2c28c84da1bb0b710b193a4344a5aa8b

General

Target

2c28c84da1bb0b710b193a4344a5aa8b
Size

43KB
MD5

2c28c84da1bb0b710b193a4344a5aa8b
SHA1

4a0a2af766431b739748b7d33a9cf5b71f925efa
SHA256

1518ee36f1fcc75617fc3345756cde9c764d413f01eebbd0f51f45e3617225fc
SHA512

59890677189063421c67e2edf5744b516568fa18e4c647483208606c1f9adae274049cfa11db3087d8f3f2db7b11e80d24c7be08c4429eec3f69c9486363e427
SSDEEP

768:wdY8yKuVU/zOpPeCmhx2LCgCEzPHtPaEnPpm0vXebY1f77TuiA9fPq:HuuVU/SpFmhILTaEnhpGbY1PTLA9q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c28c84da1bb0b710b193a4344a5aa8b

Files

2c28c84da1bb0b710b193a4344a5aa8b
.exe windows:4 windows x86 arch:x86

ce2d2239fa16c4e4018c6b1fa5e32f83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBW
CancelWaitableTimer
CreateSemaphoreW
DefineDosDeviceW
EnumCalendarInfoA
EnumSystemLocalesA
EnumSystemLocalesW
ExitProcess
FindFirstFileA
FindResourceExW
GetCommConfig
GetCommProperties
GetComputerNameA
GetLocalTime
GetLocaleInfoW
GlobalFix
GlobalFlags
GlobalMemoryStatus
IsBadCodePtr
PostQueuedCompletionStatus
ScrollConsoleScreenBufferW
SetThreadContext
SetThreadExecutionState
SetVolumeLabelW
WriteConsoleOutputW
WritePrivateProfileSectionA
lstrcmpA

user32

CallNextHookEx
CharNextW
CopyRect
CreateWindowStationA
DdeQueryConvInfo
EnumWindows
GetActiveWindow
GetCapture
GetClassWord
GetKeyState
GetMenuCheckMarkDimensions
GetWindowModuleFileNameA
IMPSetIMEW
IsCharUpperW
LoadBitmapA
MsgWaitForMultipleObjects
OemToCharBuffA
OemToCharBuffW
OffsetRect
PostThreadMessageA
SetCaretPos
SetUserObjectSecurity
SetWindowWord
SetWindowsHookExW

gdi32

CheckColorsInGamut
CloseFigure
CopyEnhMetaFileA
CreateDCW
CreateICW
EnumFontFamiliesW
EnumMetaFile
EnumObjects
FrameRgn
GetDIBColorTable
GetKerningPairsW
GetWinMetaFileBits
GetWindowOrgEx
OffsetClipRgn
OffsetRgn
Pie
RemoveFontResourceW
SetBoundsRect
SetDeviceGammaRamp
SetEnhMetaFileBits
SetLayout
SetPaletteEntries
SetViewportOrgEx

Sections

.text
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce2d2239fa16c4e4018c6b1fa5e32f83

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 16KB

.data Size: 41KB - Virtual size: 56KB

.rdata Size: - Virtual size: 20KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 16KB

.data
Size: 41KB - Virtual size: 56KB

.rdata
Size: - Virtual size: 20KB

.rsrc
Size: - Virtual size: 4KB