c2bbebd44ce9a43b27f953f3b0ebfa96

Sharing

Copy URL

Twitter E-mail

General

Target

c2bbebd44ce9a43b27f953f3b0ebfa96
Size

22KB
MD5

c2bbebd44ce9a43b27f953f3b0ebfa96
SHA1

97ea09a9f6ffc0b81cdf0d7fb7e5d0196fc961ee
SHA256

4723c1f281aaf7f6205be2637e2a5e42e583f328b6663703fd2917e4fd488ecc
SHA512

96cb3bc5a08df0c019d8f3aa3b5ee2f27f30293ed960adbc1f0e6704aeb0cd98f7207a942e2a753275490f92715f11162cc1964372e5304d2d426118c5fc9c7b
SSDEEP

384:gfcBS1uaUKr4UVJar0VWobq+qhsjR01+3IWiTZMRpVFDS9rheoy64YmjWGKB9hhe:6cB00Kr4GjWj+pC1+4ZApV0QoFmjWGKa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2bbebd44ce9a43b27f953f3b0ebfa96

Files

c2bbebd44ce9a43b27f953f3b0ebfa96
.exe windows:4 windows x86 arch:x86

c3a75c253d62bfaf0a19a3fb95807bbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_amsg_exit
_wtol
_adjust_fdiv
_setjmp3
memcpy
_initterm
wcsncmp
_vsnprintf
bsearch
memset
longjmp
_ultow
free
_XcptFilter
_wcsicmp
_vsnwprintf
memmove
_wcsnicmp
_wtoi

kernel32

FindResourceExW
MulDiv
lstrcmpiA
SetFileTime
ExpandEnvironmentStringsW
GetShortPathNameW
lstrcmpW
GetUserDefaultUILanguage
SetLastError
GetEnvironmentVariableW
FindClose
UnmapViewOfFile
CreateFileW
LocalReAlloc
TerminateProcess
WritePrivateProfileSectionW
GetFullPathNameW
RtlUnwind
GetProfileStringW
QueryPerformanceCounter
SetFileAttributesW
GetTempPathW
FreeConsole
SizeofResource
GetProcessHeap
LocalFree
CreateFileMappingW
MultiByteToWideChar
HeapAlloc
CloseHandle
FindFirstFileW
CreateDirectoryW
GetDriveTypeW
DisableThreadLibraryCalls
SearchPathW
MoveFileExW
GetPrivateProfileSectionW
VirtualAlloc
GetLocaleInfoW
GetSystemInfo
lstrcmpiW
LoadResource
GetLastError
GetVersionExW
CompareStringW
LoadLibraryExW
GetCurrentProcessId
GetPrivateProfileStringW
GetFileSize
GetModuleFileNameW
GetFileAttributesW
MapViewOfFileEx
RemoveDirectoryW
GetFileTime
LocalAlloc
MoveFileW
WideCharToMultiByte
GetPrivateProfileIntW
GetLocalTime
GetCurrentThreadId
FindResourceW
EnumResourceLanguagesW
FindNextFileW
Sleep
WritePrivateProfileStringW
lstrlenA
UnhandledExceptionFilter
FormatMessageW
GetProcAddress
WriteFile
CopyFileW
MapViewOfFile
FreeLibrary
LockResource
GetSystemDirectoryW
GetVolumeInformationW
GetSystemDefaultUILanguage
lstrlenW
GetSystemTimeAsFileTime
InterlockedExchange
HeapFree
SetFilePointer
GetCurrentProcess
GetTempFileNameW
DeleteFileW
ReadFile
LoadLibraryW
SetUnhandledExceptionFilter
GetTickCount
GetDiskFreeSpaceW
GetWindowsDirectoryW

usp10

ScriptGetFontProperties

gdi32

GetObjectW
CreateFontIndirectW
GetStockObject
GetDeviceCaps
DeleteObject

user32

GetDlgItem
MessageBoxW
PeekMessageW
CharPrevW
MessageBeep
DestroyWindow
GetWindowRect
DispatchMessageW
SendMessageW
SendDlgItemMessageW
ExitWindowsEx
MsgWaitForMultipleObjects
IsWindow
ReleaseDC
LoadStringW
SetWindowTextW
OemToCharA
CreateDialogParamW
EndDialog
SetDlgItemTextW
UpdateWindow
DialogBoxParamW
GetDlgItemTextW
SetWindowPos
ShowWindow
CharUpperW
EnableWindow
GetDC
CharNextA
CharNextW
GetDesktopWindow
GetSystemMetrics

crypt32

CryptFormatObject

Sections

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3a75c253d62bfaf0a19a3fb95807bbd

Headers

File Characteristics

Imports

msvcrt

kernel32

usp10

gdi32

user32

crypt32

Sections

.rdata Size: 5KB - Virtual size: 5KB

.text Size: 512B - Virtual size: 436B

.idata Size: 4KB - Virtual size: 4KB

.data Size: - Virtual size: 96KB

.rsrc Size: 13KB - Virtual size: 13KB

.rdata
Size: 5KB - Virtual size: 5KB

.text
Size: 512B - Virtual size: 436B

.idata
Size: 4KB - Virtual size: 4KB

.data
Size: - Virtual size: 96KB

.rsrc
Size: 13KB - Virtual size: 13KB