0c29ae9bf0ee8228bffec052a2e5a2d3

General

Target

0c29ae9bf0ee8228bffec052a2e5a2d3
Size

390KB
MD5

0c29ae9bf0ee8228bffec052a2e5a2d3
SHA1

79c277b7627c67e859efd9853c8d69cce2c1ca80
SHA256

6dda87bcb44396804cb93c50f491d845d658b263a48af3ed333c57ced28f531c
SHA512

b9d3beaa4b6ec61746d001a282e979e6a4749c27a39d268cf62a02ba8f1c7d666cb7f4b77f1dd4c150e9c362bdd011b3e01c38480a54fb91ddbc34f6f788dccf
SSDEEP

6144:wdjDSMkpZfue7lWiQMFHk/jTDKXO868djPJQZ0etW5ka7sYPj3yfJSD5kXtgoK14:9M0GDK+1dZ0q4kXGjCfJSU61E+v+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c29ae9bf0ee8228bffec052a2e5a2d3

Files

0c29ae9bf0ee8228bffec052a2e5a2d3
.exe windows:4 windows x86 arch:x86

aafd537819eb4cc9a53bfa29a1ae8e19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
SetLastError
TlsFree
ReadConsoleOutputA
GetProcAddress
TlsGetValue
HeapReAlloc
UnhandledExceptionFilter
CreateMailslotA
HeapCreate
GetCurrentProcessId
HeapAlloc
WriteConsoleA
GetEnvironmentStringsW
HeapDestroy
GetModuleHandleA
TlsSetValue
FreeEnvironmentStringsA
EnumResourceTypesA
InterlockedExchange
GetOEMCP
LeaveCriticalSection
CompareFileTime
LCMapStringW
VirtualFree
HeapValidate
GetStringTypeW
SetTimeZoneInformation
ExpandEnvironmentStringsA
ExitProcess
GetTickCount
EnterCriticalSection
MultiByteToWideChar
HeapFree
GetCPInfo
GetModuleFileNameA
IsBadWritePtr
LoadLibraryA
QueryPerformanceCounter
GetACP
VirtualAlloc
OpenMutexW
WriteProfileStringA
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetCommandLineA
GetFileType
GetStdHandle
GetVersion
WritePrivateProfileStringA
TlsAlloc
DeleteCriticalSection
GetSystemTimeAsFileTime
GetCurrentThread
GetLongPathNameA
SetUnhandledExceptionFilter
GetEnvironmentStrings
GetLastError
HeapSize
WriteFile
WideCharToMultiByte
LCMapStringA
GetConsoleScreenBufferInfo
GetStartupInfoA
FreeEnvironmentStringsW
LocalLock
SetHandleCount
SetThreadIdealProcessor
GetStringTypeA
CreateMutexW

comdlg32

PrintDlgA
PageSetupDlgA
ChooseFontW
FindTextA
PageSetupDlgW
PrintDlgW
ChooseColorA
GetFileTitleA
GetFileTitleW
ChooseColorW
GetOpenFileNameA
ChooseFontA
LoadAlterBitmap

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aafd537819eb4cc9a53bfa29a1ae8e19

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 114KB - Virtual size: 113KB

.data Size: 267KB - Virtual size: 267KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 114KB - Virtual size: 113KB

.data
Size: 267KB - Virtual size: 267KB

.rsrc
Size: 7KB - Virtual size: 7KB