1ca8a38df58f7031b546490f9df3d27a

Sharing

Copy URL Twitter E-mail

General

Target

1ca8a38df58f7031b546490f9df3d27a
Size

573KB
MD5

1ca8a38df58f7031b546490f9df3d27a
SHA1

56cdbdb9b066fe9b8a5346166f18145e34d16c56
SHA256

2dc991df2cfcdd311d76439e920430ef0ea6c09eddd5a266ed96c79d056e1d3b
SHA512

5be0148b68a90017d49477050f6cde6a546024331dcc429949a6ea9db0eae1db311e11eb4d63be97f92d0b7827c05ecee648ebb0b8ac9c3054d04b72234a8c33
SSDEEP

3072:QbqEffaeNWfS25AjL3DnHojusUKMvmSl3aGURRpixVQi2:QbFygWfS25kznHOoJNwRpifQi2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ca8a38df58f7031b546490f9df3d27a

Files

1ca8a38df58f7031b546490f9df3d27a
.exe windows:4 windows x86 arch:x86

a4dc6d26ce8dce5cda52d4f09c1d0878

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp60

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z

user32

wsprintfA
IsCharAlphaNumericA
GetMenu
FindWindowA
FindWindowExA
IsWindow
SendMessageA
GetClassNameA

oleaut32

GetErrorInfo

msvcrt

_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
_controlfp
exit
_XcptFilter
_exit
_onexit
__dllonexit
_CxxThrowException
fwrite
_iob
fprintf
_splitpath
??2@YAPAXI@Z
_vsnprintf
printf
fread
time
strtoul
strchr
atoi
strstr
_strlwr
strrchr
fopen
fgets
fclose
system
mbstowcs
wcslen
wcscpy
_access
strcpy
strcmp
memcmp
strcat
wcscat
_EH_prolog
__CxxFrameHandler
ceil
_ftol
floor
free
malloc
sscanf
memcpy
srand
rand
strncpy
strtok
memset
strlen
_snprintf
sprintf
strncat
_strcmpi
toupper
_strdup

kernel32

ExpandEnvironmentStringsA
Sleep
CreateThread
GetModuleFileNameA
ExitThread
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
CloseHandle
lstrlenA
GetStartupInfoA
RemoveDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetLocalTime
GetWindowsDirectoryA
GetFileTime
SetFileTime
GetFileSize
LocalAlloc
LocalFree
ReleaseMutex
lstrcmpA
lstrcpynA
lstrcpyA
lstrcatA
GetCurrentThread
GetCurrentProcess
TerminateProcess
OpenProcess
GetVersion
GetProcessHeap
GetProcAddress
LoadLibraryA
GetLocaleInfoA
GetSystemDirectoryA
GetDateFormatA
GetTimeFormatA
GlobalMemoryStatus
TerminateThread
GetLogicalDriveStringsA
GetDiskFreeSpaceExA
GetDriveTypeA
CreateProcessA
WaitForSingleObject
lstrcmpiA
GetVersionExA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetTempPathA
MoveFileA
ExitProcess
WideCharToMultiByte
GetModuleHandleA
GetFileAttributesA
SetFileAttributesA
CopyFileA
DeleteFileA
CreateFileA
TransactNamedPipe
WriteFile
GetTickCount

Sections

.text
Size: 552KB - Virtual size: 552KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a4dc6d26ce8dce5cda52d4f09c1d0878

Headers

File Characteristics

Imports

msvcp60

user32

oleaut32

msvcrt

kernel32

Sections

.text Size: 552KB - Virtual size: 552KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 552KB - Virtual size: 552KB

.rsrc
Size: 12KB - Virtual size: 12KB