cbb60ffbd1bae1cdfc37e4157a19731b

General

Target

cbb60ffbd1bae1cdfc37e4157a19731b
Size

44KB
MD5

cbb60ffbd1bae1cdfc37e4157a19731b
SHA1

52161602b71afeadb8b0f0e81354bcdd6e2734f0
SHA256

33124123bd092c96580a5ccbcb5babcf953c2e44eebd8190b5de93a44f0349f0
SHA512

69ecd95fd8a19eba261dca2488d0f3075bae6e0ce08ccf094cb17cd28ce15e984b513e583ce5b9ad56e97a40aa7811098f9094f0f301f3c169c8e55e26e80312
SSDEEP

768:Vv8o4rVu1uB2MBjZ+3540QrwBgD0M/PsDL5PVSEFm+YnDTxwcdwi7:VvxG9B2uZIHQrwBgb/0DL9TF2J57

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbb60ffbd1bae1cdfc37e4157a19731b

Files

cbb60ffbd1bae1cdfc37e4157a19731b
.exe windows:4 windows x86 arch:x86

453ab3303eb020c4c349b8d49bafb356

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualProtect
GetThreadTimes
GetUserDefaultUILanguage
EnterCriticalSection
TlsFree
GetConsoleAliasesLengthW
PrivMoveFileIdentityW
EnumUILanguagesA
SetThreadPriority
GetProcessShutdownParameters
MoveFileWithProgressW
FoldStringA
GetSystemTimeAsFileTime
GetExitCodeThread
ReadConsoleInputW
FindNextVolumeMountPointW
GetProcessPriorityBoost

user32

DdeCreateStringHandleA
IsDlgButtonChecked
SetInternalWindowPos
DrawTextW
GetAncestor
InvalidateRect
VkKeyScanA
GetWindowTextW
GetKeyNameTextA
CharToOemW
ToUnicodeEx
RegisterClassW
GetAsyncKeyState
IsCharAlphaNumericA
DestroyMenu
PostMessageA
InsertMenuItemW
GetCursorInfo
EndDeferWindowPos
ChangeDisplaySettingsExW
DestroyAcceleratorTable
SetDlgItemTextW
ChangeClipboardChain

gdi32

AnimatePalette
GdiCreateLocalEnhMetaFile
GdiEntry7
DeleteObject
SetDCBrushColor
GetFontUnicodeRanges
GdiEntry10
TextOutW
XFORMOBJ_iGetXform
SetMapMode

comdlg32

ReplaceTextW
ChooseColorA
PrintDlgExA
FindTextW
ChooseColorW
dwLBSubclass
ChooseFontW
FindTextA
GetOpenFileNameA
PrintDlgExW
PrintDlgW
PageSetupDlgA
LoadAlterBitmap
ReplaceTextA
Ssync_ANSI_UNICODE_Struct_For_WOW

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

453ab3303eb020c4c349b8d49bafb356

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: 2KB - Virtual size: 4KB