c950008a57719223b170ace30ce2dd0c

Sharing

Copy URL Twitter E-mail

General

Target

c950008a57719223b170ace30ce2dd0c
Size

588KB
MD5

c950008a57719223b170ace30ce2dd0c
SHA1

4284f2d09c09f3ae50e0344fdb81268db449929d
SHA256

79648dc0ccaacbb48fc811bfb98c6dbd4b7f375d08bcd77ccf4293b511a03701
SHA512

e6ac9e70a6e4e7c231c699424d0823667f05b1e02cd99c3e5bd32a1cda1eb3fdf060df4c41783a9542c899cbca70fa611dfc1f000e8aaa8e4ed8ce9e29838b16
SSDEEP

12288:IPhRyuj1Lwxl5p82lGskogORcB/nRIpmL+qwqpuo/:Ivyuj16l5m20TsY/nKoChqp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c950008a57719223b170ace30ce2dd0c

Files

c950008a57719223b170ace30ce2dd0c
.exe windows:4 windows x86 arch:x86

13917211611b363ee41e053abac6471e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\

Imports

user32

DdeSetUserHandle
GetKeyboardType
SetSysColors
EnumPropsW
DeferWindowPos
CharPrevW
RegisterHotKey
ChildWindowFromPoint
EqualRect
AttachThreadInput
DdeNameService
SetDlgItemInt
DialogBoxParamA
CreateWindowExW
ShowWindow
ChildWindowFromPointEx
EnumPropsExW
CreateCaret
CreateIconFromResource
DestroyWindow
CallWindowProcA
ReleaseCapture
GetKeyboardLayoutNameA
GetClipboardSequenceNumber
ShowCaret
IsWindow
ExcludeUpdateRgn
CloseWindow
DdeCmpStringHandles
FindWindowExA
GetWindowDC
SetUserObjectInformationA
LoadKeyboardLayoutW
IsDlgButtonChecked
OffsetRect
RegisterClassExA
WINNLSGetIMEHotkey
MessageBoxA
ChangeClipboardChain
SetProcessWindowStation
GetUpdateRect
RegisterClassA
DefWindowProcW
VkKeyScanA

shell32

SHBrowseForFolderA
FindExecutableA
DuplicateIcon
ShellExecuteExA
SHFreeNameMappings

comctl32

ImageList_SetImageCount
DrawInsert
InitCommonControlsEx
ImageList_AddIcon
ImageList_Read
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_BeginDrag
ImageList_LoadImageW
InitMUILanguage
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_SetOverlayImage
ImageList_Merge
ImageList_SetIconSize
CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_SetFilter
CreateStatusWindowW
ImageList_EndDrag
GetEffectiveClientRect
_TrackMouseEvent

gdi32

EnumFontFamiliesA
MoveToEx
GetMiterLimit
PlayEnhMetaFileRecord
EnumICMProfilesA
PtVisible
CreateDIBPatternBrush
SetViewportOrgEx
WidenPath
AngleArc
SetWindowOrgEx
EnumEnhMetaFile
StretchDIBits
ScaleWindowExtEx
GetPixelFormat
Arc
SetLayout
SetBrushOrgEx
EnumFontFamiliesW
GdiSetBatchLimit

comdlg32

ChooseFontW
GetFileTitleA
PageSetupDlgA
ChooseColorA

kernel32

DebugActiveProcess
RaiseException
SetCurrentDirectoryA
InterlockedExchange
GetNumberFormatW
WaitCommEvent
GetPrivateProfileSectionW
GetConsoleOutputCP
MoveFileExA
GetProcessShutdownParameters
SetFilePointer
SetHandleCount
GetConsoleCP
WriteProfileStringA
QueryPerformanceCounter
HeapFree
GetCPInfo
GetVersion
WriteConsoleOutputCharacterA
HeapCreate
GetModuleHandleA
GetTimeZoneInformation
OpenMutexA
CloseHandle
LCMapStringW
GetEnvironmentStringsA
TlsAlloc
LeaveCriticalSection
HeapDestroy
VirtualLock
FindFirstFileExA
GetFullPathNameA
GetCurrentProcessId
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentThreadId
CompareStringW
VirtualQuery
GetProcAddress
TlsSetValue
GetStringTypeW
GetLastError
lstrcmp
SetEnvironmentVariableA
GetLongPathNameA
GetTickCount
GetFileType
GetFileAttributesW
GetCommandLineW
SetCurrentDirectoryW
RtlUnwind
DeleteFileW
GetModuleFileNameA
WriteProfileSectionA
ReadFile
FindResourceExW
CommConfigDialogW
GetLocalTime
GetAtomNameA
GetModuleFileNameW
WideCharToMultiByte
GetCurrentThread
ExpandEnvironmentStringsW
InitializeCriticalSection
LCMapStringA
FindNextFileW
CreateEventW
GetSystemTime
GetStartupInfoW
CompareStringA
HeapReAlloc
MultiByteToWideChar
GetCurrentProcess
SetLastError
GetEnvironmentStringsW
ExitProcess
GetStdHandle
GetCommandLineA
SetStdHandle
InterlockedDecrement
GetEnvironmentStrings
TerminateProcess
EnterCriticalSection
UnhandledExceptionFilter
TlsFree
InterlockedIncrement
HeapAlloc
GetStartupInfoA
VirtualFree
GetSystemTimeAsFileTime
IsBadWritePtr
GetStringTypeA
TlsGetValue
WriteFile
WriteConsoleW
OpenMutexW
GlobalLock
GlobalReAlloc
ReadConsoleW
SetFileTime
VirtualAlloc
FreeEnvironmentStringsW
FlushFileBuffers
SetThreadIdealProcessor
LoadLibraryA
CreateMutexA

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13917211611b363ee41e053abac6471e

Headers

File Characteristics

PDB Paths

Imports

user32

shell32

comctl32

gdi32

comdlg32

kernel32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 108KB - Virtual size: 127KB

.rsrc Size: 64KB - Virtual size: 62KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 108KB - Virtual size: 127KB

.rsrc
Size: 64KB - Virtual size: 62KB