0c13202360177e51a1974acd14736a52

Sharing

Copy URL Twitter E-mail

General

Target

0c13202360177e51a1974acd14736a52
Size

237KB
MD5

0c13202360177e51a1974acd14736a52
SHA1

e81cf27a27b97fdd8b99956d543b918e9bb9e1c1
SHA256

c16dbd110d219b58c5fdd167a4b1990b068b788f1889337eaddff3f18f1a7426
SHA512

6bb6e450a4bd16889318f336909c26ec25adf836747ae7cf2e59e61aae2c1204a9975e21984e64ea2e62cae6a6b6b425c531d5318d8ff27b40f7c2e6bf85a4a2
SSDEEP

3072:VixUOPlLuSItnWZKNictnmTYHMoiJUsl1eCRMDTxLEdbIG9OdkLElViGt4CnqiO9:0LJ+sK4YQJ3cQ0cOdtXoC6lp5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c13202360177e51a1974acd14736a52

Files

0c13202360177e51a1974acd14736a52
.exe windows:4 windows x86 arch:x86

aaba97b8dbbe2f0c37ae3bd23301ea91

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetUserDefaultLangID
AddAtomA
GetTimeZoneInformation
HeapCompact
OpenSemaphoreA
CreateThread
ReadConsoleOutputCharacterA
SystemTimeToTzSpecificLocalTime
GetStringTypeW
DeviceIoControl
GetUserDefaultLCID
GetLastError
GetStringTypeExA
GetFullPathNameW
CreateProcessA
DeleteCriticalSection
FillConsoleOutputCharacterW
GlobalLock
SetThreadPriority
GetFileAttributesExW
lstrlenA
RemoveDirectoryW
SetComputerNameW
GetDiskFreeSpaceA
SetCurrentDirectoryW
CopyFileExA
GetAtomNameW
lstrcatW
CloseHandle
CreateNamedPipeW
GlobalAddAtomW
SetEnvironmentVariableW
GetThreadTimes
GetConsoleCP
lstrlen
Thread32First
SuspendThread
SetConsoleCursorPosition
GlobalUnfix
GetExitCodeThread
SetFilePointer
GetCompressedFileSizeW
BeginUpdateResourceW
TransactNamedPipe
SetComputerNameA
lstrcpyA
SetConsoleActiveScreenBuffer
TlsSetValue
ExitThread
OpenFileMappingW
CreateProcessW
GetStartupInfoA
IsValidLocale
CreateDirectoryA
SetThreadAffinityMask
IsDebuggerPresent
GetNumberOfConsoleInputEvents
SetConsoleMode
SetTimeZoneInformation
GetTempFileNameW
WriteConsoleOutputCharacterW
GetShortPathNameW
OpenWaitableTimerA
CompareFileTime
EnumSystemLocalesW
GetCompressedFileSizeA
MoveFileW
GetSystemDirectoryA
GetModuleFileNameW
GetFullPathNameA
WaitForMultipleObjects
CreateNamedPipeA
ResetEvent
GetConsoleMode
RtlZeroMemory
GetStartupInfoW
SetThreadExecutionState
VirtualProtect
SetConsoleTextAttribute
Toolhelp32ReadProcessMemory
GetAtomNameA
GetEnvironmentVariableW
GetPrivateProfileSectionNamesW
FindResourceW
GetWriteWatch
FindAtomA
HeapLock
OpenMutexA
GetACP
MulDiv
GetNumberFormatA
WriteProfileSectionA
EnumCalendarInfoExW
GlobalHandle
OpenFile
GetThreadSelectorEntry
CompareStringA
LocalSize
GetCalendarInfoW
WriteFileEx
CreateWaitableTimerA
GetProcessPriorityBoost
LocalHandle
LoadModule
OutputDebugStringW
GetPrivateProfileSectionW
UpdateResourceA
SetConsoleCP
MultiByteToWideChar
WritePrivateProfileStructA
FoldStringA
EnumDateFormatsW
SetCriticalSectionSpinCount
Module32Next
VirtualUnlock
WriteConsoleInputW
GetNamedPipeHandleStateA
TlsFree
FindResourceA
InterlockedDecrement
WaitForSingleObject
HeapSize
GlobalFindAtomA
LocalReAlloc
GetPriorityClass
CreateSemaphoreW
GetStringTypeA
SignalObjectAndWait
PeekConsoleInputA
GetTempPathW
CreateMutexA
ReadConsoleOutputCharacterW
FillConsoleOutputCharacterA
ReadConsoleInputA
GetLogicalDriveStringsA
GlobalUnWire
GetProcessHeaps
FlushInstructionCache
RtlMoveMemory
GetSystemDefaultLangID
Heap32ListFirst
GetSystemDefaultLCID
SetSystemTimeAdjustment
ReleaseMutex
ReadConsoleOutputAttribute
GetLargestConsoleWindowSize
