c9ed17aca2d73242feae2a05e5529757

Sharing

Copy URL Twitter E-mail

General

Target

c9ed17aca2d73242feae2a05e5529757
Size

52KB
MD5

c9ed17aca2d73242feae2a05e5529757
SHA1

9ed3cd6a2516f18dec70380dbb21e8b5f74609d5
SHA256

e8593406fda206f31e50b836d5558aa97ceaf709127e588f4f16fc01b2b159b4
SHA512

c0bc91ebc9bd2348a417709cad97f21a3d482d15920d3b941788cfef3f74fe141cb14665773b1876b24898a3dccc32943f471306936a8068756a03b99efb9d64
SSDEEP

768:iMvEgQ1s/6qGaQUFHdE3MutyOQvjEKeTnVn7DY4rF4eRsNFcZ:xtH/65aPU73QvFK7DZx4Ms2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c9ed17aca2d73242feae2a05e5529757

Files

c9ed17aca2d73242feae2a05e5529757
.exe windows:4 windows x86 arch:x86

be6e3c29a858b89809146e762c3a8176

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupSeek
Beep
BuildCommDCBA
CloseHandle
CloseProfileUserMapping
CreateConsoleScreenBuffer
CreateRemoteThread
CreateSemaphoreA
EnterCriticalSection
EnumResourceNamesA
EnumSystemCodePagesA
EnumTimeFormatsW
ExitProcess
FileTimeToLocalFileTime
FindAtomW
FindClose
FindNextFileA
FindResourceExW
FoldStringW
GenerateConsoleCtrlEvent
GetAtomNameW
GetBinaryTypeW
GetCommandLineW
GetConsoleAliasW
GetConsoleAliasExesLengthW
GetConsoleCommandHistoryLengthW
GetConsoleInputWaitHandle
GetConsoleKeyboardLayoutNameW
GetCurrencyFormatW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDefaultCommConfigW
GetEnvironmentStringsW
GetLastError
GetLocalTime
GetLongPathNameA
GetLongPathNameW
GetModuleHandleA
GetModuleHandleW
GetNamedPipeHandleStateA
GetOEMCP
GetPrivateProfileSectionNamesW
GetPrivateProfileStringA
GetProcessTimes
GetShortPathNameA
GetStartupInfoW
GetStringTypeW
GetStringTypeExW
GetSystemTime
GetTapeParameters
GetTempFileNameA
GetTempPathA
GetThreadSelectorEntry
GetTickCount
GetTimeFormatA
GetVersion
GlobalReAlloc
HeapDestroy
HeapReAlloc
LocalLock
LocalReAlloc
LocalSize
LocalUnlock
LockFileEx
LockResource
MoveFileW
MoveFileWithProgressA
OpenMutexW
OpenSemaphoreA
Process32Next
QueueUserAPC
ReadConsoleW
SetCommTimeouts
SetComputerNameA
SetConsoleDisplayMode
SetCurrentDirectoryW
SetEnvironmentVariableW
SetLastConsoleEventActive
SetLastError
SetLocaleInfoA
SetStdHandle
SetWaitableTimer
SignalObjectAndWait
UpdateResourceA
VerifyConsoleIoHandle
VirtualProtect
VirtualUnlock
WaitNamedPipeA
WideCharToMultiByte
WritePrivateProfileSectionA
WriteProcessMemory
WriteTapemark
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynW

user32

BeginPaint
BringWindowToTop
CallMsgFilterA
CallWindowProcW
CascadeWindows
CharLowerW
CharNextW
CharUpperA
CharUpperW
CopyRect
CountClipboardFormats
CreateMDIWindowW
DdeAccessData
DdeClientTransaction
DdeDisconnect
DdeGetLastError
DdeQueryNextServer
DialogBoxParamA
DrawEdge
DrawStateW
DrawTextExA
EnableWindow
EnumDisplaySettingsA
EnumWindowStationsA
FillRect
FindWindowW
FlashWindow
GetAltTabInfoW
GetClassInfoA
GetClassLongW
GetClientRect
GetClipCursor
GetClipboardFormatNameA
GetClipboardViewer
GetCursor
GetCursorInfo
GetDCEx
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetKeyboardType
GetLastActivePopup
GetMenu
GetMenuItemID
GetMenuItemInfoA
GetParent
GetProcessWindowStation
GetTabbedTextExtentW
GetThreadDesktop
GetUpdateRect
GetWindowDC
GetWindowTextLengthW
GetWindowThreadProcessId
IMPQueryIMEW
IsDialogMessageA
IsDialogMessageW
IsWindow
LoadBitmapA
LoadMenuIndirectW
LoadStringA
LookupIconIdFromDirectoryEx
PackDDElParam
PostThreadMessageW
RealGetWindowClassA
ReleaseCapture
SendDlgItemMessageW
SetActiveWindow
SetCaretPos
SetClassLongW
SetDoubleClickTime
SetKeyboardState
SetLayeredWindowAttributes
SetSystemCursor
SetWindowPlacement
TabbedTextOutW
ToUnicodeEx
TrackMouseEvent
UnhookWinEvent
UnhookWindowsHookEx
UnpackDDElParam
wsprintfW

gdi32

CreateBitmapIndirect
CreatePen
CreatePenIndirect
CreateRectRgn
DPtoLP
DescribePixelFormat
EndPage
EqualRgn
FrameRgn
GdiComment
GdiGetBatchLimit
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetCurrentPositionEx
GetFontLanguageInfo
GetMetaFileA
GetPixel
GetRelAbs
GetRgnBox
GetStockObject
GetTextFaceA
GetWindowExtEx
LineTo
PatBlt
PolyBezierTo
PolyDraw
RectInRegion
ResetDCW
SetColorSpace
SetDIBColorTable
SetICMMode
SetMagicColors
SetPixel
SetTextJustification
TextOutA
TextOutW
gdiPlaySpoolStream

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Lbpx
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oYcn
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be6e3c29a858b89809146e762c3a8176

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 35KB - Virtual size: 40KB

.Lbpx Size: 4KB - Virtual size: 15KB

.oYcn Size: 5KB - Virtual size: 13KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 35KB - Virtual size: 40KB

.Lbpx
Size: 4KB - Virtual size: 15KB

.oYcn
Size: 5KB - Virtual size: 13KB

.reloc
Size: 1024B - Virtual size: 4KB