cdc-intl-35c[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

cdc-intl-35c.exe
Size

7.6MB
MD5

32aeb1cf9dbf27d097ef5c3fb16b828d
SHA1

1d13d699b021ad3d9098b1aad25117473a91fea0
SHA256

72c57209a6c3ef753592118bf6a93ace35aff84cf3d4fe2cbabd1df3ce82425e
SHA512

848ae7956ac4bfeb1ee24cca14b4696789a05ec7921542ddf82b1abf197c8f54362d887fed2e4a66d57fe9821e073e127ec78e49aeade2bcfac803d70305836f
SSDEEP

196608:KIHoTeahohFLeE+7uTy4YmK0B4ptSG2BFP+rLfu68VIdappIMQ:BHPlpeE3TF317iLfu6DdapeB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cdc-intl-35c.exe

Files

cdc-intl-35c.exe
.exe windows:4 windows x86 arch:x86

05ca5f68c7c37b092bbd14e07078f2b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetProcAddress
HeapAlloc
LoadLibraryA
CopyFileA
Sleep
GetModuleFileNameA
GetProcessHeap
LCMapStringA
GetStringTypeW
FlushFileBuffers
MultiByteToWideChar
ReadFile
FileTimeToLocalFileTime
SetStdHandle
FindNextFileA
FindFirstFileA
FindClose
MoveFileA
GetUserDefaultLangID
GetVersionExA
GetSystemDirectoryA
GetWindowsDirectoryA
GetShortPathNameA
CreateDirectoryA
GetTempFileNameA
GetDiskFreeSpaceA
HeapFree
CloseHandle
CreateFileA
GetLastError
SetEndOfFile
SetFilePointer
GetCurrentProcess
ReleaseMutex
RemoveDirectoryA
WaitForSingleObject
CreateMutexA
TerminateProcess
GetExitCodeProcess
CreateProcessA
GetTempPathA
WriteFile
FileTimeToSystemTime
GetFileInformationByHandle
FreeLibrary
SetFileAttributesA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
WideCharToMultiByte
GetStringTypeA
GetFullPathNameA
HeapReAlloc
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
VirtualAlloc
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalFileTimeToFileTime
GetCurrentDirectoryA
GetFileAttributesA
SystemTimeToFileTime
SetFileTime
GetDriveTypeA

user32

ExitWindowsEx
GetWindowRect
wvsprintfA
FindWindowA
GetSystemMetrics
GetDlgItem
SendMessageA
wsprintfA
SetDlgItemTextA
LoadIconA
SetClassLongA
DialogBoxParamA
MessageBoxA
EnableWindow
MoveWindow
IsDialogMessageA
DispatchMessageA
TranslateMessage
ShowWindow
PeekMessageA
SendDlgItemMessageA
EndDialog
LoadStringA
SetFocus

gdi32

DeleteObject
CreateFontIndirectA
GetObjectA

comctl32

ord17

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

advapi32

RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegQueryValueExA
RegCreateKeyExA

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05ca5f68c7c37b092bbd14e07078f2b8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

version

advapi32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 104KB - Virtual size: 299KB

.rsrc Size: 58KB - Virtual size: 57KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 104KB - Virtual size: 299KB

.rsrc
Size: 58KB - Virtual size: 57KB