c54dedad685bab715ca7871d8f068f81

Sharing

Copy URL Twitter E-mail

General

Target

c54dedad685bab715ca7871d8f068f81
Size

486KB
MD5

c54dedad685bab715ca7871d8f068f81
SHA1

9e4b1f4342cae59ec8f1b1d3f98759b403f4560e
SHA256

3cb8ac32c7da76a9373f0417bc9ca1f7267c63e3a446ccd0de72c328e38d0361
SHA512

5092340da1a660ce88352cc0db3a8c1559efe06035b17e2783bcbcf755ead6707542bd980344b05a401144aa0ea0f7ff96ed318b972c0386b4067e4d57a74412
SSDEEP

6144:dalD46kJtdM7fs+GO/IBWWBaMEuSPASwO57KUUjRsKKU1Nm5I5quEs+b6J8/RHH:4+JI7fs+d/IBUuYq58uEjbzRHH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c54dedad685bab715ca7871d8f068f81

Files

c54dedad685bab715ca7871d8f068f81
.exe windows:6 windows x86 arch:x86

4de059ceb646d45b1c4c35350074caf2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\tim.vanderhorst\Desktop\ginfizzcpp\Debug\ginfizz.pdb

Imports

kernel32

CheckRemoteDebuggerPresent
GetLastError
SetLastError
GetCurrentProcess
CreateFileA
CloseHandle
DeviceIoControl
Sleep
GetModuleFileNameA
CreateMutexW
OutputDebugStringA
FreeLibrary
GetProcAddress
LoadLibraryA
GetTempPathA
DeleteFileW
GetModuleHandleA
GetFileAttributesA
ReadConsoleW
ReadFile
IsDebuggerPresent
SetConsoleTextAttribute
GetVersionExA
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
EncodePointer
DecodePointer
IsProcessorFeaturePresent
GetModuleFileNameW
GetModuleHandleExW
HeapValidate
GetSystemInfo
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetFileType
DeleteCriticalSection
InitOnceExecuteOnce
GetStartupInfoW
RaiseException
LoadLibraryExW
lstrlenA
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCurrentThread
GetCurrentThreadId
FatalAppExitA
ExitProcess
AreFileApisANSI
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
GetProcessHeap
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTickCount64
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
TerminateProcess
GetModuleHandleW
SetStdHandle
SetConsoleCtrlHandler
OutputDebugStringW
WaitForSingleObjectEx
CreateThread
WriteConsoleW
HeapFree
HeapReAlloc
HeapSize
HeapQueryInformation
HeapAlloc
SetFilePointerEx
VirtualQuery
GetStringTypeW
GetTimeFormatEx
GetDateFormatEx
CompareStringEx
GetLocaleInfoEx
GetUserDefaultLocaleName
LCMapStringEx
IsValidLocaleName
EnumSystemLocalesEx
InterlockedExchange
CreateFileW
SetEndOfFile

user32

GetCursorPos

advapi32

RegOpenKeyExA
GetUserNameA
RegQueryValueExA

Sections

.textbss
Size: - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 381KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4de059ceb646d45b1c4c35350074caf2

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

Sections

.textbss Size: - Virtual size: 182KB

.text Size: 381KB - Virtual size: 380KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 5KB - Virtual size: 14KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 17KB - Virtual size: 17KB

.textbss
Size: - Virtual size: 182KB

.text
Size: 381KB - Virtual size: 380KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 5KB - Virtual size: 14KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 17KB - Virtual size: 17KB