ca8a110ef6967beebe521ee61fbdd43e

Sharing

Copy URL Twitter E-mail

General

Target

ca8a110ef6967beebe521ee61fbdd43e
Size

33KB
MD5

ca8a110ef6967beebe521ee61fbdd43e
SHA1

341f81263e2663335076e450a039f318c96fb077
SHA256

34db14859b7900a9be107ccc2c16b5b6bb985ce75b894edb52b4927b75bb47c5
SHA512

1d779a2e80e4e36adae212b72be68e8acd9a3000a532cbad84d433ae2575c918b1f5e986b212a72c44d49d8780871cc45b455a33adc96a0731e23135525bd087
SSDEEP

768:b/rY2RtZw/LWDrknwbPV+lY93kuqeF0AAbKqEV:b/eiDrknwbt+lY9/FFFA2P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca8a110ef6967beebe521ee61fbdd43e

Files

ca8a110ef6967beebe521ee61fbdd43e
.exe windows:4 windows x86 arch:x86

9ed68c04bdafdff0814fd3a4ac26bff6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesA
GetFileInformationByHandle
FileTimeToDosDateTime
SetVolumeMountPointA
VirtualAlloc
ReleaseSemaphore
CompareStringA
DuplicateConsoleHandle
ReadConsoleOutputCharacterA
LoadLibraryExW
ReplaceFileA
GetThreadTimes
SetConsoleOutputCP
GetEnvironmentStringsA
HeapDestroy
Thread32Next
SetConsoleInputExeNameA
ReadConsoleOutputCharacterA
GetConsoleMode
Heap32Next
SetFileApisToOEM
WritePrivateProfileStringA
GetCurrentDirectoryA
GetFullPathNameA
SetComputerNameA
GetProcessTimes
SetFileAttributesA
OpenJobObjectA
GetStartupInfoA
GetProfileSectionA
GetLongPathNameA
GetDiskFreeSpaceExA
OpenSemaphoreA
GetThreadContext
EnumSystemCodePagesA
GetFileTime
GetTempFileNameA
CreateConsoleScreenBuffer
GetConsoleAliasExesLengthA
FindResourceA
SetFileShortNameA
Heap32ListFirst
SetThreadPriorityBoost
FreeConsole
GlobalAddAtomA
ReadConsoleA
FindClose
SetInformationJobObject
SetFilePointerEx
IsBadReadPtr
GetAtomNameA
GetConsoleTitleA
ExpandEnvironmentStringsA
GetSystemTime
GetThreadPriority
GlobalUnlock
GetThreadSelectorEntry
CallNamedPipeA
FlushInstructionCache
GetDiskFreeSpaceA
GetConsoleScreenBufferInfo
SystemTimeToFileTime
SetComputerNameExA
GetFullPathNameA
ReadFileScatter
GetConsoleCursorInfo
GetFileType
GetNamedPipeInfo
GlobalGetAtomNameA
GetConsoleWindow
VirtualQuery
GetLogicalDriveStringsA
SetConsoleActiveScreenBuffer
HeapSize
SetDefaultCommConfigA
OpenWaitableTimerA
GetConsoleCommandHistoryLengthW
GetSystemTimeAdjustment
CloseHandle
PurgeComm
GetProcessHeaps
FindNextFileA
HeapFree
GetTimeZoneInformation
SetThreadAffinityMask
GetDllDirectoryA
GetConsoleInputExeNameA
ClearCommBreak
GetTapePosition
IsDebuggerPresent
LoadResource
PeekConsoleInputA
SetHandleInformation
ConvertDefaultLocale
VirtualAlloc
GetConsoleAliasesLengthW
OpenFileMappingA
FindFirstVolumeA
IsBadHugeReadPtr
WriteConsoleOutputCharacterW
GetCommModemStatus
PostQueuedCompletionStatus
LZRead
LZDone
GetProcessPriorityBoost
GetEnvironmentStringsA

dhcpsapi

DhcpAddServer

dinput

DirectInputCreateW

Exports

Exports

Fmpccvxia
Lcbfpfator

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ed68c04bdafdff0814fd3a4ac26bff6

Headers

File Characteristics

Imports

kernel32

dhcpsapi

dinput

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 6KB - Virtual size: 8KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 6KB - Virtual size: 8KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 2KB - Virtual size: 1KB