0cc264cb0e7c1e9b8a5ceac2767e9a43

General

Target

0cc264cb0e7c1e9b8a5ceac2767e9a43
Size

68KB
MD5

0cc264cb0e7c1e9b8a5ceac2767e9a43
SHA1

5a8adadfa0288047ae2a588384f4351631216cda
SHA256

aaaf3270d938311587c715b481831546751086ecab9b6ad10005d233210dc820
SHA512

491d495fec68ac489e1bb98e57028e8d705bad5cdadb2be1d87e8e9e907c9d3ed2f90c524140b5d062176a5bd28168a0bde5b34b94beb1aa6dbd88fcc7d23b1e
SSDEEP

192:eDpjDBsi9jWFZDl+3BSMMq6pkq/uKRdZMFu2tx+8dE3UzSYUrGuunKRdZMFu2txw:Q6f/Ux1R6E1xq3UZU9w1xq3UZU92puP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cc264cb0e7c1e9b8a5ceac2767e9a43

Files

0cc264cb0e7c1e9b8a5ceac2767e9a43
.exe windows:4 windows x86 arch:x86

8a30fd4525919414f4f1a8c6880f8763

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

user32

TranslateAcceleratorW
GetMessageW
LoadAcceleratorsW
LoadStringW
FindWindowW
PostQuitMessage
EndPaint
BeginPaint
DefWindowProcW
SetTimer
UpdateWindow
ShowWindow
CreateWindowExW
RegisterClassExW
LoadCursorW
LoadIconW
DispatchMessageW
TranslateMessage
DestroyWindow

shell32

SHGetMalloc
CommandLineToArgvW

ole32

CoUninitialize
CoCreateInstance
CoInitialize

msvcr80

__p__fmode
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
_crt_debugger_hook
__set_app_type
_encode_pointer
exit
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
__p__commode
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a30fd4525919414f4f1a8c6880f8763

Headers

File Characteristics

Imports

kernel32

user32

shell32

ole32

msvcr80

Sections

.text Size: 4KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 52KB - Virtual size: 48KB

.text
Size: 4KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 52KB - Virtual size: 48KB