c84eb1820c8ec1808d1141c20bbc8699

Sharing

Copy URL Twitter E-mail

General

Target

c84eb1820c8ec1808d1141c20bbc8699
Size

204KB
MD5

c84eb1820c8ec1808d1141c20bbc8699
SHA1

0908ceacf88a575bb29468f815a7af9862336748
SHA256

49a5f8e698f07a14f917ad33186a07f599eeb7fa4614b64351b9328ba9cb0bdb
SHA512

d7623d4524f96e851080ff24bf7fccbb9947c388e48b9787eb3960b85a7c0e8b5004a5b51fcfcba1821cb2d296e5f2cb785b464406cfa3be62a5e9314a967573
SSDEEP

6144:u7y5kxKgG1hELtHcxal4+8DdRqHF30MdBXG:mTxKT8Lt8g/8DLqFkSW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c84eb1820c8ec1808d1141c20bbc8699

Files

c84eb1820c8ec1808d1141c20bbc8699
.exe windows:4 windows x86 arch:x86

ceb48cc11d9520074f8ffc6cfc12173a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
GetDC
LoadMenuA
CopyIcon
CreateIcon
CopyRect
GetWindowTextA
EndDialog
DialogBoxParamW
IsMenu
CloseWindow
DialogBoxParamA
IsWindow
DrawTextW
InsertMenuA
CalcMenuBar
BlockInput
DrawIcon
DrawTextA
GetCursor
DrawIconEx
CopyIcon
AlignRects
DrawIconEx
IsWindow
EndDialog
CopyRect
LoadCursorA
AppendMenuW
DialogBoxParamA
IsMenu
GetCursor
DrawTextA
GetDlgItem
AppendMenuA
GetFocus

gdi32

GetCurrentPositionEx
RestoreDC
AddFontResourceExW
CloseMetaFile
CreateSolidBrush
GetPixel
ExtTextOutA
BeginPath
BitBlt
AddFontMemResourceEx
ClearBrushAttributes
AddFontResourceW
GetDCOrgEx
AbortPath
CancelDC
ExcludeClipRect
DeleteObject
GetBrushOrgEx
AddFontResourceA
GetBitmapBits
AbortPath
ClearBitmapAttributes
AddFontResourceTracking
ExcludeClipRect
DeleteObject
CreateSolidBrush
BeginPath
GetDCOrgEx
CloseMetaFile
AddFontResourceExW
GetBrushOrgEx
BitBlt
GetClipBox
SetTextColor
AddFontResourceA
ExtTextOutA
ClearBrushAttributes
GetPixel
DeleteDC
ClearBitmapAttributes
GetDCOrgEx
AbortPath
ClearBrushAttributes
BeginPath
GetBrushOrgEx
CancelDC
GetClipBox
GetBitmapBits
GetPixel
AddFontResourceExA
ExcludeClipRect
CopyMetaFileA
RestoreDC
CreateSolidBrush
AddFontResourceA
AddFontResourceW
SetTextColor
BitBlt
GetPixel
AddFontResourceW
GetCurrentPositionEx
ExcludeClipRect
CloseFigure
ClearBrushAttributes
CloseMetaFile
AddFontResourceExW
ClearBitmapAttributes
RestoreDC
SetTextColor
CreateSolidBrush
CancelDC
AbortPath
DeleteObject
BeginPath
CloseMetaFile
GetBrushOrgEx
AbortPath
AddFontResourceTracking
AddFontMemResourceEx
CopyMetaFileA
GetPixel
CloseFigure
AddFontResourceW
DeleteDC
GetClipBox
ExtTextOutA
GetPixel
RestoreDC
SetTextColor
ClearBrushAttributes
AddFontResourceExW
AddFontResourceA
ExcludeClipRect
BeginPath
DeleteObject
CreateSolidBrush

kernel32

OpenFileMappingA
CreateProcessA
ReadConsoleA
GetComputerNameA
GetCommandLineA
FindAtomA
CopyFileExW
DeleteFileW
GetConsoleMode
GlobalFree
CopyFileExA
ReadFile
CreateThread
CopyFileA
GetStdHandle
FindFirstFileA
ExitThread
SetLastError
GetFileSize
DeleteAtom
DeleteFileA
GetConsoleMode
CreateThread
GetComputerNameA
DeleteFileW
GetFileTime
FindFirstFileA
ExitThread
CreateDirectoryA
GetCommandLineA
Sleep
SetLastError
FindAtomA
ReadConsoleA
DeleteFileA
GlobalFree
GetCPInfo
CopyFileExW
OpenFileMappingA
GetStdHandle
WriteFile
DeleteAtom
CopyFileA
GetFileSize
CopyFileExA
GlobalFree
GetComputerNameA
CreateThread
SetLastError
CreateDirectoryA
CopyFileExA
FindFirstFileA
Sleep
DeleteFileA
CopyFileA
GetCPInfo
CopyFileExW
ReadConsoleA
DeleteAtom
FindAtomA
GetFileTime

comctl32

ImageList_EndDrag
ImageList_Read
ImageList_GetDragImage
ImageList_Copy
ImageList_LoadImageW
InitCommonControls
ImageList_LoadImage
ImageList_GetImageRect
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_Create
ImageList_GetIcon
ImageList_Remove
ImageList_AddIcon
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_DragMove
ImageList_GetIconSize
ImageList_DragShowNolock
InitCommonControls
ImageList_GetDragImage
ImageList_Replace
ImageList_Draw
ImageList_DragLeave
ImageList_LoadImageW
ImageList_DrawIndirect
ImageList_Merge
ImageList_AddIcon
ImageList_AddMasked
ImageList_LoadImage
ImageList_GetImageCount
ImageList_Copy
ImageList_LoadImageA
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Remove
ImageList_LoadImageW
ImageList_DragMove
ImageList_GetImageInfo
ImageList_Destroy
ImageList_LoadImage
ImageList_GetIcon
ImageList_Draw
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Merge
ImageList_GetImageCount
InitCommonControls
ImageList_LoadImageA
ImageList_Replace
ImageList_Create
ImageList_DrawEx
ImageList_Remove
ImageList_Create
ImageList_Read
ImageList_DrawIndirect
ImageList_Draw
ImageList_AddIcon
ImageList_DragLeave
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_Copy
ImageList_BeginDrag
ImageList_DragEnter
ImageList_LoadImageW
ImageList_GetIcon
ImageList_LoadImage
ImageList_EndDrag
ImageList_GetDragImage
ImageList_Merge
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_GetImageRect
ImageList_Replace
ImageList_DrawEx
ImageList_ReplaceIcon

advapi32

RegDeleteValueA
RegQueryInfoKeyA
RegLoadKeyW
RegDeleteKeyA
RegEnumKeyW
RegEnumKeyA
RegQueryValueExA
RegQueryValueExW
RegQueryInfoKeyW
RegReplaceKeyA
RegOpenKeyExA
RegCreateKeyW
RegGetKeySecurity
RegQueryValueW
RegCreateKeyExA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ceb48cc11d9520074f8ffc6cfc12173a

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comctl32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 57KB - Virtual size: 136KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 57KB - Virtual size: 136KB

.rsrc
Size: 1KB - Virtual size: 1KB