2c66653786f51d2077fc6a868df7d790

Sharing

Copy URL

Twitter E-mail

General

Target

2c66653786f51d2077fc6a868df7d790
Size

4.5MB
MD5

2c66653786f51d2077fc6a868df7d790
SHA1

10a2f23a46651782b4a63bef5a95e303ef937b3d
SHA256

ed01c8785589389aa0e9b2bb9b9187c1cb33e7e784a8fc9aa3d11e8435c141b6
SHA512

8c26aa6df5dca3811d4e256b69c70d5d68cf30c4aa8b8fa26f2cbbff38471eaad0b1e1fa388cbed1e6b696755dc4d561a511f83b720e16d7dc3ebf49c7f6fba7
SSDEEP

98304:Ot0nUIrG5lcS3EcJ6mvSG0oSCQXvkAiL1xQ9MDZ0HuwxWuGcdrHh3e:gmqUc58RWzQ9+23f1Hhu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c66653786f51d2077fc6a868df7d790

Files

2c66653786f51d2077fc6a868df7d790
.exe windows:4 windows x86 arch:x86

bbaa6df883da7768c895ff451a9e3564

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetSystemDirectoryA
CreateProcessA
WaitForSingleObject
GetWindowsDirectoryA
GetModuleFileNameA
SetEndOfFile
LoadLibraryA
CreateDirectoryA
CloseHandle
SetHandleCount
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
MultiByteToWideChar
InterlockedDecrement
GetCPInfo
GetLastError
WideCharToMultiByte
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
RaiseException
RtlUnwind
GetProcAddress
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
GetStdHandle
GetFileType
DeleteCriticalSection
ReadFile
WriteFile
GetConsoleCP
GetConsoleMode
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
ExitProcess
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateFileA
InitializeCriticalSection
SetStdHandle
FlushFileBuffers
VirtualAlloc
HeapReAlloc
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
HeapSize
GetLocaleInfoA

advapi32

RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA

shell32

ShellExecuteA

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbaa6df883da7768c895ff451a9e3564

Headers

File Characteristics

Imports

version

kernel32

advapi32

shell32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 36KB - Virtual size: 33KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 36KB - Virtual size: 33KB