0c74b282ba29c04c1f4c54c92dc6954b

Sharing

Copy URL

Twitter E-mail

General

Target

0c74b282ba29c04c1f4c54c92dc6954b
Size

121KB
MD5

0c74b282ba29c04c1f4c54c92dc6954b
SHA1

522bed4fbd8ff3ab4bae9efa2bb3dd4a3d4ed785
SHA256

88f4f148fd420c5abaf4e5ae92914cc3be611d3aceed103e6a9e175aec6a7e2b
SHA512

dca5f81a1dce2021203a5042484ea910fe8c9096947ef33d84e0bd3d269651a2af971df22359e5c06ae6e9c47ca3889bb4b50b5e313686b837c4aee3fd76dbda
SSDEEP

3072:Ny9hznY91+nhbkgistg76ziQNwTuBHE4k4vo:Ny9hnYr+njistmmaT67v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c74b282ba29c04c1f4c54c92dc6954b

Files

0c74b282ba29c04c1f4c54c92dc6954b
.exe windows:4 windows x86 arch:x86

a479fe26b8ce9bd0f1798743bdd0fe59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GlobalAlloc
GetLastError
WriteProfileStringA
DeleteFiber
OpenSemaphoreA
GetProcAddress
CloseHandle
GetPrivateProfileIntA
GlobalUnfix
GlobalUnlock
GetExitCodeThread
GetDiskFreeSpaceA
GetEnvironmentVariableA
GetTempPathA
GetTickCount
WideCharToMultiByte
GetCommandLineA
GetThreadPriority
UnmapViewOfFile
GlobalUnWire
FlushConsoleInputBuffer
FlushFileBuffers
OpenFileMappingA
VirtualQuery
GetThreadPriorityBoost
FreeLibrary
DisconnectNamedPipe
LocalCompact
SignalObjectAndWait
GetProcessWorkingSetSize
ClearCommBreak
OutputDebugStringA
GetThreadContext
ReleaseSemaphore
GetFileTime
GetVolumeInformationA
GetWindowsDirectoryA
IsSystemResumeAutomatic
GetThreadLocale
ResumeThread
OpenMutexA
OpenProcess
CreateSemaphoreA
GetProcessTimes
FindNextChangeNotification
GetFullPathNameA
SetFileTime
GlobalAddAtomA
LoadLibraryExA
ReadConsoleA
GetLongPathNameA
GlobalWire
GetCurrentThreadId
Beep
GetCommConfig
FindResourceExA
HeapCreate
SetLastError
FindAtomA
FindClose
ResetEvent
GetCommTimeouts
GetProfileIntA
RemoveDirectoryA
HeapFree
AddAtomA
ClearCommError
GetCPInfo
GetPrivateProfileStructA
GetProcessAffinityMask
GetSystemDefaultUILanguage
PulseEvent
GetProfileSectionA
MoveFileExA
WriteFile
GetEnvironmentStrings
DeviceIoControl
LocalSize
ContinueDebugEvent
GetFileSize
GetUserDefaultLCID
IsValidCodePage
LoadLibraryA
Sleep
CommConfigDialogA
GetLogicalDriveStringsA
DosDateTimeToFileTime
SizeofResource
GlobalSize
GetConsoleCursorInfo
CreateIoCompletionPort
HeapDestroy
GetLogicalDrives
DuplicateHandle
GetPrivateProfileSectionNamesA
DefineDosDeviceA
CreateEventA
FindResourceA
CreateWaitableTimerA
UpdateResourceA
IsBadWritePtr
CancelIo
QueryDosDeviceA
IsBadHugeWritePtr
CreateFiber
GetCPInfoExA
GlobalFindAtomA
LoadResource
GetSystemDirectoryA
IsProcessorFeaturePresent
IsDebuggerPresent
VirtualProtect
MultiByteToWideChar
WaitForMultipleObjects
FormatMessageA
GlobalFree
VirtualFree
GetExitCodeProcess
GetModuleFileNameA
GetVersion
LocalFree
WritePrivateProfileStringA
QueueUserAPC
FlushViewOfFile
FoldStringA
WaitForSingleObject
GetModuleHandleA
WritePrivateProfileSectionA
GetCurrentThread
HeapReAlloc
OpenEventA
IsBadHugeReadPtr
GetBinaryTypeA
FreeResource
ReadFile
CreateDirectoryExA
GetStartupInfoA

msvcrt

time
rand
__set_app_type
_controlfp
exit
strstr

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a479fe26b8ce9bd0f1798743bdd0fe59

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 106KB - Virtual size: 106KB

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 106KB - Virtual size: 106KB