c2c884263f7f7d05c6892904a576da9b

Sharing

Copy URL Twitter E-mail

General

Target

c2c884263f7f7d05c6892904a576da9b
Size

508KB
MD5

c2c884263f7f7d05c6892904a576da9b
SHA1

99870d25883956b44993cd1640803d25db0e5075
SHA256

7ae6fa5f2164d6557bea1a9f18a21de901873b89b03b8cc174da4dd7a1e3fc0b
SHA512

15a86035bb640f5d75918a0cf0f7e821edf081f052aa5c0ea29f320965a54b91566542c38e18255c118aad2d09743a26a9267dae57e197a78c7e8071b59193c9
SSDEEP

12288:W/k3nufywzrmatIC49b67y4F/hxxi7xlMXVUmTCDtef:WM3FxaCCjPi9lMFxTqte

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2c884263f7f7d05c6892904a576da9b

Files

c2c884263f7f7d05c6892904a576da9b
.exe windows:4 windows x86 arch:x86

84891c07d7c062dd5d7b1eba65a54ac5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteEx
RealShellExecuteA
DragAcceptFiles
SHGetFileInfo
RealShellExecuteW

advapi32

StartServiceA
RegQueryValueW
RegRestoreKeyA
CreateServiceA
RegSetValueW
CryptGenRandom
CryptContextAddRef
RegSetKeySecurity
CryptEncrypt
RegLoadKeyA
CryptSetProvParam
RegOpenKeyExW
RegEnumValueA
CryptSetKeyParam
RegCloseKey

comctl32

InitCommonControlsEx

kernel32

IsValidCodePage
GetFileType
TlsFree
TlsGetValue
HeapSize
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
HeapCreate
ReadFile
GetCommandLineW
GetCurrentProcessId
SetEnvironmentVariableA
GetProcAddress
SetLastError
GetCommandLineA
GetCPInfo
HeapDestroy
FreeEnvironmentStringsA
VirtualAlloc
CreateMutexA
HeapReAlloc
HeapFree
WriteProfileStringW
GetCurrentDirectoryA
TerminateProcess
VirtualQuery
SetStdHandle
RtlUnwind
GetModuleFileNameW
GetEnvironmentStrings
DeleteCriticalSection
ExitProcess
GetProfileIntA
GetSystemTimeAdjustment
CreateWaitableTimerW
CreateProcessA
QueryPerformanceCounter
VirtualFree
EnumCalendarInfoExA
GetLocaleInfoW
GetEnvironmentVariableW
GetUserDefaultLCID
GetStdHandle
EnumSystemLocalesA
GetTimeZoneInformation
LCMapStringA
CompareStringW
GetTickCount
LCMapStringW
GetStartupInfoW
GetDateFormatA
GetOEMCP
IsBadWritePtr
CompareStringA
GetStringTypeA
GetLocaleInfoA
GetWindowsDirectoryW
WriteFile
VirtualProtect
CloseHandle
GetSystemInfo
GetCurrentThread
FindClose
GetSystemTimeAsFileTime
GetTimeFormatA
LoadLibraryA
GetNamedPipeHandleStateA
GetCurrentThreadId
EnumDateFormatsExA
SetHandleCount
GetVersionExA
GetStartupInfoA
TlsSetValue
GetLastError
EnterCriticalSection
GetEnvironmentStringsW
SetFilePointer
GetModuleFileNameA
GetACP
TlsAlloc
GetModuleHandleA
FreeEnvironmentStringsW
OpenMutexA
InterlockedExchange
UnhandledExceptionFilter
InitializeCriticalSection
GetCurrentProcess
FlushFileBuffers
LeaveCriticalSection
HeapAlloc
IsValidLocale

gdi32

GetWorldTransform
CreateDCA
EnumFontFamiliesExW
AngleArc
Chord
GetEnhMetaFilePaletteEntries
GetNearestPaletteIndex
CreateFontA
GetMetaFileBitsEx
OffsetRgn
GetTextExtentPointA
SetLayout
GetTextExtentPointW
GetDIBColorTable
GdiGetBatchLimit
SwapBuffers
GetTextExtentExPointA
CreateRectRgnIndirect
RemoveFontResourceW

comdlg32

ChooseColorA
GetOpenFileNameW

user32

GrayStringW
RegisterClassA
WaitForInputIdle
CreateIconFromResource
RegisterDeviceNotificationA
UnregisterClassW
SetScrollInfo
FindWindowExW
ScrollDC
MessageBeep
KillTimer
AdjustWindowRectEx
GetMenuItemID
DdeConnect
SetPropW
MsgWaitForMultipleObjects
RegisterClassExA
ModifyMenuW

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84891c07d7c062dd5d7b1eba65a54ac5

Headers

File Characteristics

Imports

shell32

advapi32

comctl32

kernel32

gdi32

comdlg32

user32

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 9KB - Virtual size: 28KB

.data Size: 311KB - Virtual size: 311KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 9KB - Virtual size: 28KB

.data
Size: 311KB - Virtual size: 311KB

.rsrc
Size: 10KB - Virtual size: 10KB