c0c7f5888abfe6727837a388741b4f76

Sharing

Copy URL Twitter E-mail

General

Target

c0c7f5888abfe6727837a388741b4f76
Size

10KB
MD5

c0c7f5888abfe6727837a388741b4f76
SHA1

00d10db8291e3aae9c01535cffe0c6337946fd4f
SHA256

3bab8335ed1d4db6b334654554c8e7164077d7cfd6ff5d49dddcd623bec20f48
SHA512

374bc41498b80f93e82595cdc2330b654028025ef0e6bce07bbb73a757464da1b75b81f3acd9e6781c9cfa29b7d00428b4895c146f25f3a7f30d531f17b2e608
SSDEEP

192:p87BZHkGTxICwojOiXR0yLw1ePWG6H0QoNts7mi8cXzqobj:p878hjNyYe+G6H0PMrqo/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0c7f5888abfe6727837a388741b4f76

Files

c0c7f5888abfe6727837a388741b4f76
.exe windows:4 windows x86 arch:x86

d093388bc6bdd6a6af88049eb2935f2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
ConvertThreadToFiber
CreateMutexW
CreateToolhelp32Snapshot
DisconnectNamedPipe
EnumSystemCodePagesA
ExitProcess
GetCompressedFileSizeW
GetConsoleCP
GetDiskFreeSpaceExA
GetSystemDirectoryA
GetTickCount
IsValidCodePage
LoadModule
LocalHandle
ReleaseMutex
ScrollConsoleScreenBufferA
SetFileApisToANSI
SetFileAttributesW
SetThreadPriority
SetTimeZoneInformation
Toolhelp32ReadProcessMemory
TransactNamedPipe
UTUnRegister
WaitForDebugEvent
WriteConsoleInputA
WritePrivateProfileStringA
lstrcpyW
lstrcpynW

user32

AttachThreadInput
CharNextExA
ChildWindowFromPointEx
CreateDialogParamW
DdeCmpStringHandles
DefWindowProcA
DestroyCursor
DlgDirSelectExA
EnumClipboardFormats
EnumDesktopsW
EnumPropsExW
EqualRect
FindWindowExW
GetClassNameW
GetClipboardFormatNameA
GetDoubleClickTime
GetWindowModuleFileNameW
LookupIconIdFromDirectoryEx
MsgWaitForMultipleObjectsEx
OpenWindowStationA
RealGetWindowClass
RegisterClassW
ScrollWindow
SendMessageCallbackW
TileWindows
ToUnicode
ValidateRgn
VkKeyScanExA
WINNLSGetEnableStatus
wvsprintfA

gdi32

CreateColorSpaceW
CreateDIBSection
CreatePen
DescribePixelFormat
EnumFontFamiliesExA
EnumFontsW
ExtEscape
GdiComment
GetCurrentPositionEx
GetLogColorSpaceW
GetNearestColor
GetRegionData
GetRgnBox
GetTextMetricsW
GetWinMetaFileBits
MoveToEx
PolyBezierTo
RemoveFontResourceA
SelectClipPath
SetBitmapDimensionEx
SetDIBits
SetEnhMetaFileBits
SetICMMode
SetMagicColors
SetPixelFormat
SetViewportOrgEx
SwapBuffers
TranslateCharsetInfo
UpdateICMRegKeyW

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d093388bc6bdd6a6af88049eb2935f2a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 5.0MB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 5.0MB