c4f13bb96b21847b87d83dd4f8b7eff6

General

Target

c4f13bb96b21847b87d83dd4f8b7eff6
Size

315KB
MD5

c4f13bb96b21847b87d83dd4f8b7eff6
SHA1

c361f9a6de8b0f2c40ba92f47d6959fa092d1f21
SHA256

c6dd9b3b343f1517a1a95a4742425b085854b66b1a85475544c9a95fa92c3597
SHA512

c89c4a234807ea734e36ff896a369cf2e8aac4fad69acc9fc0aee518350b43bb0bd0088cd024e119d4fcfacd19f8612a36ff2247d9785d61b09d56238035a90b
SSDEEP

6144:e3K6ARdDBxLCRZ8RYTGep1eRa6x70lIknWkJB76Fq1wSAg:enAbDBxmYRYDHM8IkWkJF67hg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c4f13bb96b21847b87d83dd4f8b7eff6

Files

c4f13bb96b21847b87d83dd4f8b7eff6
.exe windows:4 windows x86 arch:x86

54f0a070a2d051ab215e09bd583bb105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
SetLastError
Sleep
GetLocaleInfoA
GetProcAddress
TlsAlloc
HeapReAlloc
TlsGetValue
GetLocaleInfoW
IsValidCodePage
GetCurrentProcessId
HeapAlloc
GetCurrentThread
GetTimeZoneInformation
WriteFile
GetModuleHandleA
TlsFree
CompareStringA
FreeEnvironmentStringsW
WideCharToMultiByte
HeapDestroy
SetConsoleCtrlHandler
GetModuleHandleW
MultiByteToWideChar
TlsSetValue
GetCommandLineW
InterlockedIncrement
GetACP
FlushFileBuffers
ExitProcess
GetTickCount
FreeLibrary
SetEnvironmentVariableA
HeapFree
GetStdHandle
GetModuleFileNameA
LCMapStringW
LoadLibraryA
QueryPerformanceCounter
GetStartupInfoW
VirtualAlloc
DeleteCriticalSection
GetModuleFileNameW
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetStringTypeA
GetUserDefaultLCID
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
EnumSystemLocalesA
SetUnhandledExceptionFilter
GetOEMCP
GetSystemTimeAsFileTime
GetStringTypeW
GetFileType
CompareStringW
GetTimeFormatA
HeapCreate
GetEnvironmentStringsW
VirtualFree
UnhandledExceptionFilter
LeaveCriticalSection
GetDateFormatA
HeapSize
GetStartupInfoA
GetCPInfo
SetHandleCount
GetLastError
InterlockedDecrement
EnterCriticalSection
InterlockedExchange
IsValidLocale

user32

CallMsgFilterW
GetPropW
TrackPopupMenu
GetNextDlgGroupItem
ToAscii
GetClipboardViewer
SetWindowPos
OemToCharBuffW
CreateIconFromResourceEx
GetCursorPos
SetCursorPos

Sections

.text
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54f0a070a2d051ab215e09bd583bb105

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 163KB - Virtual size: 163KB

.data Size: 142KB - Virtual size: 141KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 163KB - Virtual size: 163KB

.data
Size: 142KB - Virtual size: 141KB

.rsrc
Size: 9KB - Virtual size: 8KB