c27b763beb0568553663fb691e61c220

Sharing

Copy URL

Twitter E-mail

General

Target

c27b763beb0568553663fb691e61c220
Size

662KB
MD5

c27b763beb0568553663fb691e61c220
SHA1

006233d8ed94487c65c06ca6f2b4b75d38cda21a
SHA256

28a987f197015f875da1e1cc31c6c1eb21a534b15259b641a9bf28fb5b1232c2
SHA512

d2667af3a719974a30d713a614755faa86d453c9f18263d2d619b9b3a837956014fa11dd8d5db7ec2f0632188fda404fff8fa4ea5f4658a1cba97b324cf85e3e
SSDEEP

12288:yrriKFdv+8XveUKK9QdfxHy3AccNvRgnKYAugtPoSd5z0wei9bwTp:y+KrvhXTQvHyQpN5gKFzt01

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c27b763beb0568553663fb691e61c220

Files

c27b763beb0568553663fb691e61c220
.exe windows:4 windows x86 arch:x86

a611c16de55da7c99aebccbc5b9fd4d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostQuitMessage
SetWindowPos
IsWindow
DispatchMessageA
GetDC
SendMessageA
DestroyWindow
GetMessageA
GetParent
ShowWindow
EnableWindow
TranslateMessage
LoadStringA
IsIconic
GetSubMenu
SetTimer
PeekMessageA
BeginPaint
KillTimer
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
CheckMenuItem
GetDlgItem
ScreenToClient
EndDialog
EnableMenuItem
InvalidateRect

kernel32

GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
HeapDestroy
GetFileAttributesW
DeleteCriticalSection
GetCurrentProcess
GetLocaleInfoA
LocalAlloc
SetErrorMode
SetStdHandle
GetCPInfo
lstrcmpiA
GetStringTypeA
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
SetFileAttributesA
GetOEMCP
LocalFree
GetCommandLineA
GetModuleHandleA
GetTickCount
GetCurrentThreadId
GetLastError
GetVersion
GetCurrentProcessId
GetCurrentThread
ExitProcess
HeapAlloc
GetProcessHeap
ResetEvent
VirtualAlloc
FindResourceA
Sleep
VirtualFree
FindResourceW
HeapCreate
IsValidCodePage
CreateProcessA
GetEnvironmentStrings
InterlockedExchange
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
LockResource
SizeofResource
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
InterlockedIncrement
CreateFileA
TlsSetValue
CreateEventA
CreateFileW
CreateEventW
GlobalLock
CompareStringA
GetSystemInfo
GetProcAddress
GetWindowsDirectoryA
DeleteFileA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
SetEndOfFile
GlobalAlloc
WriteConsoleA
TerminateProcess
GetSystemDirectoryA
SetUnhandledExceptionFilter
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection

gdi32

GetDeviceCaps
GetStockObject
CreateCompatibleDC
SelectObject
CreateSolidBrush

Sections

.text
Size: 621KB - Virtual size: 943KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a611c16de55da7c99aebccbc5b9fd4d4

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 621KB - Virtual size: 943KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 23KB - Virtual size: 23KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 621KB - Virtual size: 943KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 23KB - Virtual size: 23KB

.rsrc
Size: 11KB - Virtual size: 10KB