(cool) calc[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

(cool) calc.exe
Size

93KB
MD5

349091041c596128b0f9c440a009998a
SHA1

8400b07ac666902adec9ee96d0f9ad7cd46a261a
SHA256

4410b46a037017c6c9b633e86a9e383ea2968dd0f84493d4b6e184173a3d0751
SHA512

a4eeff7abe2d088a1a4bb363a903517bbdfd21ef94320004b5d47bcefa4ad216eac370f090dd3dd4171eb3e27424eb28224baa83c6155b31f21ade638f113eb6
SSDEEP

1536:yZYaM+/wXAruBGjFrR6e6MVAo8z0Y2T/xPFES3xVMgwGuRp:qYaMEwQ4GjFrAMVAPzUaS3Eg6R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
(cool) calc.exe

Files

(cool) calc.exe
.exe windows:4 windows x86 arch:x86

f7ef56e6228ff7a3c1a92b5145c7c592

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

ShellAboutW

kernel32

Sleep
WriteProfileStringW
GlobalUnlock
GlobalLock
GlobalSize
lstrcmpW
GlobalFree
GlobalAlloc
GlobalReAlloc
GlobalCompact
WideCharToMultiByte
MultiByteToWideChar
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
lstrcatW
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
HeapCreate
WriteFile
RaiseException
LCMapStringA
LCMapStringW
HeapFree
HeapAlloc
GetProcAddress
LoadLibraryA
GetStringTypeA
GetStringTypeW
lstrlenW
GetProfileStringW
LocalAlloc
LocalReAlloc
lstrcpyW
GetProfileIntW
GetTickCount
LocalFree
FreeEnvironmentStringsA

gdi32

DeleteObject
SelectObject
SetTextColor
SetBkMode
GetTextExtentPointW
TextOutW
GetStockObject
GetTextMetricsW
GetDeviceCaps
SetBkColor

user32

DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsDialogMessageW
GetMessageW
LoadAcceleratorsW
SendMessageW
CreateWindowExW
UpdateWindow
ShowWindow
CheckRadioButton
ReleaseDC
GetDC
GetWindowRect
CreateDialogParamW
MessageBoxW
LoadStringW
RegisterClassExW
GetSysColorBrush
LoadCursorW
LoadIconW
SetDlgItemTextW
GetDlgItem
FillRect
SetRect
CheckMenuItem
GetSubMenu
GetMenu
SetWindowPos
MapDialogRect
InvalidateRect
SetFocus
IsIconic
GetSysColor
MessageBeep
CharUpperW
DrawFrameControl
GetClientRect
ShowCursor
SetCursor
EndPaint
DrawEdge
BeginPaint
EnableWindow
WinHelpW
CloseClipboard
GetClipboardData
OpenClipboard
SetWindowTextW
DestroyMenu
TrackPopupMenuEx
LoadMenuW
DefWindowProcW
GetDlgCtrlID
PostQuitMessage
DestroyWindow
ScreenToClient
ReleaseCapture
SetCapture
EnableMenuItem
IsClipboardFormatAvailable
CheckDlgButton
SetDlgItemTextA
GetWindowTextW
wsprintfW

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7ef56e6228ff7a3c1a92b5145c7c592

Headers

File Characteristics

Imports

shell32

kernel32

gdi32

user32

Sections

.text Size: 73KB - Virtual size: 72KB

.data Size: 5KB - Virtual size: 6KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 73KB - Virtual size: 72KB

.data
Size: 5KB - Virtual size: 6KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 5KB - Virtual size: 5KB