c2fc01df2707c35b061edb8502785974

General

Target

c2fc01df2707c35b061edb8502785974
Size

32KB
MD5

c2fc01df2707c35b061edb8502785974
SHA1

584b6f045b69baad86520d7e8af004de034b1d33
SHA256

71717d15e24621f857abb2205bb61c674bc78df40fc5ee8362e41ab38f3d5a94
SHA512

52b6aa803ba8730ef1e1c2a153d130b38513dc3347a83c69a7956d6afbaf38b29f833b3236b489e8ac7b3812fe9a5a3932bbf557ff2f9c3f65bfa1ce7c274f08
SSDEEP

384:AceZ7JTL3HBchw4zVkpy0FyjK4XB95TlcY6Br+avOokygt:AceZ79XBwwG0FyDT5TlcYWN5hgt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2fc01df2707c35b061edb8502785974

Files

c2fc01df2707c35b061edb8502785974
.dll windows:4 windows x86 arch:x86

778c6ce83df8f1bf08929e8999f7f0ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
HeapReAlloc
GetFileAttributesA
GetTempPathA
MultiByteToWideChar
GetTickCount
CloseHandle
WriteFile
ReadFile
CreateFileA
lstrcatA
lstrcmpA
SystemTimeToFileTime
GetSystemTime
SetFilePointer
HeapAlloc
InterlockedExchange
RtlUnwind
GetModuleHandleA
GetProcAddress
FreeLibrary
PulseEvent
GetProcessHeap
GlobalAlloc
LoadLibraryA
VirtualQuery
GetLastError
lstrcpynA
lstrcpyA
CreateEventA
GlobalFree

user32

RegisterWindowMessageA
SetWindowLongA
AnyPopup
IsChild
BeginPaint
ShowWindow
EndPaint
wsprintfA
SetDlgItemTextA
MessageBoxA
SetWindowTextA
SendMessageA
GetFocus
IsWindowVisible
GetClientRect
GetWindowRect
CreateWindowExA
GetWindowLongA
CreateWindowExW
EnableWindow
DestroyWindow
CallWindowProcA
GetDlgItem

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA

wininet

InternetCloseHandle
InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetSetFilePointer

Exports

Exports

check
copy
run

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

778c6ce83df8f1bf08929e8999f7f0ec

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wininet

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB