fc5d2627ea7ab2d610c222dc41ecffd2

General

Target

fc5d2627ea7ab2d610c222dc41ecffd2
Size

189KB
MD5

fc5d2627ea7ab2d610c222dc41ecffd2
SHA1

ffee3afc949f49a622c650373313faff21ba9a31
SHA256

6531a7f8cec3919d4adf56ffaa4cd19ebe48f1f1e998f78150bf4cc7391b27e9
SHA512

0f1f0e1d388ecb6b69a82efba0cd84507372c233aa452818ed90f8af5712cca063f36577c8f2d14646ad9f68196c207f373d841b50661eaee72b3c366d29c409
SSDEEP

3072:4k2mboCHGTsiQhcpyyXbtfjW7iWI1RofH7aVflTvyktPMB/zYq8r9uBiiyTS:4k2woCmTyytgiWI1RcwflTtPM1y5qi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc5d2627ea7ab2d610c222dc41ecffd2

Files

fc5d2627ea7ab2d610c222dc41ecffd2
.exe windows:4 windows x86 arch:x86

bd485d60e8132fe83107b2bf14c926d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
ExitThread
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
LoadLibraryA
QueryPerformanceCounter
SetEvent
SetUnhandledExceptionFilter
VirtualAlloc
VirtualProtect
WriteFile

msvcrt

strcpy
swprintf
wcscpy
strncat
strlen
fwrite
sscanf

user32

LoadAcceleratorsA
MoveWindow
InflateRect
PostMessageA
RegisterWindowMessageA
GetWindowPlacement
GetMenuItemCount
GetFocus
DrawIconEx
DrawEdge
CreatePopupMenu
CreateDialogParamA
CloseClipboard
MsgWaitForMultipleObjects
CheckMenuItem
CheckRadioButton

comctl32

InitCommonControls
ShowHideMenuCtl

oleaut32

VarUI2FromStr
VarUI1FromUI4
VarPow
VarI4FromI1
VarDecInt
OleCreatePropertyFrameIndirect
OleCreatePropertyFrame

Sections

.text
Size: 75KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jgd
Size: - Virtual size: 1B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bd485d60e8132fe83107b2bf14c926d3

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

comctl32

oleaut32

Sections

.text Size: 75KB - Virtual size: 76KB

.rdata Size: 58KB - Virtual size: 60KB

.data Size: 35KB - Virtual size: 96KB

.rsrc Size: 19KB - Virtual size: 20KB

.jgd Size: - Virtual size: 1B

.text
Size: 75KB - Virtual size: 76KB

.rdata
Size: 58KB - Virtual size: 60KB

.data
Size: 35KB - Virtual size: 96KB

.rsrc
Size: 19KB - Virtual size: 20KB

.jgd
Size: - Virtual size: 1B