4cdc8ee9477b9b833f6d52e9e0dfc711

Sharing

Copy URL Twitter E-mail

General

Target

4cdc8ee9477b9b833f6d52e9e0dfc711
Size

697KB
MD5

4cdc8ee9477b9b833f6d52e9e0dfc711
SHA1

3ab3ad180cf84c5ec726bf1bf8cfd54a8590d7af
SHA256

cb7473e1d3c5c5f13550da5ab68fa6f7ea3a79822b86f32b26a68332dc6ffdfc
SHA512

acd600144c10de734fc941e24e4e87df8d2482658bc1dd346faea33bd206860fdc1d6b6732d0bb2aa50bac833093b6bfe98e4fae3ebe8b43080db00c489a1ce8
SSDEEP

12288:YL3fQIKZkuKPbVBJi+G9i0R+FAEyRhtzr765Ud730DQtqbB4NK:XRZNKP3G9i7FAPhJr765GEFeK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cdc8ee9477b9b833f6d52e9e0dfc711

Files

4cdc8ee9477b9b833f6d52e9e0dfc711
.exe windows:4 windows x86 arch:x86

6063f30d23d975e50ec61a42a21e5bf3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkMode
SetBkColor
DeleteObject

user32

SetWindowPos
GetDC
ReleaseDC
GetActiveWindow
DestroyWindow
GetParent
UpdateWindow
TranslateMessage
GetSubMenu
FillRect
SetCapture
ReleaseCapture
SetWindowTextA
CheckMenuItem
GetDlgItem
ScreenToClient
LoadCursorA
IsWindowVisible
InvalidateRect
GetClientRect

kernel32

GetStdHandle
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
HeapDestroy
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
FreeEnvironmentStringsW
GetTempPathA
GetCPInfo
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
InitializeCriticalSection
FindClose
GetCurrentThread
GetVersion
GetTickCount
GetCurrentProcessId
GetModuleHandleA
GetLastError
GetCommandLineA
GetCurrentThreadId
ExitProcess
VirtualAlloc
ResetEvent
Sleep
VirtualFree
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SetStdHandle
GetModuleHandleW
GlobalLock
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
RaiseException
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
GetCommandLineW
CreateProcessW
GetEnvironmentStringsW
LCMapStringA
GlobalFree
GetSystemInfo
HeapCreate
LCMapStringW
InterlockedIncrement
CreateFileA
TlsSetValue
GetFileType
ExpandEnvironmentStringsA
CreateFileMappingA
CompareStringA
FindFirstFileA
GetProcessHeap
GetProcAddress
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
IsDebuggerPresent
GetModuleFileNameW
SetLastError
FormatMessageA
TlsGetValue

Sections

.text
Size: 660KB - Virtual size: 982KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6063f30d23d975e50ec61a42a21e5bf3

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 660KB - Virtual size: 982KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 19KB - Virtual size: 19KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 660KB - Virtual size: 982KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 19KB - Virtual size: 19KB

.rsrc
Size: 11KB - Virtual size: 10KB