SetConsoleTitleA
GetConsoleScreenBufferInfo
CreatePipe
GetLongPathNameW
GetThreadPriorityBoost
CreateFileMappingW
GetCalendarInfoA
GetProfileIntA
GetDriveTypeW
GetPrivateProfileStructW
GetPrivateProfileSectionA
GetConsoleOutputCP
GlobalFlags
MapViewOfFileEx
CreateFileW
lstrcat
InitAtomTable
HeapWalk
FlushViewOfFile
GetSystemTime
DisconnectNamedPipe
GetWindowsDirectoryW
WideCharToMultiByte
CreateEventW
WaitForDebugEvent
GetEnvironmentStringsA
SetThreadLocale
GetCurrentDirectoryW
SetConsoleCtrlHandler
GetNumberFormatW
SetConsoleTitleW
GetThreadPriority
GlobalGetAtomNameA
ReadConsoleW
GetSystemDirectoryW
FormatMessageW
lstrcmpW
GlobalAddAtomA
lstrcmpi
FindFirstFileW
FindResourceExW
WriteFile
MoveFileExA
VirtualAllocEx
GlobalCompact
lstrcmp
VirtualLock
EnumTimeFormatsA
LocalFlags
SystemTimeToFileTime
EnumDateFormatsExA
GetEnvironmentVariableA
GetFileSize
lstrcatA
WritePrivateProfileStructW
FlushConsoleInputBuffer
CreateToolhelp32Snapshot
SetLocaleInfoW
GetNamedPipeHandleStateW
DeleteFileA
CreateEventA
SetFileAttributesW
GetVersionExW
EnumSystemCodePagesA
ReadConsoleOutputA
EnumTimeFormatsW
GetThreadLocale
GetFileType
GlobalGetAtomNameW
VirtualFreeEx
SetConsoleOutputCP
GlobalFree
GetPrivateProfileStringW
MoveFileA
WritePrivateProfileSectionW
OpenWaitableTimerW
CreateMutexW
GetFileAttributesA
FreeEnvironmentStringsW
CommConfigDialogA
InitializeCriticalSection
OpenMutexW
CreateMailslotA
TransmitCommChar
CreateMailslotW
Heap32ListNext
GetModuleHandleW
GetNumberOfConsoleMouseButtons
FindClose
ReadFileEx
GetNamedPipeInfo
GetDateFormatA
HeapUnlock
lstrcpynA
GetEnvironmentStringsW
FormatMessageA
SetConsoleWindowInfo
SetVolumeLabelW
DisableThreadLibraryCalls
EnumCalendarInfoExA
SetFileTime
LockFileEx
GetProcAddress
ReadConsoleOutputW
GetProcessHeap
GetConsoleTitleA
EnumResourceLanguagesA
GetDriveTypeA
InterlockedIncrement
FindFirstFileExW
SetEndOfFile
InterlockedExchangeAdd
GetTimeFormatW
WritePrivateProfileStringA
LocalShrink
SleepEx
DosDateTimeToFileTime
BeginUpdateResourceA
GetCommandLineW
MoveFileExW
FindNextFileA
DefineDosDeviceA
DeleteFiber
ResetWriteWatch
FoldStringW
WriteConsoleInputA
FindResourceExA
CreateDirectoryExW
ReadConsoleInputW
LockFile
CreateFileA
FindFirstFileExA
FreeResource
lstrcmpiW
MapViewOfFile
EnumResourceTypesA
GlobalMemoryStatus
ExpandEnvironmentStringsW
ConnectNamedPipe
GetEnvironmentStrings
GetDateFormatW
EnumCalendarInfoW
GetVolumeInformationA
ConvertDefaultLocale
SetThreadIdealProcessor
GetProfileIntW
GetProcessVersion
EnumDateFormatsA
GetVersionExA
GetMailslotInfo
GetProcessShutdownParameters
GetSystemTimeAdjustment
ResumeThread
GetVersion
SetEvent
GetCommandLineA
FindFirstChangeNotificationW
WriteProfileStringA
ContinueDebugEvent
LoadLibraryW
GlobalReAlloc
GetLocalTime
GetFileAttributesExA
DeleteFileW
CreateSemaphoreA
CreateDirectoryW
InterlockedCompareExchange
SetPriorityClass
GetProcessTimes
LoadResource
ReadProcessMemory
PulseEvent
lstrcpy
ExpandEnvironmentStringsA
OpenSemaphoreW
TryEnterCriticalSection
FillConsoleOutputAttribute
LocalAlloc
SetConsoleScreenBufferSize
GetWindowsDirectoryA
EnumResourceNamesA
EnumCalendarInfoA
GetVolumeInformationW
GetConsoleCursorInfo
InitializeCriticalSectionAndSpinCount
FindFirstFileA
CreateTapePartition
WriteConsoleOutputCharacterA
SetConsoleCursorInfo
CreateDirectoryExA
DeleteAtom

