cac7f88c8d92a70445cabd70cb498dab

Sharing

Copy URL Twitter E-mail

General

Target

cac7f88c8d92a70445cabd70cb498dab
Size

385KB
MD5

cac7f88c8d92a70445cabd70cb498dab
SHA1

9cfa8fc31111068a9f56c76f93ff643eb5885855
SHA256

947843adf1b34e033cf55bd8a368ad087997fc5dfbe232e575119c9a97f1901e
SHA512

f63eb62d6591a9fce82cf5045e191aab23988192c6c2b7da2eefdeb6973d5deed39d2760568d00c41c7371da4c2faa37f2e1f269992b38733d2283f9686f595b
SSDEEP

12288:vRwgGq7nYqJq8LAlynL5CY+meKQQfQZmr5:vRwgGgnNtL5CVm5r9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cac7f88c8d92a70445cabd70cb498dab

Files

cac7f88c8d92a70445cabd70cb498dab
.exe windows:4 windows x86 arch:x86

ab669aab7643f405bb6c0f7a5bfb49af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

SHGetFileInfoA

user32

CheckDlgButton
RegisterClassExA
EnumDisplayMonitors
EnumDesktopsA
GetScrollRange
DestroyAcceleratorTable
KillTimer
PostThreadMessageA
DdeCmpStringHandles
LoadKeyboardLayoutA
GetMessageTime
GetClipboardOwner
IsRectEmpty
DdeInitializeA
ScrollDC
RegisterClassA
SetScrollPos

kernel32

TlsSetValue
VirtualAlloc
OpenMutexA
LCMapStringA
HeapCreate
InterlockedIncrement
SetStdHandle
VirtualQuery
DeleteCriticalSection
GetTickCount
GetCurrentThreadId
IsValidLocale
GetEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
WriteConsoleA
TerminateProcess
TlsGetValue
WriteFile
IsValidCodePage
GetTimeZoneInformation
GetDateFormatA
GetConsoleMode
SetHandleCount
CreateFileA
FreeEnvironmentStringsW
GetCurrentProcessId
GetCPInfo
GetProcAddress
GetOEMCP
GetUserDefaultLCID
FreeLibrary
GetCurrentProcess
GetLastError
GetCommandLineA
SetLastError
WriteConsoleW
GetModuleHandleW
HeapDestroy
GetCurrentThread
GetTimeFormatA
GetEnvironmentStrings
SetConsoleCtrlHandler
GetConsoleCP
LeaveCriticalSection
CompareStringW
GetLocaleInfoA
CreateMutexA
GetModuleFileNameA
Sleep
HeapReAlloc
InterlockedExchange
GetLocaleInfoW
MultiByteToWideChar
GetSystemTimeAsFileTime
GetStartupInfoA
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProfileIntW
LoadLibraryA
RtlUnwind
SetFilePointer
GetStringTypeA
ExitProcess
GetACP
TlsFree
CloseHandle
QueryPerformanceCounter
GetConsoleOutputCP
LCMapStringW
GetStdHandle
GetStringTypeW
EnumSystemLocalesA
TlsAlloc
IsDebuggerPresent
HeapFree
CompareStringA
SetTimeZoneInformation
WideCharToMultiByte
VirtualFree
FlushFileBuffers
InterlockedDecrement
GetFileType
GetModuleHandleA
HeapSize
ReadFile
SetEnvironmentVariableA
HeapAlloc
EnterCriticalSection

advapi32

CryptExportKey
LookupPrivilegeValueA
CryptSetProviderExA
LookupPrivilegeValueW
InitiateSystemShutdownA
AbortSystemShutdownW
CreateServiceA
RegOpenKeyW
CryptSetKeyParam
RegEnumValueW
RegDeleteValueA
RegCreateKeyA

wininet

FindFirstUrlCacheGroup

gdi32

PlgBlt
CreatePolygonRgn
DeviceCapabilitiesExA
RealizePalette
GetFontData
CancelDC
FrameRgn
CreateDCA
RectInRegion
GetColorAdjustment
SetROP2
CreateHalftonePalette
GetKerningPairsA
CreateEnhMetaFileW
Arc
SetDeviceGammaRamp
CreateRectRgnIndirect
UpdateICMRegKeyW
GetCharWidth32W
GetICMProfileW

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab669aab7643f405bb6c0f7a5bfb49af

Headers

File Characteristics

Imports

comctl32

shell32

user32

kernel32

advapi32

wininet

gdi32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 10KB - Virtual size: 29KB

.data Size: 209KB - Virtual size: 208KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 10KB - Virtual size: 29KB

.data
Size: 209KB - Virtual size: 208KB

.rsrc
Size: 9KB - Virtual size: 8KB