1cb2c88c8864bd1db91a31a0bc78bfae

Sharing

Copy URL Twitter E-mail

General

Target

1cb2c88c8864bd1db91a31a0bc78bfae
Size

484KB
MD5

1cb2c88c8864bd1db91a31a0bc78bfae
SHA1

0a0278fd1a8bd8efcba259b725b51fd0c4e00beb
SHA256

556d74e173a481c7b87a5a2098f0f0da1cfd2a48cea2ecb64c4e52ec42021430
SHA512

a6f6e9d913ea50dafac0ee39e3f30978cb98ca3394716b0adf503fd40bcee7a9e0d7299b594a369b1b46cf53a39c4aa68295ee0310e6486f010819dbbbaabc7e
SSDEEP

6144:lrH8GY9Y6+0zEFb8ltgIhBcqZ+75bILPJR2Z22fE8dk3MdFx/A8OWBO4iD3NbX9B:VH8N+OE84ec1bILEE78Tx/A88lDNhRe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1cb2c88c8864bd1db91a31a0bc78bfae

Files

1cb2c88c8864bd1db91a31a0bc78bfae
.exe windows:4 windows x86 arch:x86

2a783f858ca959fe3b72455415633918

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

GetProcAddress
GetCurrentThreadId
GetEnvironmentStrings
GetUserDefaultLangID
TlsSetValue
GetSystemTime
UnhandledExceptionFilter
FlushFileBuffers
VirtualAlloc
DeleteCriticalSection
LCMapStringA
FreeEnvironmentStringsW
HeapDestroy
HeapCreate
ExitProcess
lstrcpynW
GetVersion
SetLocaleInfoW
GetModuleFileNameA
IsBadWritePtr
GetTimeZoneInformation
VirtualFree
CompareStringA
InterlockedExchange
FindNextFileW
MultiByteToWideChar
GetCurrentThread
GetStringTypeW
FreeEnvironmentStringsA
SetLastError
GetACP
InterlockedIncrement
OpenMutexA
GetFileType
HeapReAlloc
EnterCriticalSection
CloseHandle
WritePrivateProfileStringW
GetStdHandle
GetCommandLineA
LeaveCriticalSection
InterlockedDecrement
LCMapStringW
GetOEMCP
WriteFile
GetSystemTimeAsFileTime
CompareStringW
RtlUnwind
GetCurrentProcess
WideCharToMultiByte
GetCPInfo
TlsAlloc
GetStartupInfoA
ReadFile
TlsFree
GetStringTypeA
MapViewOfFileEx
GetEnvironmentStringsW
ConvertDefaultLocale
SetHandleCount
GetModuleHandleA
GetLocalTime
FlushInstructionCache
SetStdHandle
GetCurrentProcessId
GetLastError
SetFilePointer
FileTimeToSystemTime
TlsGetValue
GetTickCount
IsBadReadPtr
InitializeCriticalSection
QueryPerformanceCounter
TerminateProcess
CreateMutexA
EnumCalendarInfoExA
VirtualQuery
GetPrivateProfileSectionW
HeapFree
HeapAlloc
LoadLibraryA
SetEnvironmentVariableA

user32

GetUserObjectInformationA
RegisterClassA
CreateDesktopW
FillRect
GetTopWindow
RegisterClassExA
GetMenuItemID
GetClientRect
SwitchDesktop
SendDlgItemMessageA
FindWindowW
SetWindowWord
ModifyMenuA

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a783f858ca959fe3b72455415633918

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 4KB - Virtual size: 28KB

.data Size: 314KB - Virtual size: 313KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 4KB - Virtual size: 28KB

.data
Size: 314KB - Virtual size: 313KB

.rsrc
Size: 9KB - Virtual size: 8KB