c09dc566b29b10e4f0bba63cfc971990

General

Target

c09dc566b29b10e4f0bba63cfc971990
Size

84KB
MD5

c09dc566b29b10e4f0bba63cfc971990
SHA1

2f52e8b3279ba4b8596656fe7c34906601266354
SHA256

e736cf360011f79dbf16bd377de3674a59024acfe0dccbd477295722d6a0da95
SHA512

cfe656ec3a4d1581e859f0e1214976c52d8a379e61cc3ad7fd52080cc5fbb067e5be0d6666e7fcaa04330b6cbb991e9f771e43dc7755aab9db442c1244b17dea
SSDEEP

768:33AON/bfWzXIY2d1jXwnsi2gYfyv5s/OYObcgN7ZU9QZU9:AON/DmXIhjgs1gYfy7XcW7z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c09dc566b29b10e4f0bba63cfc971990

Files

c09dc566b29b10e4f0bba63cfc971990
.exe windows:4 windows x86 arch:x86

a7a69dd94e7a04bcae03143b9c295048

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\VC++_projects\FrightenedGameManiac\Release\TimerSoundVirus.pdb

Imports

winmm

PlaySoundA

user32

LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
BeginPaint
EndPaint
KillTimer
PostQuitMessage
DefWindowProcA
DestroyWindow
DialogBoxParamA
EndDialog
CreateWindowExA
SetTimer

kernel32

GetCurrentProcess
VirtualQuery
GetSystemInfo
VirtualProtect
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
RtlUnwind
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
HeapFree
VirtualFree
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
TerminateProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7a69dd94e7a04bcae03143b9c295048

Headers

File Characteristics

PDB Paths

Imports

winmm

user32

kernel32

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 52KB - Virtual size: 51KB