fca0c72c3c396532b9db42448a7bfc86

Sharing

Copy URL

Twitter E-mail

General

Target

fca0c72c3c396532b9db42448a7bfc86
Size

171KB
MD5

fca0c72c3c396532b9db42448a7bfc86
SHA1

a9c1b19e4c9aeab7c52ef36f4cb481264859c687
SHA256

ba22da0e803e44a3156e352d8807a9c41991341b5e6eb200e362fa4a76e0ee93
SHA512

f87e937cd87a1c6cbcb8c99e313a6502d4e100ba8e09fcc11004aecf28aa6258f9990430e2cb01fd70470c6ad27151686f805b270bbe0186e4ea44f6a873288f
SSDEEP

3072:X4B5xT6JxmVgbmLziVsb+onKIrWG+fCGnCIjVmlENe7bE3GKROeGCYSvK4B5z9S9:X4pT6PvbmLtb+oKZGACGCI8lMOebYSyp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fca0c72c3c396532b9db42448a7bfc86

Files

fca0c72c3c396532b9db42448a7bfc86
.exe windows:5 windows x86 arch:x86

d63fcb8d21e14ecfa821276bad7717ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

isdigit
_controlfp
__set_app_type
setvbuf
wcschr
free
clearerr
__p__fmode
gets
__p__commode
fgetc
remove
wcscat
strchr
mbtowc
_amsg_exit
wcsrchr
vsprintf
mktime
bsearch
atoi
strstr
_initterm
wcscspn
toupper
getc
_ismbblead
_XcptFilter
isupper
qsort
_exit
tolower
wcstok
putchar
_cexit
iswctype
isalpha
wcstol
rand
__setusermatherr
wcscpy
strtoul
exit
fread
isspace
wcspbrk
wcsstr
__getmainargs

user32

SetFocus
MonitorFromRect
SetDlgItemInt
UpdateWindow
IsCharAlphaNumericW
GetClipCursor
GetClassLongW
SetRectEmpty
IsCharUpperA
DrawTextW
SetCursorPos
MapDialogRect
ModifyMenuW
GetDlgItem
LoadStringA
IsZoomed
CharPrevA
RemoveMenu
GetParent
MapWindowPoints
DrawStateA
GetActiveWindow
PostMessageW
SetCaretPos
LoadCursorA
CharLowerW
GetSystemMetrics
LoadBitmapA
SetWindowPos
SetLastErrorEx
DialogBoxIndirectParamA
GetClassInfoExW
ValidateRect
CharUpperBuffA
WaitMessage
SendInput
InSendMessage
SetClassLongW
SetMenuItemInfoW
SetScrollInfo
LoadMenuW
wvsprintfA
IsDlgButtonChecked
CharPrevW
TrackPopupMenuEx
IsMenu
GetKeyboardType
DrawMenuBar
GetMenuState
SetPropW
SetWindowRgn
PeekMessageA
SetDlgItemTextW
GrayStringW
GetDlgCtrlID
GetWindowTextA
SetMenu
AllowSetForegroundWindow
DrawFrameControl
GetPropW
FindWindowExA
SystemParametersInfoA
MapVirtualKeyExW
EnableWindow
InvertRect
CreateDialogParamA
DrawTextA
OemToCharA
ChangeMenuW
GetSubMenu
GetMessageExtraInfo
GetMenuItemInfoW
EnableScrollBar
GetUserObjectInformationA
CharUpperW
EnumWindows
LoadIconA
SetActiveWindow
GetSystemMenu
PostThreadMessageA
GetMenuItemRect
DefDlgProcA
ArrangeIconicWindows
InternalGetWindowText
EnumThreadWindows
DestroyCursor
InvalidateRgn
GetKeyboardLayoutNameW
GetDialogBaseUnits
LoadAcceleratorsW
TranslateMessage
GetCaretPos
SetCursor
RegisterClassExA
GetClassInfoW
ShowWindow
OpenInputDesktop
RedrawWindow
InsertMenuItemW
ShowCursor
CreateIconFromResource
TrackPopupMenu
SendNotifyMessageW
DialogBoxIndirectParamW
CreateMenu
SetWindowLongW
IntersectRect
FindWindowW
CallWindowProcA
RegisterClassExW
MessageBoxExW
GetWindowDC
CloseDesktop
PostThreadMessageW
CreateWindowExA
SetForegroundWindow
GetNextDlgTabItem
ChildWindowFromPoint
CreateIconIndirect
DestroyMenu
GetDlgItemTextA

kernel32

LockFile
WaitForSingleObject
DeleteAtom
GlobalMemoryStatusEx
QueryDosDeviceW
SetCurrentDirectoryA
SetCommMask
LCMapStringA
WaitCommEvent
HeapLock
LocalReAlloc
SetCommBreak
VirtualQuery
GlobalAddAtomA
LoadLibraryA
FindResourceExA
GetFullPathNameA
GetProcAddress
CreateWaitableTimerW
GetSystemDefaultUILanguage
GetSystemDirectoryW
GetSystemTimeAsFileTime
lstrcatA
CompareStringW
FindCloseChangeNotification
GetModuleFileNameW
GlobalReAlloc
CallNamedPipeW
GetTimeZoneInformation
lstrcatW
SetTimerQueueTimer
OpenEventA
GlobalAddAtomW
CompareStringA
CancelWaitableTimer
GetFileAttributesExA
FormatMessageA
ResetEvent
GetLocaleInfoA
CopyFileA
GetVersion
CopyFileW
GetCommConfig
lstrlenW
SetPriorityClass
lstrcmpW
GetFileAttributesA
GetCommTimeouts
GlobalFlags
OpenFileMappingW
SetLastError
SetCommTimeouts
RaiseException
GetTickCount
CreateMailslotW
lstrlenA

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 512B - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d63fcb8d21e14ecfa821276bad7717ef

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 512B - Virtual size: 258KB

.zdata Size: 12KB - Virtual size: 12KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 138KB - Virtual size: 138KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 512B - Virtual size: 258KB

.zdata
Size: 12KB - Virtual size: 12KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 138KB - Virtual size: 138KB

.reloc
Size: 1KB - Virtual size: 1KB