2cc3f1daa28b6ae99f2ce7ce72c2fa51

General

Target

2cc3f1daa28b6ae99f2ce7ce72c2fa51
Size

168KB
MD5

2cc3f1daa28b6ae99f2ce7ce72c2fa51
SHA1

2e21139043fb076bf9661c0e43439cbf12c43499
SHA256

007bc2f9d538800e59d082b1a2160568b8944a8b8fda1734d2e5dc348d3061fc
SHA512

793066db807eac79e71a0c00e8cb1ff375d3c29c3ea8ad2fb60bc80438b1c0267827576ae87986abda905b641dff73093f64b635c30ada71b2b0fed180d01d44
SSDEEP

3072:8VPRE8ojl1WILcIhsXu3ewm7pBcd94gWeFP:8nylF7hse3S1k45EP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cc3f1daa28b6ae99f2ce7ce72c2fa51

Files

2cc3f1daa28b6ae99f2ce7ce72c2fa51
.exe windows:4 windows x86 arch:x86

2a5237179b7ebe95bd3b69766b9dcba8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
MultiByteToWideChar
lstrlenA
lstrcatA
GetVersionExA
HeapSize
GetEnvironmentStrings
FreeEnvironmentStringsW
GetProcAddress
WideCharToMultiByte
FlushFileBuffers
SetStdHandle
LoadLibraryA
GetEnvironmentStringsW
SetHandleCount
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
RaiseException
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
CloseHandle
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
IsBadWritePtr
SetUnhandledExceptionFilter
GetACP
GetCPInfo
GetOEMCP
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
IsBadCodePtr
GetLastError
SetFilePointer
IsBadReadPtr
LCMapStringA
GetStringTypeA
GetStringTypeW
LCMapStringW

user32

wsprintfA
WaitForInputIdle

advapi32

RegCloseKey
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA

ole32

CoInitialize
CoCreateInstance

setupapi

SetupDiOpenClassRegKey

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.grdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2a5237179b7ebe95bd3b69766b9dcba8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

setupapi

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 12KB - Virtual size: 11KB

.grdata Size: 56KB - Virtual size: 56KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 12KB - Virtual size: 11KB

.grdata
Size: 56KB - Virtual size: 56KB