1c3c36cbfd76fd57ecd8996d7702c596

Sharing

Copy URL Twitter E-mail

General

Target

1c3c36cbfd76fd57ecd8996d7702c596
Size

266KB
MD5

1c3c36cbfd76fd57ecd8996d7702c596
SHA1

0f3b25726412fed3c19ab2886a4ab804267d47b7
SHA256

dc5b933a2fc4ea801f3b608fd7cbc5e2e158fc36b645eebb330cd574c9ea997c
SHA512

30bc8ee5f7586dc7e808cc5f62e42202cab08f9a53dcca550db9efdbd7f0551d1fe62598051ea5fe3812881615c77ecb19e6a9e483a11a702df60f283f659a74
SSDEEP

6144:SeyMe+Y7Fl+Bu7INeg4wBaaLtM5zxZevaD49A7:SMY7FkNelraGzMA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c3c36cbfd76fd57ecd8996d7702c596

Files

1c3c36cbfd76fd57ecd8996d7702c596
.exe windows:4 windows x86 arch:x86

ee36218e8c26b6bf28199717eb0297e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

ord2

kernel32

HeapReAlloc
GetCPInfo
HeapSize
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
UnhandledExceptionFilter
TerminateProcess
GetFileType
GetStdHandle
HeapDestroy
HeapCreate
FreeEnvironmentStringsW
SetUnhandledExceptionFilter
VirtualAlloc
IsBadReadPtr
IsBadWritePtr
SetHandleCount
ExitProcess
GetEnvironmentStringsW
VirtualFree
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
HeapAlloc
GetCurrentThreadId
lstrcatA
LockResource
LoadResource
FindResourceA
GlobalFree
GlobalUnlock
GlobalLock
CloseHandle
GlobalAlloc
GlobalDeleteAtom
HeapFree
RaiseException
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
SetErrorMode
GlobalGetAtomNameA
GlobalAddAtomA
GetModuleFileNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
WritePrivateProfileStringA
lstrcpyA
GetProcessVersion
lstrcmpA
GetCurrentThread
LCMapStringA
SizeofResource
InterlockedDecrement
MulDiv
GetVersion
LCMapStringW
FreeLibrary
LoadLibraryA
GetProfileStringA
GetProcAddress
TlsGetValue
GlobalFlags
lstrcmpiA
EnterCriticalSection
LocalReAlloc
TlsSetValue
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
LocalAlloc
InitializeCriticalSection
LocalFree
SetLastError
lstrcpynA
GetLastError
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
IsBadCodePtr

user32

MessageBoxA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
MoveWindow
ShowWindow
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
CharUpperA
LoadStringA
DestroyMenu
GetClassNameA
ClientToScreen
GetDesktopWindow
GetSysColorBrush
ShowOwnedPopups
WindowFromPoint
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
IntersectRect
InflateRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
PostMessageA
UpdateWindow
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
DispatchMessageA
PeekMessageA
GetFocus
SetActiveWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
GetTopWindow
IsWindowEnabled
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
SetPropA
CallNextHookEx
UnhookWindowsHookEx
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetPropA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SetCursor
IsIconic
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
GetSystemMetrics
LoadIconA
LoadCursorA
EnableWindow
GetParent
SendMessageA
GetWindowRect
ScreenToClient
PtInRect
KillTimer
SetTimer
SetCapture
ReleaseCapture
InvalidateRect
SetWindowRgn
LoadBitmapA
SetWindowTextA
IsDialogMessageA
IsWindow
SetFocus
GetCapture
CharNextA
OffsetRect
IsWindowUnicode
HideCaret
UnregisterClassA
DefDlgProcA
ShowCaret
DrawFocusRect
ExcludeUpdateRgn

gdi32

GetRgnBox
CreateCompatibleDC
SelectObject
BitBlt
SetTextColor
SetBkColor
GetObjectA
DeleteDC
CreateBitmap
RestoreDC
GetStockObject
SaveDC
SetBkMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetClipBox
SetWindowExtEx
IntersectClipRect
CreatePolygonRgn
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPointA
PatBlt
CreateDIBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA

shell32

DragFinish
DragQueryFileA
ShellExecuteA

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee36218e8c26b6bf28199717eb0297e6

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 20KB - Virtual size: 20KB

.data Size: 9KB - Virtual size: 24KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 113KB - Virtual size: 113KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 20KB - Virtual size: 20KB

.data
Size: 9KB - Virtual size: 24KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 113KB - Virtual size: 113KB

.reloc
Size: 18KB - Virtual size: 18KB