0c045d8d55e37fe6615afbec2107fb4e

Sharing

Copy URL Twitter E-mail

General

Target

0c045d8d55e37fe6615afbec2107fb4e
Size

594KB
MD5

0c045d8d55e37fe6615afbec2107fb4e
SHA1

ad75262b2eef349d7360e19da2d801a458b85270
SHA256

f5f5b7c7d3d36ffd4c972dc3c07acf1b4b1c430ebc79fdf6af89ae136c644c0b
SHA512

3dce2804c37a868454cc228174fc1ec84360dc0d08de295b4f057fd347732224504d4ef3542e9bc7525dad6901ad336adf921acfa516a4e24c3f2acdbc451d57
SSDEEP

12288:HCVbzmMBD78HBiil0RN2+l9UQmUVS69FclKLZHdX0oj:HI778hiiAAUVpQKU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c045d8d55e37fe6615afbec2107fb4e

Files

0c045d8d55e37fe6615afbec2107fb4e
.exe windows:4 windows x86 arch:x86

2fb569bfa8a65b7b779c7864a01df83f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AttachThreadInput
CountClipboardFormats
SetWindowTextW
CreateDesktopW
DefFrameProcA
CreateDialogIndirectParamW
IsIconic
IntersectRect
ShowCursor
DrawStateW
CopyImage
LoadImageW
LoadMenuW
IsDialogMessage
RegisterClassExA
CreateMDIWindowW
ExitWindowsEx
GetMessageTime
LoadKeyboardLayoutW
CreateAcceleratorTableW
RegisterClassA
TranslateAcceleratorW

kernel32

LeaveCriticalSection
TlsFree
FreeEnvironmentStringsA
ReadFile
IsValidLocale
OutputDebugStringW
HeapCreate
TlsGetValue
UnhandledExceptionFilter
SetEnvironmentVariableA
SetHandleCount
LocalReAlloc
GetTickCount
GetCurrentProcess
GetModuleFileNameW
QueryPerformanceCounter
HeapFree
GetOEMCP
GetTimeZoneInformation
GetDateFormatA
SetThreadLocale
MultiByteToWideChar
VirtualLock
CompareStringA
HeapDestroy
GetEnvironmentStringsW
DeleteCriticalSection
GlobalAddAtomA
GetModuleHandleA
GetProcAddress
OpenMutexA
VirtualFree
WideCharToMultiByte
VirtualProtect
SetEnvironmentVariableW
GetSystemTimeAsFileTime
SetFilePointer
InterlockedExchange
SetLastError
LCMapStringW
lstrcpy
VirtualAlloc
CloseHandle
HeapSize
LoadLibraryA
GetStringTypeW
HeapReAlloc
IsBadWritePtr
SetConsoleActiveScreenBuffer
GetLocalTime
GetLastError
GetFileType
InitializeCriticalSection
GetVersionExA
GetModuleFileNameA
EnterCriticalSection
TlsAlloc
WriteFile
GetStringTypeA
GetLocaleInfoW
GetCPInfo
RtlUnwind
TerminateProcess
GetSystemInfo
GetCurrentProcessId
GetProfileSectionA
IsValidCodePage
GetTimeFormatA
VirtualQuery
GetUserDefaultLCID
GetPrivateProfileStringW
GetEnvironmentStrings
CreateMutexA
GetCommandLineA
FreeEnvironmentStringsW
HeapAlloc
CompareStringW
SetStdHandle
GetLocaleInfoA
FlushFileBuffers
LCMapStringA
EnumSystemLocalesA
GetCurrentThreadId
ExitProcess
TlsSetValue
GetStdHandle
GetCommandLineW
GetStartupInfoA
GetStartupInfoW
GetCurrentThread
OpenFile
GetACP

comdlg32

PrintDlgA
LoadAlterBitmap
ReplaceTextA

comctl32

InitCommonControlsEx

Sections

.text
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fb569bfa8a65b7b779c7864a01df83f

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

comctl32

Sections

.text Size: 252KB - Virtual size: 252KB

.rdata Size: 8KB - Virtual size: 28KB

.data Size: 319KB - Virtual size: 318KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 252KB - Virtual size: 252KB

.rdata
Size: 8KB - Virtual size: 28KB

.data
Size: 319KB - Virtual size: 318KB

.rsrc
Size: 13KB - Virtual size: 13KB