c58d84d67c268a9a7cc80b6fb0cbf02c

Sharing

Copy URL Twitter E-mail

General

Target

c58d84d67c268a9a7cc80b6fb0cbf02c
Size

98KB
MD5

c58d84d67c268a9a7cc80b6fb0cbf02c
SHA1

1f9bb788ec4470d78e704df30b46ac29df58ac4c
SHA256

9338bdaae10d766fe1d39985f00f00d84b586383cd8d13d2d474f52fb49ecad5
SHA512

1bc9587a600c9830cc80ddeaff2e6d62c23df36ddc767476e51df7122795170e675b45bdb8c8352270cb4a248d075a7763fb49902a2d04c136ae6826138dfb15
SSDEEP

1536:IQ6B7UTGLw+0+7+lDS8748HHX7Sh42uRNQvcJm06GGeO7AQH8OaijMP:IQCcd+37+l+UtHLSh4UvcJfQcdiO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c58d84d67c268a9a7cc80b6fb0cbf02c

Files

c58d84d67c268a9a7cc80b6fb0cbf02c
.exe windows:4 windows x86 arch:x86

afeec39073a7410811ba1234f937ca8f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Read
ImageList_GetImageInfo
ImageList_DragMove
ImageList_GetIcon
ImageList_AddIcon
ImageList_GetIconSize
ImageList_Replace
ImageList_Copy
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_DragLeave
ImageList_Draw
ImageList_DrawEx
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_GetDragImage
ImageList_LoadImage
InitCommonControls
ImageList_DragShowNolock
ImageList_Remove

user32

GetDC
GetDlgItem
CopyRect
AppendMenuA
GetCursor
CopyImage
EndDialog
CloseWindow
IsWindow
LoadMenuA
DrawTextA
IsMenu
CalcMenuBar
GetWindowTextA
CopyIcon
GetMenu
DrawTextW
InsertMenuA
AppendMenuW
GetFocus
IsWindow
DrawTextW
AlignRects
IsMenu
DialogBoxParamA
GetWindowTextA
DialogBoxParamW
CloseWindow
GetWindowTextLengthA
InsertMenuA
EndDialog
GetDlgItem
AppendMenuA
CopyRect
DrawTextA
LoadCursorA
GetFocus

advapi32

RegReplaceKeyA
RegCreateKeyW
RegEnumValueA
RegDeleteKeyA
RegEnumKeyA
RegLoadKeyW
RegEnumValueW
RegEnumKeyW
RegOpenKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegLoadKeyA
RegQueryValueA

kernel32

GetLastError
DeleteFileA
GetFileType
GlobalFree
FreeLibrary
GetCPInfo
lstrcpyA
GetStringTypeA
HeapAlloc
lstrlenA
GlobalAlloc
GetModuleHandleA
CloseHandle
GetDateFormatA
GetModuleFileNameA
GetLocalTime

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ddata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 3KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xMbQIs
Size: - Virtual size: 232B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.YZnmXU
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afeec39073a7410811ba1234f937ca8f

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 14KB - Virtual size: 13KB

.ddata Size: 25KB - Virtual size: 24KB

.gdata Size: 3KB - Virtual size: 44KB

.xMbQIs Size: - Virtual size: 232B

.YZnmXU Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.ddata
Size: 25KB - Virtual size: 24KB

.gdata
Size: 3KB - Virtual size: 44KB

.xMbQIs
Size: - Virtual size: 232B

.YZnmXU
Size: 2KB - Virtual size: 1KB