c4db99e134f8b1a23cd51932eaf7f8b7

Sharing

Copy URL Twitter E-mail

General

Target

c4db99e134f8b1a23cd51932eaf7f8b7
Size

137KB
MD5

c4db99e134f8b1a23cd51932eaf7f8b7
SHA1

81017d045259aea8a91e5e0c2718ba901334c354
SHA256

caba4def8e81752bd2b60ce3edccc5a2d1f652b59e705e239d7fb250da46736a
SHA512

0797bc523ed2ef1a129d8084f5a740c7eea5a1741ca4c74f7e8443b55194acad28ffa8e7660f434338fe5d7f5511c1b55804563a4700078670f3d97bc6175e01
SSDEEP

3072:zGWEHqBvvFVWNA0Cr6XIhLKKd378v6xcGkv6Mj:zbEqBvv++r6+KyL8Chl+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4db99e134f8b1a23cd51932eaf7f8b7

Files

c4db99e134f8b1a23cd51932eaf7f8b7
.dll windows:4 windows x86 arch:x86

c0a2b9450758ef8b811bd375924f70ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetCursor
GetWindowTextLengthA
CloseWindow
DrawIcon
LoadMenuA
CopyIcon
BlockInput
CreateIcon
IsWindow
CalcMenuBar
AppendMenuA
GetDlgItem
LoadCursorA
GetMenu
DialogBoxParamW
IsMenu
CreateIcon
CalcMenuBar
CopyRect
DrawTextA
EndDialog
GetMenu
DialogBoxParamA
GetCursor
AppendMenuW
DrawTextW
DialogBoxParamW
BlockInput
DrawIconEx
AppendMenuW
CalcMenuBar
AlignRects
CopyImage
DrawTextA
GetCursor
GetFocus
GetWindowTextA
DrawTextW
CreateIcon
AppendMenuA
DialogBoxParamA
GetWindowTextLengthA
AlignRects
IsMenu
GetDlgItem
GetMenu
DialogBoxParamW
DrawIconEx
CalcMenuBar
GetWindow
AppendMenuW
DrawIcon
EndDialog
IsWindow
LoadCursorA

kernel32

GlobalFree
FindFirstFileA
Sleep
CopyFileExA
GetFileSize
OpenFileMappingA
GetComputerNameA
GetCommandLineA
CopyFileExW
ReadConsoleA
GlobalFree
Sleep
GetCommandLineA
CreateProcessA
OpenFile
GetComputerNameA
ExitThread
DeleteFileA
DeleteFileW
ReadConsoleA
GetFileSize
FindFirstFileA
ReadFile
CreateDirectoryA
CopyFileW
GetStdHandle
Sleep
GetFileSize
CopyFileA
GetFileTime
CopyFileExA
GlobalFree
CopyFileW
ExitThread
OpenFileMappingA
CreateThread

advapi32

RegFlushKey
RegCreateKeyW
RegQueryInfoKeyA
RegDeleteValueW
RegDeleteKeyW
RegReplaceKeyA
RegEnumKeyExA
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueW
RegOpenKeyW
RegQueryValueExW
RegQueryValueA
RegEnumKeyExA
RegCreateKeyExA
RegEnumKeyW
RegDeleteValueW
RegReplaceKeyA
RegGetKeySecurity
RegDeleteKeyA
RegEnumKeyExW
RegCloseKey
RegEnumKeyA
RegLoadKeyW
RegLoadKeyA
RegCreateKeyW
RegFlushKey
RegQueryValueA
RegOpenKeyW
RegCreateKeyExW

Sections

DATA
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b0820
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0a2b9450758ef8b811bd375924f70ff

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

DATA Size: 11KB - Virtual size: 10KB

.rdata Size: - Virtual size: 3KB

.INIT Size: 117KB - Virtual size: 117KB

.b0820 Size: 4KB - Virtual size: 4KB

.edata Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 145KB

DATA
Size: 11KB - Virtual size: 10KB

.rdata
Size: - Virtual size: 3KB

.INIT
Size: 117KB - Virtual size: 117KB

.b0820
Size: 4KB - Virtual size: 4KB

.edata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 145KB