14cec1882ad98f21bdd1d3f5abd20cd8

Sharing

Copy URL Twitter E-mail

General

Target

14cec1882ad98f21bdd1d3f5abd20cd8
Size

596KB
MD5

14cec1882ad98f21bdd1d3f5abd20cd8
SHA1

b56cfd09a2744687b84cd6bcc40b5d3496acce37
SHA256

ebe078569e109160ae0754561f684d94381ca38bf80ae390e562a13fc003b41c
SHA512

bcdf0e26b55ce58fc8b6e6d4c7c9b90d9166dd9d30b0e6d1b880a5dc04a135f906914620f4e9d681e143c43db88e6ac55e775af8e6da27b91567a468f5684145
SSDEEP

12288:V97C5CRruF5E7HAO0bc37zWz6HK8g3gpiEp9nsqo7:b7CJFgfUc3G2B7phsqo7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14cec1882ad98f21bdd1d3f5abd20cd8

Files

14cec1882ad98f21bdd1d3f5abd20cd8
.exe windows:4 windows x86 arch:x86

3099de0528c93e2f323e835bfacee890

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetUpdateRgn
GetUserObjectSecurity
GetLastActivePopup
ToAscii
TranslateAcceleratorW
CharPrevW
SetCursor
TabbedTextOutA
DrawFrame
GetProcessWindowStation
RegisterClassA
GetKeyNameTextA
PostThreadMessageW
BringWindowToTop
GetWindowModuleFileNameW
SetClassLongA
MessageBoxA
GrayStringA
ModifyMenuW
GetKeyboardState
SetActiveWindow
IsCharAlphaW
GetCursorPos
FreeDDElParam
SetDlgItemTextA
LookupIconIdFromDirectory
SetWindowPos
GetClassInfoExW
ShowWindowAsync
LoadKeyboardLayoutA
GetMenuContextHelpId
RegisterClassExA
EndDeferWindowPos
TranslateMessage
CreateCursor
GetMenuItemInfoW
DeferWindowPos
GetMenuBarInfo
DdeSetQualityOfService

comctl32

ImageList_SetBkColor
CreatePropertySheetPage
InitCommonControlsEx

kernel32

EnumSystemLocalesA
RemoveDirectoryW
IsValidCodePage
WaitForDebugEvent
GetCurrentThreadId
InterlockedCompareExchange
GetEnvironmentVariableW
InitializeCriticalSectionAndSpinCount
GlobalUnlock
SystemTimeToTzSpecificLocalTime
WriteConsoleOutputCharacterA
TlsFree
GetCurrentThread
GetACP
EnumCalendarInfoExW
CreateNamedPipeA
GetLocaleInfoW
GetModuleHandleW
GetCurrentProcess
GetStringTypeW
Sleep
WriteConsoleA
GetStdHandle
ReadFile
GetProcAddress
GetCommandLineW
CreateDirectoryA
ContinueDebugEvent
OpenMutexA
MoveFileExA
FreeEnvironmentStringsW
EnumTimeFormatsA
GetTimeFormatW
GetAtomNameA
HeapFree
WriteFile
ReadConsoleInputW
GetConsoleCP
IsDebuggerPresent
GetModuleHandleA
SetFilePointer
FreeLibrary
GetTickCount
TransactNamedPipe
EnumResourceLanguagesW
SetLastError
DeleteFileW
CompareStringA
GetVersionExW
GlobalCompact
GetSystemTimeAsFileTime
SetEnvironmentVariableA
IsValidLocale
HeapAlloc
GetEnvironmentStringsW
CompareFileTime
TlsGetValue
DeleteCriticalSection
UnhandledExceptionFilter
SetConsoleCtrlHandler
HeapCreate
GetFileType
WriteConsoleW
HeapSize
ResetEvent
LeaveCriticalSection
WideCharToMultiByte
GetFullPathNameA
VirtualAlloc
TerminateThread
GetLocaleInfoA
GetSystemDefaultLangID
LCMapStringA
GetStartupInfoA
SetConsoleCursorPosition
VirtualFree
AllocConsole
GlobalDeleteAtom
GetDateFormatA
DosDateTimeToFileTime
HeapDestroy
CreateFileW
GetTimeFormatA
LoadLibraryA
TlsAlloc
GetTimeZoneInformation
GetCommandLineA
GetOEMCP
GetConsoleMode
TlsSetValue
CreateSemaphoreW
FindClose
ExitProcess
GetAtomNameW
HeapReAlloc
RtlUnwind
QueryPerformanceCounter
CreateFileA
GetCurrentProcessId
SetHandleCount
GetLongPathNameW
CopyFileExA
GetLastError
UnlockFile
GetCPInfo
GetEnvironmentStringsA
GetProcessHeaps
WritePrivateProfileSectionW
FlushFileBuffers
VirtualQuery
EnterCriticalSection
GetModuleFileNameW
CreateMutexA
InterlockedExchange
GetThreadContext
CreateFileMappingW
WritePrivateProfileSectionA
FormatMessageW
GetConsoleOutputCP
GetStartupInfoW
InterlockedDecrement
LocalReAlloc
SetStdHandle
SetUnhandledExceptionFilter
GlobalFix
GetUserDefaultLCID
OutputDebugStringW
LCMapStringW
CompareStringW
CloseHandle
TerminateProcess
InterlockedIncrement
GetModuleFileNameA
GetStringTypeA
EnumResourceTypesW
GetNumberFormatA
GetVersion
MultiByteToWideChar

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3099de0528c93e2f323e835bfacee890

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 176KB - Virtual size: 174KB

.rdata Size: 256KB - Virtual size: 254KB

.data Size: 112KB - Virtual size: 123KB

.rsrc Size: 48KB - Virtual size: 44KB

.text
Size: 176KB - Virtual size: 174KB

.rdata
Size: 256KB - Virtual size: 254KB

.data
Size: 112KB - Virtual size: 123KB

.rsrc
Size: 48KB - Virtual size: 44KB