fcb0e7685d9bc65d8acbb94dd2f8bb22

General

Target

fcb0e7685d9bc65d8acbb94dd2f8bb22
Size

180KB
MD5

fcb0e7685d9bc65d8acbb94dd2f8bb22
SHA1

3d953d184c161b9578119ae85f747d6d47cab31d
SHA256

e6adbe4cf615220dcc26282c2ce503c784fc0d232aa9bb47fd29ee6739a755d3
SHA512

3907a019a60f35f20c1872b59bbbcfbb55813813369bacd165bc6e638f5915a31a8e8c7187c4c0ad948b705bb386bae7672c9a7877b445c7e871514f552bfcdf
SSDEEP

3072:rKnvrT3qTYkXzO9Mv69P9iU6dLJA9NYX0ZWLlCKKBrJbarlTD6:+nvSTjC1FiU6dLJA70OW5nW1arlf6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcb0e7685d9bc65d8acbb94dd2f8bb22

Files

fcb0e7685d9bc65d8acbb94dd2f8bb22
.exe windows:4 windows x86 arch:x86

33ff1702be89a93ce844a5e798e8ec92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

ord10
StrChrW

shell32

ord80
ord524
SHCreateDirectoryExW

gdi32

CopyMetaFileW
CreateRoundRectRgn
EndPath
RectVisible
DeleteMetaFile

comctl32

ord5
CreateToolbarEx
InitMUILanguage

kernel32

VirtualAllocEx
WaitForMultipleObjectsEx
GetProcAddress
GetModuleHandleA
Sleep
LoadLibraryA
CreateDirectoryW
CreateSemaphoreA
GetQueuedCompletionStatus
CreateEventA
GetTickCount
GetStringTypeExW
CreateFileW
GetPrivateProfileSectionA
GetFullPathNameW
GetStdHandle
SetCalendarInfoW
GetDateFormatW
GetNamedPipeInfo
GetDllDirectoryW
VirtualAlloc
ReadConsoleInputW
DeleteVolumeMountPointW
GetProfileSectionW
GetStartupInfoA

user32

IsRectEmpty
KillTimer
GetClassInfoW
GetAncestor
CreatePopupMenu
CallWindowProcW
PeekMessageW
DispatchMessageW
GetTabbedTextExtentW
CharNextExA
GetMonitorInfoW
ReleaseCapture
WindowFromPoint
SetLastErrorEx

msvcrt

ferror
atof
wcscoll
strstr
mblen
strcmp
swscanf
wcsncat
wcsncpy
feof
swprintf
mbstowcs
strtoul
_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
malloc
memcpy
memmove
memset
strerror

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 146KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

33ff1702be89a93ce844a5e798e8ec92

Headers

File Characteristics

Imports

shlwapi

shell32

gdi32

comctl32

kernel32

user32

msvcrt

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 146KB - Virtual size: 196KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 146KB - Virtual size: 196KB