adcceddb47422dcab0199ca509611cd1

Sharing

Copy URL Twitter E-mail

General

Target

adcceddb47422dcab0199ca509611cd1
Size

656KB
MD5

adcceddb47422dcab0199ca509611cd1
SHA1

70c9d1ade77046767a433e1e3f34efbdaf8a6c20
SHA256

e8fe9ecf472d585fdcfcf1c6c2b74cd153190b90b3d638f20a13db6d4f9cda71
SHA512

c37cd971510636de376541eb03d4172b9a3944dfb395a18270587e7e7e5905b87e1f7893e1acc514d462f6e4b0006e95a0bccf7663e8d899046a828982b5431e
SSDEEP

12288:XkMDQcDSLp3+rIpA7ALi1hWm+vFzObw1ZcnGe:UMDRsp3+rXUTmsA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adcceddb47422dcab0199ca509611cd1

Files

adcceddb47422dcab0199ca509611cd1
.exe windows:5 windows x86 arch:x86

a889ce34047587e33727cbdf50e78a88

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
IsWindow
EndPaint
ReleaseDC
GetParent
UpdateWindow
EnableWindow
PeekMessageA
TranslateMessage
IsIconic
RegisterClassA
SetTimer
FillRect
DefWindowProcA
GetSystemMetrics
GetWindowRect
SetCapture
ReleaseCapture
SetWindowTextA
CreateWindowExA
GetDlgItem
ScreenToClient
LoadCursorA
EndDialog
MessageBoxA
DialogBoxParamA
GetSysColor
SystemParametersInfoA
IsWindowVisible
SendMessageA
GetClientRect
CallWindowProcA
SetCursor

kernel32

HeapReAlloc
GetOEMCP
RtlUnwind
HeapFree
HeapCreate
TlsGetValue
SetHandleCount
FreeEnvironmentStringsA
GetCurrentProcess
GetVersion
GetStdHandle
GetConsoleOutputCP
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
FindFirstFileW
HeapDestroy
GetFileAttributesW
DeleteCriticalSection
VirtualAlloc
FindResourceA
Sleep
VirtualFree
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
GetCPInfo
LockResource
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GetEnvironmentStringsW
LCMapStringA
lstrlenA
LCMapStringW
LoadLibraryExW
GetLastError
LeaveCriticalSection
ExitProcess
CreateFileA
TlsSetValue
GetFileType
CreateFileW
GetProcAddress
FindNextFileA
ResetEvent
FindFirstFileA
GetProcessHeap
GlobalLock
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
SetEvent
EnterCriticalSection
InterlockedIncrement
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
FlushFileBuffers
HeapAlloc
IsDebuggerPresent
InitializeCriticalSection
SetLastError
FormatMessageA
InterlockedDecrement
FindClose
LoadResource
GetEnvironmentVariableA
LocalFree
FreeLibrary
GetStringTypeW
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
WideCharToMultiByte
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetConsoleMode

gdi32

SetBkColor
DeleteObject
GetStockObject

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 604KB - Virtual size: 602KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a889ce34047587e33727cbdf50e78a88

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 604KB - Virtual size: 602KB

.data Size: 20KB - Virtual size: 18KB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 604KB - Virtual size: 602KB

.data
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 8KB - Virtual size: 6KB