c2c89bb668bf0fe9f1e9658864995922

Sharing

Copy URL Twitter E-mail

General

Target

c2c89bb668bf0fe9f1e9658864995922
Size

408KB
MD5

c2c89bb668bf0fe9f1e9658864995922
SHA1

a85d97824760afce9767ff6237cc7e74a9428a15
SHA256

f8277f1ca0adc7eb83ab3170a1e99ec2765f9fd99f0ed53b40454612d5ba61f0
SHA512

d09a0afc358289e44410855c7c9a31f9d23cdf2bf9b60e5e827ffc7db04192dcfa4cc7c5d9f9720b2e668ba347efe1b6a1fcf265b18c81fb39cfa61b7e90dae6
SSDEEP

12288:x4pBm/QsWIcMMmDe9D50fl4dsZyY6dg+Hf0y:x4p4QsAMMmq9dwlYS+p/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2c89bb668bf0fe9f1e9658864995922

Files

c2c89bb668bf0fe9f1e9658864995922
.exe windows:4 windows x86 arch:x86

7e0987811e1e897413b8d8725921cfe3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHInvokePrinterCommandA
DuplicateIcon

comctl32

InitCommonControlsEx
CreateStatusWindowA
CreateStatusWindowW
ImageList_SetDragCursorImage

kernel32

GetStdHandle
GetSystemDirectoryW
RtlUnwind
GetStartupInfoW
GetLogicalDrives
CreateSemaphoreA
GetCurrentProcess
GetACP
CreateMutexW
GetCurrentThreadId
EnumTimeFormatsW
FileTimeToDosDateTime
LoadLibraryExW
GetDateFormatA
SetEnvironmentVariableA
IsDebuggerPresent
GetProfileIntA
OpenFile
lstrlenA
InterlockedExchange
WritePrivateProfileStringA
UnhandledExceptionFilter
TryEnterCriticalSection
VirtualFree
LeaveCriticalSection
IsValidLocale
GlobalFindAtomW
GetEnvironmentStringsW
GetLocaleInfoA
WriteConsoleW
TlsSetValue
WideCharToMultiByte
GetStartupInfoA
GetModuleHandleA
SetLocalTime
SetComputerNameA
GetPrivateProfileSectionW
QueryPerformanceCounter
VirtualProtectEx
SetHandleCount
GetModuleFileNameA
GetAtomNameA
FreeEnvironmentStringsA
DuplicateHandle
MoveFileExA
InitializeCriticalSection
DeleteAtom
OpenMutexA
FlushFileBuffers
CreateFileW
GetStringTypeA
GetCurrentProcessId
GetTickCount
FreeResource
SetFileTime
VirtualProtect
EnterCriticalSection
GetSystemTimeAsFileTime
SetLastError
GetTimeFormatA
GetStringTypeW
SetStdHandle
GetLocaleInfoW
MultiByteToWideChar
SetComputerNameW
GetEnvironmentVariableW
lstrcpynA
CreateFileMappingA
AllocConsole
SetWaitableTimer
IsValidCodePage
GetFileType
GetTimeZoneInformation
GetProcAddress
LCMapStringA
DeleteCriticalSection
RemoveDirectoryA
GetSystemInfo
HeapFree
GetWindowsDirectoryW
CompareStringW
lstrcmpiW
HeapCreate
GetExitCodeThread
GetCurrentThread
TlsGetValue
TerminateProcess
GetProcessAffinityMask
GetExitCodeProcess
HeapAlloc
CreateMutexA
HeapReAlloc
EnumCalendarInfoW
GetSystemDirectoryA
FileTimeToLocalFileTime
CreateWaitableTimerW
GetLastError
RaiseException
InterlockedCompareExchange
GetOEMCP
FreeLibrary
OutputDebugStringA
IsBadWritePtr
SetFilePointer
GetCPInfo
WaitForMultipleObjects
EnumSystemLocalesA
HeapDestroy
GetCommandLineA
CreateDirectoryA
TlsAlloc
LCMapStringW
GetEnvironmentStrings
LoadLibraryA
ReadConsoleOutputCharacterA
GetModuleFileNameW
VirtualQuery
HeapSize
ReadFile
FreeEnvironmentStringsW
LoadModule
FindNextFileA
GetVersionExA
GetDriveTypeW
CompareStringA
GetSystemDefaultLangID
ExitProcess
TlsFree
GetTempFileNameW
CloseHandle
VirtualAlloc
GetUserDefaultLCID
GetCommandLineW
GlobalGetAtomNameA
WriteFile
SetFileAttributesA
GetShortPathNameW

gdi32

PtInRegion
AddFontResourceW
ExtCreatePen
PaintRgn
GdiPlayDCScript
CreateDCW
GetMapMode
DeleteObject
CreateEnhMetaFileW
GetICMProfileW
SetMiterLimit
GetCharWidthFloatA
BeginPath
GetObjectA
SetColorSpace
FrameRgn
WidenPath
SetArcDirection
GetClipRgn
RestoreDC
CreateScalableFontResourceW
SetTextColor
CopyEnhMetaFileW
GetEnhMetaFileDescriptionW
GetDeviceCaps
GetEnhMetaFileW
StretchDIBits
DeleteDC

user32

GetMenu
DdeNameService
OpenClipboard
LoadCursorFromFileA
GetClipboardFormatNameA
EnumPropsW
DrawTextExW
CallWindowProcA
SetMessageExtraInfo
CopyRect
RegisterClassExA
LoadMenuIndirectW
EndMenu
AdjustWindowRect
ShowWindow
DefWindowProcA
TrackPopupMenu
CreateWindowExA
RegisterClassA
SetKeyboardState
MessageBoxA
BroadcastSystemMessageA
DestroyWindow
GetDoubleClickTime

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e0987811e1e897413b8d8725921cfe3

Headers

File Characteristics

Imports

shell32

comctl32

kernel32

gdi32

user32

Sections

.text Size: 228KB - Virtual size: 227KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 96KB - Virtual size: 100KB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 228KB - Virtual size: 227KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 96KB - Virtual size: 100KB

.rsrc
Size: 12KB - Virtual size: 9KB