gdi32

GetPixelFormat
EnumICMProfilesW
TranslateCharsetInfo
GetTextMetricsA
GetCharWidthFloatA
GetCharWidthW
GdiSetBatchLimit
PathToRegion
SetICMProfileW
CreateBrushIndirect
GetDIBits
CreateICA
PolyPolyline
FloodFill
GetPaletteEntries
ResizePalette
GetSystemPaletteEntries
PolyBezier
CreatePen
CreateRoundRectRgn
GetTextMetricsW
EnumICMProfilesA
ExtFloodFill
GetBitmapDimensionEx
DeleteColorSpace
GetEnhMetaFileA
CopyEnhMetaFileA
GetGlyphOutlineA
GetTextAlign
GetBkMode
GetTextExtentPointW
SetWorldTransform
SetGraphicsMode
GetBoundsRect
ResetDCW
GetMapMode
GetNearestPaletteIndex
SetBitmapDimensionEx
CreatePatternBrush
CloseMetaFile
SetWindowExtEx
ExtCreateRegion
CombineTransform
gdiPlaySpoolStream
GetKerningPairs
SetPixel
StartDocW
SetDIBColorTable
GetEnhMetaFileW
BitBlt
BeginPath
SelectObject
GetLogColorSpaceA
GetKerningPairsA
GetTextCharset
GetBitmapBits
GetEnhMetaFileDescriptionW
GetDCOrgEx
EnumFontFamiliesA
DescribePixelFormat
Chord
PolyTextOutW
GetDIBColorTable
Polyline
CombineRgn
GetPolyFillMode
CreatePolygonRgn
ExtTextOutA
GetStockObject
DeleteMetaFile
GdiPlayScript
SetViewportOrgEx
Rectangle
CreateRectRgn
GetLayout
SetMetaRgn
GetRegionData
GetBrushOrgEx
CreateFontA
CreateDIBPatternBrushPt
GetWorldTransform
OffsetClipRgn
EqualRgn
SetMapperFlags
SetPixelFormat
SetDIBitsToDevice
SetWinMetaFileBits
GetFontData
PlayMetaFile
ExtCreatePen
CreateDCA
SetMiterLimit
GetClipRgn
SetColorSpace
PlayEnhMetaFileRecord
GetArcDirection
GetBkColor
GetRasterizerCaps
GdiFlush
FrameRgn
ExcludeClipRect
CreateCompatibleDC
GetCharWidth32A
GetICMProfileA
FlattenPath
GetEnhMetaFileBits
DrawEscape
CopyMetaFileW
GetTextExtentPoint32A
ColorCorrectPalette
StartDocA
EnumFontsA
GetTextExtentExPointA
GetCurrentObject
PlayMetaFileRecord
PlgBlt
CreateDiscardableBitmap
EnumMetaFile
GetGraphicsMode
OffsetRgn
Pie
SetPolyFillMode
UpdateICMRegKeyA
SetSystemPaletteUse
GetTextColor
GetObjectType
InvertRgn
GetTextExtentExPointW
FillRgn
PolyTextOutA
CloseFigure
GetObjectW
GetLogColorSpaceW
ExtEscape
SwapBuffers
GetSystemPaletteUse
MoveToEx
StretchBlt
EndPage
GetMetaFileBitsEx
ArcTo
CancelDC
FixBrushOrgEx
GetViewportExtEx

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaba97b8dbbe2f0c37ae3bd23301ea91

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 107KB - Virtual size: 106KB

.data Size: 114KB - Virtual size: 113KB

.reloc Size: 15KB - Virtual size: 15KB

.text
Size: 107KB - Virtual size: 106KB

.data
Size: 114KB - Virtual size: 113KB

.reloc
Size: 15KB - Virtual size: 15KB