1c010ecb1de168a932749fbb2ab80883

Sharing

Copy URL Twitter E-mail

General

Target

1c010ecb1de168a932749fbb2ab80883
Size

353KB
MD5

1c010ecb1de168a932749fbb2ab80883
SHA1

64dc756486d9376a55f2708900c0c62042ad64c9
SHA256

77e157fce53b9391f6fdf75613706346abc322ad149c1df4d781b2b57e8d99df
SHA512

81ce679c5aa19d9efcc7a2c8a9830484fcffd77f2ae836c19dbb9570d49bbd7eb4b1d76f837118c92c8881ef16d8180ce1e7353c40b812ea65ac8121372c6f44
SSDEEP

6144:hY6InNLIfqcWIf2YwV2OOlK9B+fPFH2f8+v6uamSyAfJe1kM:CRFIfnEUKuPFH2Ejpfo1k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c010ecb1de168a932749fbb2ab80883

Files

1c010ecb1de168a932749fbb2ab80883
.dll windows:4 windows x86 arch:x86

1fe5d9e01ceae00c9fd7e0ec294ba819

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SafeArrayCreate
GetErrorInfo
OleLoadPicture
SysFreeString

ole32

WriteClassStm
CoGetObjectContext
CoUninitialize
CreateStreamOnHGlobal
CreateOleAdviseHolder
CLSIDFromString
ReleaseStgMedium
OleRun

kernel32

VirtualAllocEx
GlobalAlloc
GetSystemDefaultLangID
FreeResource
VirtualAlloc
LocalAlloc
GetUserDefaultLCID
GetVersionExA
GetLastError
GetCurrentProcessId
CreateFileA
GetCurrentThread
lstrcatA
LoadLibraryA
GetACP
GetCurrentThreadId
SetHandleCount
LoadLibraryExA
GetCommandLineA
GetOEMCP
GetStdHandle
lstrlenA
LocalFree
GetStringTypeW
GetProcessHeap
GetTickCount
lstrcpynA
RtlMoveMemory
GetCurrentProcess
WaitForSingleObject
SetLastError
lstrcpyA
GetFileSize
HeapAlloc

Sections

CODE
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 127B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fe5d9e01ceae00c9fd7e0ec294ba819

Headers

File Characteristics

Imports

oleaut32

ole32

kernel32

Sections

CODE Size: 52KB - Virtual size: 51KB

.rdata Size: 173KB - Virtual size: 173KB

.edata Size: 93KB - Virtual size: 93KB

.data Size: 29KB - Virtual size: 29KB

BSS Size: 1KB - Virtual size: 221KB

.tls Size: 512B - Virtual size: 127B

.reloc Size: 1024B - Virtual size: 644B

CODE
Size: 52KB - Virtual size: 51KB

.rdata
Size: 173KB - Virtual size: 173KB

.edata
Size: 93KB - Virtual size: 93KB

.data
Size: 29KB - Virtual size: 29KB

BSS
Size: 1KB - Virtual size: 221KB

.tls
Size: 512B - Virtual size: 127B

.reloc
Size: 1024B - Virtual size: 644B