c2c3a2b83af2467ef0bbf117017facff

General

Target

c2c3a2b83af2467ef0bbf117017facff
Size

938KB
MD5

c2c3a2b83af2467ef0bbf117017facff
SHA1

ed3b08d58c894577976dd8101ae532891669cbfb
SHA256

5d39c04e76a4c7dc4aa8b3d08138c61d5a8838ca4df0453d79e403c2e675ef59
SHA512

43a880e3e92dc4bc1f7516866524a3ce1af84119cd666c225bda7d3d0e2b2cbeb517c0067c718286f49bcb3883077f044fd73b77680570ee58ac1a1c3bfb3a64
SSDEEP

24576:d0l6xhKUDxPGwNYfORbKRHOC948knbKyQegTU:mlyzwwXKw78knbKyQeg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2c3a2b83af2467ef0bbf117017facff

Files

c2c3a2b83af2467ef0bbf117017facff
.exe windows:4 windows x86 arch:x86

2e14a78e3abec0ee3ef4850d4045cd1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateHalftonePalette
GetCurrentPositionEx
CreatePalette
CreateFontIndirectA
CreateCompatibleDC
ExcludeClipRect
SetTextColor
GetPixel
DeleteObject
GetPixel
CreateDIBitmap
CreatePenIndirect
GetBitmapBits
GetClipBox
CreateCompatibleBitmap
DeleteDC
GetDCOrgEx
CreateSolidBrush
RestoreDC
GetBrushOrgEx
CreateDIBSection
CreateBitmap
CreateBrushIndirect
ExtTextOutA

kernel32

ExitThread
FindAtomA
DeleteFileW
OpenFileMappingA
Sleep
GetConsoleMode
GetLastError
DeleteAtom
CreateThread
GetFileTime
FindFirstFileA
OpenFile
DeleteFileA
ReadConsoleA
GetFileSize
ReadFile
GetCPInfo
GetStdHandle
GetCommandLineA
CreateProcessA
GetComputerNameA
WriteFile
GlobalFree
SetLastError

comctl32

ImageList_LoadImageW
MenuHelp
CreateToolbar
ImageList_Destroy
ImageList_GetIconSize
CreateStatusWindow
CreateMappedBitmap
ImageList_Copy
InitCommonControls
ImageList_Create
ImageList_Draw
CreateStatusWindowW
DrawStatusText
ImageList_EndDrag
CreateToolbarEx
ImageList_LoadImageA
ImageList_GetIcon
ImageList_DrawEx
DrawStatusTextW
ImageList_AddIcon
DllGetVersion
CreateUpDownControl
ImageList_Add
ImageList_DragEnter

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 902KB - Virtual size: 902KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 19.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e14a78e3abec0ee3ef4850d4045cd1d

Headers

File Characteristics

Imports

gdi32

kernel32

comctl32

Sections

.text Size: 25KB - Virtual size: 24KB

.data Size: 902KB - Virtual size: 902KB

.tls Size: 2KB - Virtual size: 19.2MB

.rdata Size: 4KB - Virtual size: 5KB

.idata Size: 2KB - Virtual size: 2KB

.text
Size: 25KB - Virtual size: 24KB

.data
Size: 902KB - Virtual size: 902KB

.tls
Size: 2KB - Virtual size: 19.2MB

.rdata
Size: 4KB - Virtual size: 5KB

.idata
Size: 2KB - Virtual size: 2KB