cd5cbc4d8b6b9853b2cdbaaad8d2c3eef3aefaf721e3ce2d13623d69328ddf74

Sharing

Copy URL Twitter E-mail

General

Target

cd5cbc4d8b6b9853b2cdbaaad8d2c3eef3aefaf721e3ce2d13623d69328ddf74
Size

7.7MB
MD5

7d64d52b90eb674db4b46cb5f7d94d49
SHA1

16b7b909db250e2d8b31ac9f2240add8225f19bd
SHA256

cd5cbc4d8b6b9853b2cdbaaad8d2c3eef3aefaf721e3ce2d13623d69328ddf74
SHA512

de6e0c35a7ac3a1ba50b3c0c13068a23d76bcb3a29a13e0aa019cc1c99c42edfccd659bd3ded9e71a66b676cf205afb4721ebafcb9dca96fc125c967824a29a5
SSDEEP

196608:WZUHPcPhCCaKmc7Ffq/bn7lxoOLjgWP2zB7QIewD/fEC4kp:5kPhfxfq/bnxxzLjgW+zB700/Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd5cbc4d8b6b9853b2cdbaaad8d2c3eef3aefaf721e3ce2d13623d69328ddf74

Files

cd5cbc4d8b6b9853b2cdbaaad8d2c3eef3aefaf721e3ce2d13623d69328ddf74
.exe windows x86

a4a0b25b8ee963968fabf7bb8f852e07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

send

kernel32

GetVersion
GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

IsIconic
CharUpperBuffW

gdi32

ExtTextOutA

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

ShellExecuteA

ole32

CLSIDFromProgID

oleaut32

SafeArrayGetUBound

comctl32

ImageList_GetImageCount

comdlg32

ChooseColorA

Sections

Size: - Virtual size: 747KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 548KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4a0b25b8ee963968fabf7bb8f852e07

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

comdlg32

Sections

Size: - Virtual size: 747KB

Size: - Virtual size: 209KB

Size: - Virtual size: 344KB

Size: - Virtual size: 3.2MB

Size: 4KB - Virtual size: 2KB

Size: 5.5MB - Virtual size: 5.5MB

Size: 8KB - Virtual size: 7KB

Size: 1.7MB - Virtual size: 1.7MB

Size: 4KB - Virtual size: 4KB

Size: 548KB - Virtual size: 545KB

Size: 8KB - Virtual size: 7KB