1ced3ea27951ae9afa123f6dfeb17e10

Sharing

Copy URL Twitter E-mail

General

Target

1ced3ea27951ae9afa123f6dfeb17e10
Size

29KB
MD5

1ced3ea27951ae9afa123f6dfeb17e10
SHA1

f4a4269d70573c7455d406ccf556e2589ae9e83a
SHA256

2d24c15e4f50a9f9ff9cc729a76f27040742ff6f1866bc23e13ad39b35be9db2
SHA512

0e08b697e6d9962405af0ed9564ada99e2cd1b06fad29e82fb3daa3b66f7cd8a6d4b5ec5664f960ebc0c5660ff094ba5756a32294386434c33f638fa7dae5dd7
SSDEEP

384:qzXoIfz0ho3vgJZFx9TKarughP5Qurq9QaJM257ehjcj:qzXoAQhIKHxQzgh5QuPaJJ5S5c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ced3ea27951ae9afa123f6dfeb17e10

Files

1ced3ea27951ae9afa123f6dfeb17e10
.exe windows:4 windows x86 arch:x86

0397082e3662a8dd71e7284ab05edbad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BeginUpdateResourceW
CloseHandle
CommConfigDialogA
CreateEventW
CreateFileMappingA
CreateMailslotA
CreateMailslotW
CreateNamedPipeW
DefineDosDeviceW
DisconnectNamedPipe
EnumDateFormatsW
EnumSystemCodePagesA
EnumSystemCodePagesW
EnumTimeFormatsW
ExitProcess
FindAtomW
FindFirstChangeNotificationW
FindFirstFileA
FindFirstFileW
FlushConsoleInputBuffer
FlushInstructionCache
FreeResource
GetAtomNameA
GetCPInfo
GetCommandLineW
GetConsoleCommandHistoryW
GetConsoleKeyboardLayoutNameW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetLastError
GetLocalTime
GetLogicalDrives
GetLongPathNameA
GetModuleHandleW
GetPrivateProfileIntA
GetPrivateProfileStructA
GetProcessWorkingSetSize
GetProfileIntW
GetShortPathNameA
GetStartupInfoW
GetSystemDirectoryA
GetSystemTime
GetVDMCurrentDirectories
GetVersion
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalFindAtomW
GlobalGetAtomNameW
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
IsDBCSLeadByteEx
IsValidLocale
LCMapStringW
LocalShrink
LockFile
Module32First
MoveFileA
MoveFileW
MoveFileWithProgressA
OpenFile
ReadConsoleOutputW
RemoveDirectoryW
ResumeThread
RtlMoveMemory
RtlUnwind
SearchPathW
SetCommConfig
SetConsoleCursorPosition
SetConsoleMaximumWindowSize
SetConsoleNumberOfCommandsA
SetConsoleNumberOfCommandsW
SetCriticalSectionSpinCount
SetCurrentDirectoryA
SetEndOfFile
SetHandleCount
SetLastError
SetMailslotInfo
SetSystemPowerState
SetVolumeLabelA
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TransactNamedPipe
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualProtect
WaitForMultipleObjectsEx
WaitNamedPipeA
WideCharToMultiByte
WriteConsoleOutputCharacterA
WriteProfileSectionW
_lwrite
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyW

user32

ActivateKeyboardLayout
AppendMenuA
AppendMenuW
ArrangeIconicWindows
CascadeChildWindows
CharLowerA
CharUpperA
CharUpperW
CheckRadioButton
CopyImage
CreateAcceleratorTableW
CreateDialogIndirectParamA
CreateWindowExW
DdeAccessData
DdeCmpStringHandles
DdeCreateDataHandle
DdeCreateStringHandleA
DdeFreeStringHandle
DdeKeepStringHandle
DdeQueryConvInfo
DdeQueryNextServer
DdeSetQualityOfService
DestroyCursor
DialogBoxIndirectParamW
DispatchMessageW
DlgDirListComboBoxW
DrawCaption
DrawTextA
EnableMenuItem
EnumDisplaySettingsExA
EnumThreadWindows
EqualRect
FindWindowW
GetAncestor
GetCaretPos
GetClipCursor
GetCursor
GetCursorInfo
GetDCEx
GetFocus
GetForegroundWindow
GetIconInfo
GetListBoxInfo
GetMenu
GetMenuStringW
GetMessagePos
GetParent
GetUserObjectInformationW
GetUserObjectSecurity
GetWindowDC
GetWindowLongA
IMPQueryIMEW
IMPSetIMEW
ImpersonateDdeClientWindow
InsertMenuItemA
IsCharAlphaW
LoadAcceleratorsW
LoadCursorFromFileW
MonitorFromPoint
MsgWaitForMultipleObjectsEx
OffsetRect
PostMessageW
RealChildWindowFromPoint
ReuseDDElParam
SendInput
SetCaretBlinkTime
SetFocus
SetMenu
SetWindowTextA
SetWindowTextW
SwapMouseButton
SystemParametersInfoW
TrackMouseEvent
UnhookWindowsHookEx
UnloadKeyboardLayout
WINNLSEnableIME
WinHelpA
wvsprintfW

gdi32

BitBlt
CreateDCA
CreateDiscardableBitmap
CreatePolygonRgn
EnumFontFamiliesExW
EnumFontsA
EnumObjects
ExtEscape
FlattenPath
GdiComment
GdiFlush
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorAdjustment
GetColorSpace
GetCurrentObject
GetDCOrgEx
GetDIBColorTable
GetEnhMetaFileA
GetEnhMetaFileBits
GetEnhMetaFilePaletteEntries
GetFontData
GetGraphicsMode
GetICMProfileA
GetMetaRgn
GetMiterLimit
GetObjectType
GetPixel
GetTextMetricsW
GetWindowOrgEx
PolyBezier
PolyPolygon
PolyTextOutA
RectInRegion
SetBkMode
SetDIBColorTable
SetEnhMetaFileBits
SetViewportExtEx
SetWindowExtEx
StartDocW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.squq
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0397082e3662a8dd71e7284ab05edbad

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 26KB

.squq Size: 4KB - Virtual size: 16KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 26KB

.squq
Size: 4KB - Virtual size: 16KB

.reloc
Size: 1024B - Virtual size: 4KB