3c5640460340aad196a8812e795fe236

Sharing

Copy URL Twitter E-mail

General

Target

3c5640460340aad196a8812e795fe236
Size

35KB
MD5

3c5640460340aad196a8812e795fe236
SHA1

ba8d1555ed5898ca5891b9eb02cab7c8b56fcc89
SHA256

367dd1d88a370ea85e096f8cf1235029d133da7d2bd17479c5213ddbb8653f94
SHA512

7b59f5b40becaf82f4c2fef103b56e41a792aad7699cdfb79ccfdcbf982ed6e5e5eeadbb9625b64bfcf82372983afba191586f4412e18f69e89ff51b24b23f84
SSDEEP

384:1M1/ouSH+zcfcoXV6sPi47AxYcPBWRfuHWfkBDrC1Z6SfHyANlx:y1ZSZX9a47AIMBWWi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c5640460340aad196a8812e795fe236

Files

3c5640460340aad196a8812e795fe236
.exe windows:4 windows x86 arch:x86

d953c94d807a4e4210100752ceeee68d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
BuildCommDCBA
CallNamedPipeW
ClearCommError
CloseConsoleHandle
CloseHandle
CreateDirectoryW
CreateFileA
CreateFileMappingW
EndUpdateResourceA
EnterCriticalSection
EnumCalendarInfoA
EnumDateFormatsA
ExitProcess
FillConsoleOutputCharacterW
FindAtomW
FlushConsoleInputBuffer
FlushInstructionCache
GetAtomNameW
GetBinaryTypeA
GetCommConfig
GetCommandLineW
GetComputerNameA
GetConsoleAliasExesLengthW
GetConsoleAliasesA
GetConsoleCommandHistoryA
GetConsoleFontInfo
GetConsoleHardwareState
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceExW
GetEnvironmentStringsA
GetEnvironmentVariableA
GetFileAttributesExW
GetFileInformationByHandle
GetFullPathNameW
GetLargestConsoleWindowSize
GetLastError
GetLocalTime
GetLongPathNameA
GetMailslotInfo
GetModuleFileNameA
GetModuleHandleW
GetNamedPipeHandleStateA
GetPriorityClass
GetPrivateProfileStringA
GetPrivateProfileStructW
GetStartupInfoW
GetSystemDirectoryA
GetSystemPowerStatus
GetSystemTime
GetVersion
GetVolumeInformationW
GlobalAddAtomW
GlobalFlags
HeapCreate
HeapReAlloc
HeapSummary
IsBadCodePtr
LCMapStringW
LocalCompact
LocalSize
LockFile
MoveFileW
OpenProfileUserMapping
OpenWaitableTimerW
PrepareTape
Process32Next
QueryPerformanceFrequency
ReadConsoleInputExW
ReadConsoleOutputW
ReadFileEx
ResetEvent
SetConsoleCtrlHandler
SetConsoleDisplayMode
SetConsoleFont
SetConsoleHardwareState
SetConsoleNumberOfCommandsA
SetConsoleTitleW
SetCriticalSectionSpinCount
SetEndOfFile
SetFileAttributesW
SetLastError
SetTapeParameters
ShowConsoleCursor
SuspendThread
VerLanguageNameW
VirtualProtect
VirtualQuery
WaitForMultipleObjectsEx
WriteConsoleInputW
WriteConsoleOutputA
WritePrivateProfileSectionA
WritePrivateProfileStructA
WriteProfileStringA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynA
lstrcpynW

user32

BeginDeferWindowPos
CallMsgFilterA
CallNextHookEx
CallWindowProcA
CharUpperA
CharUpperW
CheckDlgButton
ChildWindowFromPoint
ClipCursor
CopyAcceleratorTableW
CreateCaret
CreateIconFromResourceEx
CreateIconIndirect
CreateWindowExW
DdeFreeDataHandle
DdeGetQualityOfService
DdeReconnect
DdeUnaccessData
DeferWindowPos
DeleteMenu
DispatchMessageA
DrawIcon
DrawIconEx
DrawTextExA
EmptyClipboard
FillRect
FindWindowExA
GetClassLongW
GetClipCursor
GetCursor
GetCursorInfo
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetGuiResources
GetLastActivePopup
GetMenu
GetParent
GetPriorityClipboardFormat
GetScrollRange
GetSystemMenu
GetUserObjectInformationW
GetWindowDC
GetWindowModuleFileNameA
GetWindowRgn
GetWindowTextA
GetWindowTextLengthA
IMPQueryIMEW
ImpersonateDdeClientWindow
InsertMenuItemA
IsCharUpperW
IsDialogMessageW
IsMenu
IsZoomed
LoadCursorA
LoadImageA
LoadMenuIndirectW
MessageBeep
MessageBoxIndirectA
MonitorFromWindow
OemToCharW
OpenIcon
PaintDesktop
PostThreadMessageA
RegisterClassExA
RegisterClipboardFormatA
RegisterClipboardFormatW
RemoveMenu
SendIMEMessageExA
SetDoubleClickTime
SetLastErrorEx
SetMessageQueue
SetParent
SetSysColors
SetUserObjectSecurity
SubtractRect
TabbedTextOutW
TranslateAcceleratorA
UnionRect
WINNLSGetIMEHotkey

gdi32

AbortDoc
CreateCompatibleBitmap
CreateDCW
CreateDiscardableBitmap
CreatePolyPolygonRgn
DeleteDC
DeviceCapabilitiesExW
EnumFontFamiliesExW
ExcludeClipRect
ExtCreatePen
GdiComment
GdiGetBatchLimit
GdiSetBatchLimit
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDIBColorTable
GetEnhMetaFileDescriptionA
GetEnhMetaFilePaletteEntries
GetGlyphOutlineW
GetICMProfileW
GetKerningPairsW
GetLogColorSpaceW
GetOutlineTextMetricsA
GetPaletteEntries
GetPixel
GetStretchBltMode
GetViewportOrgEx
OffsetClipRgn
Pie
PolyBezierTo
PolyTextOutA
Rectangle
SetDIBColorTable
SetDIBits
SetICMMode
SetMagicColors
SetMapMode
SetStretchBltMode
SetTextAlign
SetTextColor
StrokeAndFillPath
StrokePath
UnrealizeObject

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZQgu
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TZoO
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d953c94d807a4e4210100752ceeee68d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 18KB - Virtual size: 26KB

.ZQgu Size: 5KB - Virtual size: 12KB

.TZoO Size: 3KB - Virtual size: 14KB

.reloc Size: 1024B - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 18KB - Virtual size: 26KB

.ZQgu
Size: 5KB - Virtual size: 12KB

.TZoO
Size: 3KB - Virtual size: 14KB

.reloc
Size: 1024B - Virtual size: 6KB