4cfe9b119cc50dad947d975c8ced536e

Sharing

Copy URL

Twitter E-mail

General

Target

4cfe9b119cc50dad947d975c8ced536e
Size

224KB
MD5

4cfe9b119cc50dad947d975c8ced536e
SHA1

6a70c264f55074ead6ebfa9b63246a720e2dda9e
SHA256

5d349b887bfccf1608fba98d60a16f26c22fe8a4b87044147e934b0c9b0b9e76
SHA512

862984eb98a9565e02a2e9e3888fbe5cbc755a3ed85a09d8b3e36a0bc4bfb206f48eaf558e95137ff09c80799d3e563f77d89ff1a93c3e9d55027060b571bef5
SSDEEP

6144:gny4ehrz4CmsNENqYr2/bRKEJBYnshgAD+WHlx5NCj:gn8RNENwJ+nACS7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4cfe9b119cc50dad947d975c8ced536e

Files

4cfe9b119cc50dad947d975c8ced536e
.exe windows:5 windows x86 arch:x86

c61a572a142dfa0cd9328151a59d7cfa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PatBlt
GetTextExtentExPointW
LPtoDP
CreateFontW
CreateBrushIndirect
LineTo
GetSystemPaletteEntries
SetTextColor
EnumFontFamiliesExW
GetBitmapBits
GetTextColor
CreateSolidBrush
StretchBlt
CreateHatchBrush
SetStretchBltMode
FillRgn
EnumFontFamiliesW
OffsetViewportOrgEx
CreatePolygonRgn
ExtTextOutW
SetDIBits
CreateDIBSection
EndPath
SetBkMode
GetClipBox
FlattenPath
SetViewportOrgEx
GetTextAlign
GetLayout
CreateDiscardableBitmap
PathToRegion
CreateRectRgnIndirect
RestoreDC
Polygon
DPtoLP
CreateHalftonePalette
CreateEllipticRgnIndirect
RealizePalette

comdlg32

ReplaceTextW
CommDlgExtendedError
ChooseFontW
GetOpenFileNameW
GetSaveFileNameW

user32

OemToCharBuffA
ShowOwnedPopups
GetShellWindow
CharPrevA
SetWindowRgn
CopyRect
InvertRect
LoadMenuA
TrackPopupMenu
ChangeMenuW
RemoveMenu
SetLastErrorEx
InSendMessage
CheckMenuRadioItem
GetSysColorBrush
GetKeyState
ShowCaret
MapVirtualKeyExW
wsprintfW
GetUpdateRgn
wvsprintfA
GetKeyboardType
CharToOemBuffA
MessageBoxA
TabbedTextOutW
RegisterClassW
IsCharUpperA
DestroyAcceleratorTable
GetLastActivePopup
UnregisterClassW
SetCursor
GetScrollInfo
IsMenu
InternalGetWindowText
IsRectEmpty
SetSysColors
SendMessageA
LoadAcceleratorsW
LoadBitmapA
GetTopWindow
AttachThreadInput
CopyAcceleratorTableW
IsCharAlphaNumericW
SendDlgItemMessageW
PeekMessageW
ExitWindowsEx
LoadImageW
GetClassInfoExA
GetDialogBaseUnits
SetCursorPos
ToUnicodeEx
EnableWindow
CreateAcceleratorTableW
IsCharLowerA
GetMenuItemRect
CallWindowProcW
mouse_event
EnumChildWindows
DestroyCursor
UnloadKeyboardLayout
DrawStateW
OpenInputDesktop
PtInRect
IsDlgButtonChecked
GetWindowPlacement
DialogBoxParamA
GetClipCursor
GetActiveWindow
InSendMessageEx
IsDialogMessageW
GetUpdateRect
SetScrollInfo
ClientToScreen
GetDC
DefDlgProcA
GetNextDlgTabItem
FillRect
GetMonitorInfoW
ScreenToClient
ReplyMessage
CharLowerA
SetCaretPos
CharPrevW
DrawEdge
SetDlgItemInt
CreateWindowExW
ScrollWindowEx
SendMessageTimeoutW
CharUpperBuffW

msvcrt

_controlfp
toupper
swprintf
getc
__set_app_type
isalnum
mktime
strcoll
__p__fmode
puts
fprintf
__p__commode
fread
wcsstr
strchr
fseek
_amsg_exit
_initterm
_acmdln
exit
setvbuf
strcspn
towlower
mbtowc
wcscpy
sscanf
calloc
_ismbblead
free
wcscoll
wcscat
_XcptFilter
_exit
islower
_cexit
__setusermatherr
tolower
printf
__getmainargs
towupper

kernel32

GetFileType
SetEvent
GetFullPathNameW
lstrcatW
GlobalUnlock
UnlockFile
GetFileAttributesExW
MulDiv
GlobalAddAtomA
GlobalAddAtomW
VirtualProtect
GetACP
GlobalCompact
GlobalMemoryStatusEx
CloseHandle
VirtualFree
SetThreadLocale
GetTempPathW
lstrcpynA
FindNextFileW
CreateSemaphoreW
IsDBCSLeadByte
TlsSetValue
GetLocaleInfoA
GetWindowsDirectoryW
CreateSemaphoreA
BuildCommDCBAndTimeoutsW
AddAtomA
GetLastError
EnumSystemLocalesA
SetErrorMode
SetCommMask
GlobalAlloc
GlobalGetAtomNameA
GetThreadContext
FormatMessageW
GetDateFormatA
CreateEventA
WaitCommEvent
CreateDirectoryA

Exports

Exports

?ResetEventHDJhjhFff@@YGKEPA_WG@Z
?ResetEventHDhjdDYUuYdf@@YGKEPA_WG@Z

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c61a572a142dfa0cd9328151a59d7cfa

Headers

File Characteristics

Imports

gdi32

comdlg32

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 180KB - Virtual size: 179KB

.data Size: 28KB - Virtual size: 28KB

.rdata Size: 12KB - Virtual size: 11KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 180KB - Virtual size: 179KB

.data
Size: 28KB - Virtual size: 28KB

.rdata
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 2KB