4cca065bb0330dffce620cf47d0aeb39

Sharing

Copy URL

Twitter E-mail

General

Target

4cca065bb0330dffce620cf47d0aeb39
Size

176KB
MD5

4cca065bb0330dffce620cf47d0aeb39
SHA1

3319bf811d95207384609d7fa0278cdc14500718
SHA256

e68fcfd1e7bc76c54c0e4dee8366871640d4035c7045e383eb4f6df65e075e79
SHA512

744dd819f25abdff78d04b0c3d8875e936cdf17f3434ceaf3de377cd8e07e6e1304dc4288232743505b5ea2f8fc5301cae6e1b6a1fbbe56ac23f41958e6d80a2
SSDEEP

3072:TuAPwqxrVzjpz1in36COUxRKqovt7ecDU9FUxtKmRl7nb4luO2I:p7ztzQD5AFdDUIxR64O2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cca065bb0330dffce620cf47d0aeb39

Files

4cca065bb0330dffce620cf47d0aeb39
.exe windows:4 windows x86 arch:x86

f4f85ea78a0d18e9d07f97d807415b41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleUninitialize
CoRevokeClassObject
CoGetClassObject
CreateILockBytesOnHGlobal
OleInitialize
CoRetireServer
CoTaskMemAlloc
StgOpenStorageOnILockBytes
CoUninitialize
CoRegisterMessageFilter
OleFlushClipboard
CoTaskMemFree
StgCreateDocfileOnILockBytes
CLSIDFromProgID
OleIsCurrentClipboard
CoCreateInstance
CoInitialize
CoFreeUnusedLibraries
CLSIDFromString

gdi32

CreateBrushIndirect
CreateCompatibleBitmap
PatBlt
CreateRectRgn
GetViewportOrgEx
ExtEscape
StartDocW
DeleteObject
BitBlt
CombineRgn
LineTo
GetDeviceCaps
CreateBitmap
GetGraphicsMode
EndDoc
GetObjectA
SetGraphicsMode
ExtCreatePen
ModifyWorldTransform
GetDIBColorTable
DeleteDC
SelectClipRgn
MoveToEx
SelectObject
SetMiterLimit
Escape
SetROP2
EndPage
SelectClipPath
BeginPath
SaveDC
AbortDoc
EqualRgn
CreateCompatibleDC
FillPath
CreateICW
SetStretchBltMode
OffsetRgn
Rectangle
SetPolyFillMode
PolyBezierTo
GetRegionData
GetRgnBox
StretchBlt
StartPage
CreatePatternBrush
CreateDIBSection
PolylineTo
EndPath
SelectPalette
GetStockObject
GetClipBox
GetCurrentObject
SetBrushOrgEx
RestoreDC
CreatePolyPolygonRgn
GetWorldTransform
CreatePalette
RealizePalette
IntersectClipRect
ExtSelectClipRgn
CloseFigure
SetDIBits
CreateDCW
SetWorldTransform
StrokePath
ResetDCW
StretchDIBits
PolyDraw

shlwapi

PathRemoveFileSpecA
PathAppendA

user32

DestroyWindow
ReleaseDC
LoadCursorA
SetWindowPos
CharNextW
SetActiveWindow
GetSystemMetrics
GetActiveWindow
GetWindowRect
GetDC
ScrollWindowEx
MonitorFromPoint
GetClientRect
OffsetRect
EnumDisplayMonitors
DefWindowProcA
LoadIconA
GetMonitorInfoA
WindowFromDC
MonitorFromWindow
CreateWindowExA
RegisterClassA
GetDesktopWindow
UnregisterClassA

msimg32

AlphaBlend

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

kernel32

GetCalendarInfoW
QueryPerformanceCounter
GetModuleFileNameA
WideCharToMultiByte
ExitProcess
GlobalLock
GetWindowsDirectoryA
FindFirstFileA
GetFileTime
GetTempPathW
GetProfileStringW
EnterCriticalSection
GetSystemDirectoryA
FindClose
GetCurrentDirectoryA
GetThreadPriority
GlobalAlloc
FindNextFileA
GetDateFormatW
IsDebuggerPresent
GetModuleHandleA
GetThreadLocale
GetSystemDefaultLCID
GetACP
FreeLibrary
GetCurrentThreadId
ReadFile
CreateFileA
GetLastError
IsProcessorFeaturePresent
LoadLibraryA
TerminateProcess
TlsSetValue
GlobalFree
ReleaseSemaphore
GetDateFormatA
GetFileSize
SetCurrentDirectoryA
WaitForSingleObject
CloseHandle
SetUnhandledExceptionFilter
DeleteCriticalSection
GetTimeFormatW
TlsGetValue
EnumResourceNamesA
CreateMutexA
GetLocalTime
InitializeCriticalSection
MultiByteToWideChar
InterlockedExchange
lstrcmpW
GetSystemInfo
GetLocaleInfoA
GetEnvironmentVariableW
Sleep
lstrlenW
DeleteFileW
UnhandledExceptionFilter
GetProcAddress
GetTickCount
GetVersionExA
GetCurrentThread
SetThreadPriority
CreateSemaphoreA
GetTimeFormatA
GlobalSize
LocalAlloc
GetCurrentProcess
LeaveCriticalSection
InterlockedCompareExchange
GetUserDefaultLangID
GlobalUnlock
TlsFree
GetCurrentProcessId
InterlockedIncrement
ReleaseMutex
GetSystemTimeAsFileTime
RaiseException

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4f85ea78a0d18e9d07f97d807415b41

Headers

File Characteristics

Imports

ole32

gdi32

shlwapi

user32

msimg32

advapi32

kernel32

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 67KB - Virtual size: 66KB

.edata Size: 1024B - Virtual size: 92KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 67KB - Virtual size: 66KB

.edata
Size: 1024B - Virtual size: 92KB