevA
CharNextW
CharNextA
PostQuitMessage
RegisterClassW
ScreenToClient
SendMessageTimeoutW
SendMessageW
SetClassLongW
SetClipboardData
SetCursor
SetDlgItemTextW
SetForegroundWindow
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
SystemParametersInfoW
TrackPopupMenu
wsprintfA
wsprintfW
LoadIconW
GetWindowTextLengthA
GetOpenClipboardWindow
GetMessageExtraInfo
ShowCaret
IsCharAlphaA
GetKeyboardLayout
GetListBoxInfo
AppendMenuW
BeginPaint
CallWindowProcW
GetDoubleClickTime
CloseWindowStation
GetMenu
VkKeyScanW
IsMenu
FillRect
CharLowerA

gdi32

ExtFloodFill
ExtTextOutW
GdiEndPageEMF
GdiFlush
GdiIsPlayMetafileDC
GdiPlayScript
GetBitmapBits
GetCharABCWidthsA
GetCharABCWidthsFloatW
GetCharABCWidthsI
GetCharWidth32W
GetDeviceCaps
GetEnhMetaFileA
GetGraphicsMode
GetNearestPaletteIndex
GetStringBitmapA
GetTextExtentExPointWPri
PolyTextOutA
PtInRegion
RemoveFontMemResourceEx
EngFreeModule
STROBJ_dwGetCodePage
STROBJ_vEnumStart
ScaleWindowExtEx
SelectObject
SetBkColor
SetBkMode
SetDIBitsToDevice
SetMetaFileBitsEx
SetPixel
SetPixelFormat
SetPolyFillMode
SetRectRgn
SetSystemPaletteUse
SetTextColor
GetDCBrushColor
SaveDC
UpdateColors
AddFontResourceA
CreateCompatibleDC
EngDeleteSurface
EngCreateClip
EngCreateBitmap
EngCopyBits
DrawEscape
DeleteObject
CreateRectRgnIndirect
CreatePatternBrush
CreateMetaFileA
CreateFontIndirectW
CreateDCA
CreateColorSpaceW
CreateBrushIndirect
CloseMetaFile
CloseFigure
RemoveFontResourceExA
BRUSHOBJ_hGetColorTransform

advapi32

RegQueryValueExA
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW

shell32

ShellExecuteExW
ShellAboutA
SHQueryRecycleBinA
SHPathPrepareForWriteW
SHGetSpecialFolderLocation
CommandLineToArgvW
DoEnvironmentSubstW
DragFinish
DragQueryFileAorW
ExtractAssociatedIconA
ExtractIconA
ExtractIconEx
ExtractIconExW
ExtractIconW
FindExecutableW
SHBrowseForFolderW
SHEmptyRecycleBinA
SHFileOperationW
SHFreeNameMappings
SHGetDataFromIDListA
SHGetDiskFreeSpaceExA
SHGetFileInfo
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSettings
ShellExecuteW

ole32

OleInitialize
CoTaskMemFree
CoCreateInstance
OleUninitialize

shlwapi

StrCmpNA
StrCmpNIA
StrRStrIW
StrStrIA
StrStrA

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Destroy

Sections

.text
Size: 533KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51f4141aaa939cc639b7f08c8fbd3214

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

shlwapi

comctl32

Sections

.text Size: 533KB - Virtual size: 532KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 36KB - Virtual size: 36KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 533KB - Virtual size: 532KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 1KB - Virtual size: 1KB