1c568426061229160cf3d1e7616c84c1

Sharing

Copy URL Twitter E-mail

General

Target

1c568426061229160cf3d1e7616c84c1
Size

244KB
MD5

1c568426061229160cf3d1e7616c84c1
SHA1

2b513a93d3780cee79e18b6ea84ec30c8f21807b
SHA256

10eb74b4c2ae32e17f2bb612001877a764462d74607c0f8600ce7edac6a28e6f
SHA512

7a48d3d930d233033334145990ea5788071e8cc06f244f24f0d9804b3ea96893a8696cee6b40008f6bea9ffde4cee80a0a0131d4e560aac068c54f8392d8638f
SSDEEP

6144:zOUj+bBvkSHQeZdz+654mEYvf9pd7ngyqhY:zOUj+bBDHLZdK6amEYNVcY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c568426061229160cf3d1e7616c84c1

Files

1c568426061229160cf3d1e7616c84c1
.exe windows:4 windows x86 arch:x86

5eaf29cc37afb1fa36093dd85e68f46c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LocalAlloc
lstrcmpiA
SetFilePointer
RaiseException
ExitProcess
lstrcatA
lstrlenA
SizeofResource
IsBadReadPtr
ExitThread
lstrcpyA
MulDiv
GetVersionExA
LocalReAlloc
GetModuleHandleA
VirtualAlloc
IsBadHugeReadPtr
WriteFile
LoadLibraryExA
GetCommandLineA
GetProcAddress
SetHandleCount
VirtualFree
LoadLibraryA
SetLastError
VirtualQuery
WideCharToMultiByte
MoveFileA
SetThreadLocale
GetCommandLineW
SetErrorMode
lstrcmpA
LocalFree

gdi32

CreateDIBitmap
CopyEnhMetaFileA
SaveDC
CreateBitmap
GetDIBColorTable
SetPixel
BitBlt

user32

SendMessageA
SetPropA
GetClientRect
CharLowerBuffA
WindowFromPoint
RemoveMenu
FrameRect
CreatePopupMenu
MoveWindow
GetFocus
GetMenuItemCount
GetScrollRange
CharNextA
SetForegroundWindow
InvalidateRect
GetClassNameA
InsertMenuA
CharUpperBuffA
SetWindowsHookExA
GetMenuItemInfoA
TranslateMDISysAccel
ReleaseCapture
CharLowerA
GetScrollInfo
GetMenuStringA
GetMenuState
GetForegroundWindow
IsChild
EnumWindows
DefWindowProcA
DrawTextA
GetMessagePos
GetWindowLongA
GetClipboardData
GetCursor
DrawMenuBar
DrawIcon
DrawFrameControl
PostMessageA
IsWindowUnicode
DrawEdge
GetIconInfo
ShowWindow
GetKeyboardLayout
SetMenu
SetWindowTextA
IntersectRect
SetWindowLongA
GetWindowRect
ScrollWindow
IsDialogMessageW
SetScrollInfo
GetWindowDC
GetKeyboardState
GetWindow
GetMenuItemID
IsIconic
EnumChildWindows
wsprintfA
GetKeyState
IsWindowVisible
IsRectEmpty
IsZoomed
GetKeyboardType
DestroyWindow
MapWindowPoints
GetSysColor
GetSystemMetrics
GetDesktopWindow
DrawIconEx
EnableMenuItem
EndPaint
GetParent
DestroyIcon
OffsetRect
GetTopWindow
GetMenu
TranslateMessage
RemovePropA
IsWindowEnabled
CreateMenu
EnableScrollBar
PeekMessageA
RegisterClipboardFormatA
DeleteMenu
ReleaseDC
GetScrollPos
GetWindowThreadProcessId
GetWindowLongW
GetSysColorBrush
EqualRect

Sections

CODE
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES72
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES77
Size: 1024B - Virtual size: 533B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES43
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES99
Size: 512B - Virtual size: 119B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES16
Size: 512B - Virtual size: 109B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES23
Size: 512B - Virtual size: 139B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES11
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES89
Size: 1024B - Virtual size: 791B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5eaf29cc37afb1fa36093dd85e68f46c

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

CODE Size: 73KB - Virtual size: 73KB

.data Size: 157KB - Virtual size: 157KB

.RES72 Size: 1024B - Virtual size: 544B

.RES77 Size: 1024B - Virtual size: 533B

.RES43 Size: 3KB - Virtual size: 3KB

.RES99 Size: 512B - Virtual size: 119B

.RES16 Size: 512B - Virtual size: 109B

.RES23 Size: 512B - Virtual size: 139B

.RES11 Size: 1KB - Virtual size: 1KB

.RES89 Size: 1024B - Virtual size: 791B

.rsrc Size: 2KB - Virtual size: 2KB

CODE
Size: 73KB - Virtual size: 73KB

.data
Size: 157KB - Virtual size: 157KB

.RES72
Size: 1024B - Virtual size: 544B

.RES77
Size: 1024B - Virtual size: 533B

.RES43
Size: 3KB - Virtual size: 3KB

.RES99
Size: 512B - Virtual size: 119B

.RES16
Size: 512B - Virtual size: 109B

.RES23
Size: 512B - Virtual size: 139B

.RES11
Size: 1KB - Virtual size: 1KB

.RES89
Size: 1024B - Virtual size: 791B

.rsrc
Size: 2KB - Virtual size: 2KB