5c2f98e4439059a9ccac544658802363

Sharing

Copy URL Twitter E-mail

General

Target

5c2f98e4439059a9ccac544658802363
Size

89KB
MD5

5c2f98e4439059a9ccac544658802363
SHA1

b1054ec775161a25be95f37bdd1deb3e2bd71324
SHA256

212befe9ace85efdf6641fcfb16565e2d384f7dd89c1135d686557c74969f322
SHA512

fca0403ff0484520a76abc7c5718bcf16e047633afa131583ea3ba1ac6f9474df07cb8c59020c708ac320de58c407be21f36677f3f9994c30edce6ee0cf5bd78
SSDEEP

1536:6drjeTq8e/IALxMOPf7M86fsbmJYXTBQO7278uM0vwqzOXYHWiS+Efg:6dXe2/ZFzjCsbmJYXVloZvwriEfg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c2f98e4439059a9ccac544658802363

Files

5c2f98e4439059a9ccac544658802363
.exe windows:4 windows x86 arch:x86

957cebdc52fb7fed219813a8a7742fbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CancelTimerQueueTimer
SetConsoleCursorInfo
SetDefaultCommConfigW
GetConsoleWindow
WritePrivateProfileStringW
DisableThreadLibraryCalls
GetPrivateProfileStringA
WriteConsoleOutputAttribute
ValidateLCType
GetLastError
GetCPInfo
RegisterConsoleOS2
GetVolumeNameForVolumeMountPointA
GetConsoleFontInfo
GetPrivateProfileStringW
WriteConsoleInputVDMA
BackupWrite
GetSystemDefaultUILanguage
RtlUnwind
VirtualProtect
EnumLanguageGroupLocalesW
UnmapViewOfFile

user32

DestroyMenu
LoadStringW
SetPropW
GetDlgItemInt
GetPropW
GetClassNameA
CreateDialogIndirectParamA
GetQueueStatus
DdeQueryStringA
SetDlgItemTextA
EndDeferWindowPos
CopyAcceleratorTableW
MonitorFromWindow
GetWindowRect
DdeKeepStringHandle
GetWindowThreadProcessId
RegisterTasklist
EnumDesktopWindows
DialogBoxIndirectParamAorW
SetWindowsHookW
GetMouseMovePointsEx
IsCharAlphaW
IsWindowVisible
IsWindow
ToUnicodeEx
PrivateExtractIconExA
CreatePopupMenu

gdi32

Chord
ExtTextOutW
GdiPlayPrivatePageEMF
GdiCleanCacheDC
CreateHalftonePalette
GetTextMetricsA
ScaleWindowExtEx
GetStringBitmapA
XLATEOBJ_piVector
GetTextExtentExPointWPri
GdiIsMetaPrintDC
GdiAddGlsRecord
STROBJ_bEnumPositionsOnly
ExtFloodFill

comdlg32

ReplaceTextW
dwLBSubclass
FindTextW
GetFileTitleA
PrintDlgA
GetSaveFileNameA
ChooseColorA
PrintDlgW
WantArrows
ReplaceTextA
GetSaveFileNameW
PrintDlgExA
ChooseColorW
ChooseFontA
FindTextA
Ssync_ANSI_UNICODE_Struct_For_WOW
GetOpenFileNameW
GetOpenFileNameA

Sections

.text
Size: 4KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

957cebdc52fb7fed219813a8a7742fbd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 172KB

.data Size: 81KB - Virtual size: 84KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 172KB

.data
Size: 81KB - Virtual size: 84KB

.idata
Size: 2KB - Virtual size: 4KB