4cc1a261ac32298e217e3d89fc92fadf

General

Target

4cc1a261ac32298e217e3d89fc92fadf
Size

156KB
MD5

4cc1a261ac32298e217e3d89fc92fadf
SHA1

aa5d8991c0238f80d943330c32b7af841d5c4b86
SHA256

efe2f2df5eed305d8586094a0065699730e67b5165f7653db39e0a50d483a247
SHA512

bd000741825a546e6114a490698156545f8b6b1ec3bb65846c591b95e9e8e08dbc503b19f76a8006626e0cc31b2c6730a64737b06b4c74b1892d0b93ae9c9f50
SSDEEP

3072:wZApu63eBczsfQOt9vXwL8V0uax98yfwAeGeKt2Zjp:wZApu63emoYOt9UWxax2X5BKWN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cc1a261ac32298e217e3d89fc92fadf

Files

4cc1a261ac32298e217e3d89fc92fadf
.dll windows:5 windows x86 arch:x86

79444aa81a1e2d4ba16fa4887fe684e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetSystemMetrics

msvcr90

_vsnprintf
free
malloc
??_V@YAXPAX@Z
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_unlock
__dllonexit
_lock
_onexit
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_except_handler4_common
??_U@YAPAXI@Z
_ismbblead
atoi
_purecall
strncmp
memset
memcpy
??2@YAPAXI@Z
??3@YAXPAX@Z
strncpy
memchr
strtok

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
WideCharToMultiByte
DisableThreadLibraryCalls

Exports

Exports

CanUnload2
RMACreateInstance

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

79444aa81a1e2d4ba16fa4887fe684e8

Headers

File Characteristics

Imports

user32

msvcr90

kernel32

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 25KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text Size: 115KB - Virtual size: 116KB

.text
Size: 26KB - Virtual size: 25KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB

.text
Size: 115KB - Virtual size: 116KB