4ceeec8e1b4c139367bf3ef6b75617f2

Sharing

Copy URL

Twitter E-mail

General

Target

4ceeec8e1b4c139367bf3ef6b75617f2
Size

580KB
MD5

4ceeec8e1b4c139367bf3ef6b75617f2
SHA1

3e16f269f35da966b79ee36ecf24ac988c853350
SHA256

da8e91378389d674c3ee6336552a5fb0a0b753b6abc09a3ee7f277a1af88f755
SHA512

4e9b996a98c75fa3b8979171d9892a9bd0698b339595acae9b5668d570ea7e8d8a72040bbf7774023184902f2771af24618584c99deabb0f9ed05c05a1cb247a
SSDEEP

12288:x9kMjyeuMAlzmlXNoLBPdCPAo05jQ7Ex2b+PADH:x9kMjyeuFlzmlNoUA95jQgxPA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ceeec8e1b4c139367bf3ef6b75617f2

Files

4ceeec8e1b4c139367bf3ef6b75617f2
.exe windows:4 windows x86 arch:x86

c18eb37588ff7a92a117dd43044c6db1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
SubtractRect
IsWindow
IsCharAlphaA
GrayStringA
ReplyMessage
GetCursorInfo
CallMsgFilter
RegisterClassA
GetKeyNameTextA
LoadStringA
CreateDialogIndirectParamA
SetWindowLongW
GetAsyncKeyState
DrawTextW
HideCaret
CreateCaret
LoadCursorFromFileA
IsCharLowerA
GetKeyboardLayout
DefWindowProcW
CallMsgFilterW
GetTopWindow
SetLastErrorEx
GetMenuStringW
GetNextDlgGroupItem
GetListBoxInfo
EditWndProc
CharNextA
wsprintfA
FindWindowA
SetCapture
EnableWindow
ShowWindow
DrawTextExW
SetSysColors
SetUserObjectSecurity
DefMDIChildProcA
RegisterClassExA
EndDeferWindowPos
DestroyWindow
GetMessageW
OpenInputDesktop
SetMenuContextHelpId
IsCharAlphaNumericW
ChangeMenuW
CreateWindowExW
MessageBoxA
GetScrollInfo
SetCaretPos
SetClassLongA
CreateIconFromResourceEx
GetInputDesktop

kernel32

VirtualFree
GetTimeFormatA
SetLastError
TerminateProcess
ExitProcess
InterlockedExchange
WriteFile
HeapCreate
TlsAlloc
GetCurrentThreadId
GetConsoleCP
GetTickCount
GetEnvironmentStringsW
DeleteCriticalSection
CompareStringA
SetConsoleCtrlHandler
MultiByteToWideChar
WideCharToMultiByte
GetCurrentThread
HeapDestroy
HeapAlloc
GetFileType
VirtualQuery
GetStartupInfoA
FreeEnvironmentStringsW
GetCurrentProcess
GetACP
FlushFileBuffers
OpenMutexA
MoveFileA
GetModuleFileNameW
RtlUnwind
HeapSize
WriteConsoleW
CloseHandle
FreeLibrary
ReadFile
WriteConsoleA
TlsGetValue
GetConsoleMode
TlsSetValue
GetNamedPipeInfo
LeaveCriticalSection
InterlockedDecrement
SetUnhandledExceptionFilter
GetModuleFileNameA
IsValidCodePage
LCMapStringA
CompareStringW
GetTimeZoneInformation
GetStringTypeA
GetConsoleOutputCP
InitializeCriticalSection
CreateMutexA
GetCurrentProcessId
GetEnvironmentStrings
GetLocaleInfoA
FreeEnvironmentStringsA
SetHandleCount
CreateFileA
GetOEMCP
VirtualAlloc
InterlockedIncrement
LoadLibraryA
GetStartupInfoW
HeapReAlloc
GetStringTypeW
GetLastError
EnterCriticalSection
Sleep
GetCommandLineA
GetVersionExA
EnumSystemLocalesA
GetCurrencyFormatA
SetStdHandle
LCMapStringW
GetProcessHeap
GetProcAddress
QueryPerformanceCounter
IsDebuggerPresent
GetLocaleInfoW
GetModuleHandleA
GetUserDefaultLCID
UnhandledExceptionFilter
GetStdHandle
GetSystemTimeAsFileTime
HeapFree
GetCommandLineW
GetCPInfo
GetProfileStringW
SetEnvironmentVariableA
GetDateFormatA
GetCompressedFileSizeA
SetFilePointer
TlsFree
IsValidLocale

comctl32

CreateToolbarEx
CreateMappedBitmap
InitCommonControlsEx
ImageList_Create
DestroyPropertySheetPage
ImageList_LoadImage
CreateStatusWindowW
ImageList_SetDragCursorImage
DrawStatusTextA
ImageList_DrawEx

comdlg32

FindTextA
ChooseFontA
PrintDlgW

Sections

.text
Size: 176KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c18eb37588ff7a92a117dd43044c6db1

Headers

File Characteristics

Imports

user32

kernel32

comctl32

comdlg32

Sections

.text Size: 176KB - Virtual size: 172KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 116KB - Virtual size: 133KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 176KB - Virtual size: 172KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 116KB - Virtual size: 133KB

.rsrc
Size: 20KB - Virtual size: 19KB