cb24c5ead3e731c56f5a0955be27456b

Sharing

Copy URL Twitter E-mail

General

Target

cb24c5ead3e731c56f5a0955be27456b
Size

90KB
MD5

cb24c5ead3e731c56f5a0955be27456b
SHA1

7369dace691e4606d6717b21f9fe8d62bb8411e2
SHA256

57eecc19c41aae55866e94d03dfec7d01459df50e57965721ba9d21dd7058729
SHA512

04f4dfa235099d593ed292537375fd8eeac18172fbbdb1b30193b1f13afa26b57dfbac6dfa85fbaf2b070a721c7138e9d73c8a8c35ea00d064c564302b68b355
SSDEEP

1536:9FTWboUErXzTns4P3YykuwxCffdDY7N+kVBZZDl4kqj2sjg:TTVz7s4P341xCffdE7IUZD4kq6sjg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cb24c5ead3e731c56f5a0955be27456b

Files

cb24c5ead3e731c56f5a0955be27456b
.exe windows:4 windows x86 arch:x86

ff04456315c614f3abf7b9157c9711c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
GetDriveTypeA
HeapCreate
VirtualFree
HeapDestroy
CompareStringA
GetTimeZoneInformation
FileTimeToLocalFileTime
FileTimeToSystemTime
SetEnvironmentVariableA
ReadFile
SetEndOfFile
GetStringTypeW
GetStringTypeA
LoadLibraryA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
HeapReAlloc
CompareStringW
SetUnhandledExceptionFilter
FlushFileBuffers
GetCurrentDirectoryA
GetLastError
GetFullPathNameA
RtlUnwind
HeapAlloc
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
FindClose
CloseHandle
WriteFile
CreateFileA
SetStdHandle
WideCharToMultiByte
VirtualAlloc
GetProcAddress
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStdHandle
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
LCMapStringA
LCMapStringW
SetFilePointer

user32

MessageBoxA
ShowCursor
SetWindowTextA
SetDlgItemTextA
SendMessageA
CreateDialogParamA
LoadIconA
SetClassLongA
GetDlgItem
PeekMessageA
TranslateMessage
DispatchMessageA
IsDialogMessageA
DestroyWindow
PostQuitMessage
GetDlgItemInt
SendDlgItemMessageA
SetDlgItemInt

dsound

DirectSoundCreate

winmm

timeGetTime

comctl32

ord17

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff04456315c614f3abf7b9157c9711c8

Headers

File Characteristics

Imports

kernel32

user32

dsound

winmm

comctl32

Sections

.text Size: 63KB - Virtual size: 63KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 20KB - Virtual size: 45KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 63KB - Virtual size: 63KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 20KB - Virtual size: 45KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 2KB