3c879d4f03513a78eab3e937cd7dad8f

Sharing

Copy URL Twitter E-mail

General

Target

3c879d4f03513a78eab3e937cd7dad8f
Size

61KB
MD5

3c879d4f03513a78eab3e937cd7dad8f
SHA1

0fc6ca309bbc1122643cf08f260344025e393086
SHA256

8400e3315cad3cccb4d12259a2a4190151d7f14c19e50fa306904000be4a13a7
SHA512

4608f2c4fdb3f6d05a35ab63903fce80b5cb535d86ab669f56938b2b772cc31fe2299b22075123c887a2b9b1db3d142305a638c79eda9cc2790e7eeb63ba6c1b
SSDEEP

1536:njfZc+0TWlWgcm2IbL5zsmP9/EALr9ZXQqz2ui/:njfZ3OgLf5znPBlLrHn2ui/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c879d4f03513a78eab3e937cd7dad8f

Files

3c879d4f03513a78eab3e937cd7dad8f
.exe windows:5 windows x86 arch:x86

20b859782c9194c89cbc46043393ec97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GrayStringW

oleaut32

VarDecCmp
VarR4FromI4
OleIconToCursor
VarR4FromBool

kernel32

HeapReAlloc
VirtualAlloc
HeapAlloc
LeaveCriticalSection
ReadConsoleOutputCharacterA
lstrcmpi
SetFilePointerEx
GlobalGetAtomNameW
LocalFileTimeToFileTime
MapViewOfFile
EnterCriticalSection
InitializeCriticalSection
GetModuleFileNameA
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetLastError
GetProcAddress
TlsGetValue
SetLastError
TlsAlloc
GetVersion
TlsSetValue
GetCurrentThreadId
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleHandleA
GetStartupInfoW
LoadLibraryA
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA

winmm

waveOutGetPlaybackRate
mmioGetInfo
waveInGetID
waveOutGetVolume
midiInStop

winspool.drv

GetFormW
DeletePortW
ExtDeviceMode
DeletePrinterDataExA

avifil32

AVIStreamStart
AVIStreamAddRef

msvfw32

DrawDibClose
DrawDibDraw
ICInstall
MCIWndCreate

setupapi

SetupDiEnumDriverInfoW
SetupDiEnumDriverInfoA
SetupAdjustDiskSpaceListW
SetupDestroyDiskSpaceList
SetupCopyErrorA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

20b859782c9194c89cbc46043393ec97

Headers

DLL Characteristics

File Characteristics

Imports

user32

oleaut32

kernel32

winmm

winspool.drv

avifil32

msvfw32

setupapi

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 1KB