2c3de84ece9a0d206d349cb508b74b09

General

Target

2c3de84ece9a0d206d349cb508b74b09
Size

89KB
MD5

2c3de84ece9a0d206d349cb508b74b09
SHA1

57cce25b2196e341330cca39f6adf48e1e13fa6f
SHA256

74261e7d8e86a2e294f00f926c2761ec4654e945a9a54f6f029c9727e2d22ec2
SHA512

6b04e35bae6258c174aae5758404208871491581451c7a0eb4f332f81d629f56b180ea596e7f29da3fed5117f53a5300939e1e3cf07a46a3631a7bdb791c5d2f
SSDEEP

1536:hJOkSaVKvHyg70s0JyVCAktV6sNnwf0BP5H5tfvR5fUv8UJZ1p5wV:hJOkSBy+0ZJyVCAkKYnwf0Bh5tfvR5fN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c3de84ece9a0d206d349cb508b74b09

Files

2c3de84ece9a0d206d349cb508b74b09
.exe windows:4 windows x86 arch:x86

1fc56db7e1cd33bd6e52d7b168c481ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DefineDosDeviceW
SetThreadPriorityBoost
WriteConsoleOutputW
OpenEventA
ConsoleMenuControl
CreateTimerQueueTimer
WaitForSingleObjectEx
DebugActiveProcess
VirtualProtect
OpenSemaphoreW
LocalCompact
GetConsoleCommandHistoryLengthA
Module32First
SetFileTime
DuplicateConsoleHandle
FindNextVolumeA
GetLastError
GetVolumeNameForVolumeMountPointA
SetWaitableTimer
LoadModule
GetNlsSectionName
FindClose
GetUserDefaultLangID

user32

DestroyMenu
GetActiveWindow
GetTaskmanWindow
CharLowerBuffW
CreatePopupMenu
GetParent
DrawEdge
SetWindowWord
RealGetWindowClassW
FrameRect
RealGetWindowClass
InsertMenuA

gdi32

ExtFloodFill
GdiProcessSetup
GdiConvertBrush
GetMiterLimit
SetDIBitsToDevice
GetCharWidthInfo
RectInRegion
SelectPalette
SetTextCharacterExtra
PolyPatBlt
GetTextFaceA
GdiGetDevmodeForPage
RestoreDC
EngDeletePalette
SetICMProfileA
GetCurrentPositionEx
EngQueryLocalTime
GetGraphicsMode
GetCharWidthFloatA
EngFindResource
GetCharacterPlacementW
GdiPlayEMF
BRUSHOBJ_hGetColorTransform
GdiEntry5
GetObjectA
GetDeviceCaps
GetAspectRatioFilterEx
EngCreatePalette
STROBJ_bEnumPositionsOnly

comdlg32

ReplaceTextA
ReplaceTextW
FindTextW
FindTextA
PageSetupDlgA
PrintDlgW
ChooseFontW
GetOpenFileNameW
dwOKSubclass
LoadAlterBitmap
PrintDlgExA
PageSetupDlgW

Sections

.text
Size: 4KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1fc56db7e1cd33bd6e52d7b168c481ad

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 172KB

.data Size: 81KB - Virtual size: 84KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 172KB

.data
Size: 81KB - Virtual size: 84KB

.idata
Size: 2KB - Virtual size: 4KB