8cecda96f0aab5ba6e228dc17b07ad65

Sharing

Copy URL Twitter E-mail

General

Target

8cecda96f0aab5ba6e228dc17b07ad65
Size

684KB
MD5

8cecda96f0aab5ba6e228dc17b07ad65
SHA1

f40b21c0ec5753496ee88b52978d1c5146982f78
SHA256

8ae71687a1cade97f0bb01edb9d57c8a0455397f9c86361c7f0d7304ce2fff1f
SHA512

f4caf0ce94f77b36d92e3d2d700f9b3f6f8a4b7e5668fae300f651ce8594eee2545dc10f4740982ecae4f551385c34b6490ee4dab068ed7b7ef10b51a9e0f85b
SSDEEP

12288:wNtLJL2BCGUBSBek40tE/aH+2cEFhZzBQpVh8A6UcyRfJFjHGnFFMIvHU:GRVjGrAM/928AxnfbTGnFFU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cecda96f0aab5ba6e228dc17b07ad65

Files

8cecda96f0aab5ba6e228dc17b07ad65
.exe windows:4 windows x86 arch:x86

304b3d38d58448b8172614305bf651bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PolyPolyline
GetBitmapBits
AngleArc
SetDIBits
CreateDiscardableBitmap
PolyTextOutA
GetBitmapDimensionEx
CreateFontW
UnrealizeObject
SwapBuffers
GetEnhMetaFilePaletteEntries
GetWinMetaFileBits
ColorMatchToTarget
CreateDIBitmap
CopyMetaFileW
CreateICW
GetPolyFillMode
StartDocA
ExtSelectClipRgn
FillPath
GetTextExtentExPointW
CreateColorSpaceW

user32

SetMenuItemBitmaps
GetMonitorInfoW
CreateAcceleratorTableW
RegisterClassA
RegisterClassExA

comctl32

InitCommonControlsEx

kernel32

SetEnvironmentVariableA
HeapAlloc
HeapCreate
InitializeCriticalSectionAndSpinCount
GetTickCount
GetEnvironmentStrings
WideCharToMultiByte
CloseHandle
CreateFileA
CompareStringA
CreateMutexA
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetProcAddress
SetStdHandle
FreeLibrary
GetCurrentProcessId
GetACP
LoadLibraryA
GetLastError
IsValidCodePage
GetUserDefaultLCID
FlushFileBuffers
GetCurrentThread
TlsFree
WriteConsoleW
OutputDebugStringA
GetCurrentThreadId
LoadLibraryW
EnterCriticalSection
RtlUnwind
GetModuleHandleA
GetCurrentProcess
QueryPerformanceCounter
WriteConsoleA
ReadFile
GetStringTypeW
VirtualFree
LeaveCriticalSection
InterlockedDecrement
HeapValidate
IsBadReadPtr
SetHandleCount
GetEnvironmentStringsW
GetConsoleCP
EnumSystemLocalesA
GetModuleHandleW
GetStartupInfoA
InterlockedIncrement
GetConsoleMode
HeapReAlloc
HeapSize
HeapFree
GetLocaleInfoW
WriteFile
TerminateProcess
GetDateFormatA
VirtualQuery
HeapDestroy
GetTimeFormatA
GetCommandLineA
GetCPInfo
RaiseException
MultiByteToWideChar
TlsAlloc
GetModuleFileNameW
GetOEMCP
IsValidLocale
ExitProcess
GetConsoleOutputCP
IsDebuggerPresent
GetLocaleInfoA
InterlockedExchange
SetFilePointer
TlsSetValue
VirtualAlloc
DebugBreak
OpenMutexA
LocalFileTimeToFileTime
SetUnhandledExceptionFilter
lstrlenA
DeleteCriticalSection
GetStdHandle
SetConsoleCtrlHandler
OutputDebugStringW
UnhandledExceptionFilter
TlsGetValue
GetTimeZoneInformation
GetFileType
Sleep
SetLastError
UnlockFileEx
CompareStringW
FileTimeToLocalFileTime
LCMapStringA
GetModuleFileNameA
CreateSemaphoreA
LCMapStringW
GetProcessHeap
GetStringTypeA
FreeEnvironmentStringsA

comdlg32

GetOpenFileNameW

shell32

SHGetDataFromIDListW

advapi32

CreateServiceA
RegEnumValueW

Sections

.text
Size: 455KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

304b3d38d58448b8172614305bf651bc

Headers

File Characteristics

Imports

gdi32

user32

comctl32

kernel32

comdlg32

shell32

advapi32

Sections

.text Size: 455KB - Virtual size: 455KB

.rdata Size: 105KB - Virtual size: 123KB

.data Size: 107KB - Virtual size: 106KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 455KB - Virtual size: 455KB

.rdata
Size: 105KB - Virtual size: 123KB

.data
Size: 107KB - Virtual size: 106KB

.rsrc
Size: 16KB - Virtual size: 15KB