9c2b974f547583a0a9689f4de718254f

Sharing

Copy URL Twitter E-mail

General

Target

9c2b974f547583a0a9689f4de718254f
Size

147KB
MD5

9c2b974f547583a0a9689f4de718254f
SHA1

d2fe9e2e2bc39b08df3d51e98dafd9e6cb849dba
SHA256

564d8790d838e7aa79bc54af6268d997aa88a9a70b805f56572ef026445d1924
SHA512

30f03a737c4daeaf303ed91b0832e029f5683e1df6cdde5e3cfa5cdce530756622f08c53ee3c7e73feb8313db5cd74c2c8ae1e17cccb98fdea539aa67aab9d53
SSDEEP

3072:bJiOOgu5iSDI9N+6ELrOqA4XiXsWKQp+6dNgP8Y:MOOVHG6Oykhg6w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9c2b974f547583a0a9689f4de718254f

Files

9c2b974f547583a0a9689f4de718254f
.exe windows:4 windows x86 arch:x86

1cc86aa7144ba857024dbb2647d715b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
GetFocus
GetWindowTextLengthA
GetDlgItem
DrawTextW
LoadMenuA
IsMenu
DialogBoxParamW
CopyRect
AppendMenuW
GetWindowTextA
LoadCursorA
GetMenu
CloseWindow
GetDC
DialogBoxParamA
GetCursor
LoadMenuA
GetWindowTextLengthA
InsertMenuA
DrawTextA
CalcMenuBar
CopyRect
AppendMenuW
LoadCursorA
IsMenu
IsWindow
DrawTextA
GetFocus
DialogBoxParamA
DrawIconEx
EndDialog
IsWindow
CopyImage
DrawTextW
CalcMenuBar
GetMenu
CreateIcon
GetDC
DialogBoxParamW
CopyIcon
CloseWindow
LoadCursorA
AppendMenuA
CopyRect
GetWindowTextLengthA
DialogBoxParamA
EndDialog
DrawTextA
DrawIconEx
LoadCursorA
LoadMenuA
AlignRects
IsMenu
CopyImage
InsertMenuA
DrawIcon
GetMenu

kernel32

CreateThread
GetUserDefaultLangID
DeleteFileW
GetLastError
CreateDirectoryA
GetFileTime
OpenFile
FindAtomA
GetCPInfo
DeleteAtom
GetConsoleOutputCP
GetConsoleMode
ExitProcess
GlobalFree
CopyFileW
GetComputerNameA
GetStdHandle
FindFirstFileA
GetCommandLineA
CreateProcessA
GetCPInfo
GetConsoleOutputCP
CreateDirectoryA
GlobalFree
DeleteAtom
GetFileSize
ExitProcess
GetCurrentThread
GetOEMCP
GetCurrentProcess
OpenFile
GetCurrentThreadId
GetComputerNameA
GlobalFree
GetFileSize
OpenFile
DeleteFileA
GetCurrentThread
DeleteAtom
GetFileTime
Sleep
GetUserDefaultLangID
CopyFileW
CreateThread
GetCurrentProcess
GetCommandLineA
FindAtomA
GetConsoleMode
DeleteFileA
GetFileSize
CreateDirectoryA
GetOEMCP
GetCurrentThread
GetCPInfo
GetCommandLineA
DeleteFileW
OpenFile
GetComputerNameA
GetCurrentThreadId
Sleep
FindAtomA
ExitThread
DeleteFileA
GetOEMCP
DeleteAtom
GetCurrentThread
GetCommandLineA
GetStdHandle
CreateProcessA
Sleep
GetFileSize
GlobalFree
GetUserDefaultLangID
GetLastError
ExitThread
CreateThread
GetCPInfo
FindFirstFileA
OpenFile
GetConsoleMode
GetOEMCP
OpenFile
CopyFileW
CreateThread
ExitThread
GetCurrentThreadId
GetFileSize
Sleep
GetStdHandle
GlobalFree
DeleteFileA

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 102KB - Virtual size: 405KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cc86aa7144ba857024dbb2647d715b9

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 29KB - Virtual size: 29KB

.edata Size: 10KB - Virtual size: 9KB

.bss Size: 102KB - Virtual size: 405KB

.idata Size: 4KB - Virtual size: 3KB

.text
Size: 29KB - Virtual size: 29KB

.edata
Size: 10KB - Virtual size: 9KB

.bss
Size: 102KB - Virtual size: 405KB

.idata
Size: 4KB - Virtual size: 3KB