cbc5c200be7e22e511df8bfb5e75f784

Sharing

Copy URL Twitter E-mail

General

Target

cbc5c200be7e22e511df8bfb5e75f784
Size

528KB
MD5

cbc5c200be7e22e511df8bfb5e75f784
SHA1

c7781de46a8015d4d6606900c8080b86552da154
SHA256

07942e7b23181f9bd613f3f93e93f1cb54f72624e801eb49328ff4268f7a7f5e
SHA512

1596e931107a711ab81120e3e0a2a2438cc1aec71067d77c98fe2ae5ecd2b4a096a30fba2d2f82214fd8541c1154076c48f75f74cfd824a0f7b92a54424f010b
SSDEEP

6144:0194QA1i94QZOO94QWLyEDw94QBp94QtbHyv94QBIEQ94Qi8v94QzYTkKSqMvc/L:e4a4e/4dLyl4cj4F4T4h814/13Qu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbc5c200be7e22e511df8bfb5e75f784

Files

cbc5c200be7e22e511df8bfb5e75f784
.exe windows:5 windows x86 arch:x86

ac17994fa31be8bb830971ecebca6a1d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

msacm32

acmMetrics

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__setusermatherr
memset

kernel32

GetStartupInfoA
GetModuleHandleA
SetErrorMode
GetCommandLineA
LoadLibraryA
InitializeCriticalSection
GetVersion
WriteFile
WriteConsoleW
GetACP
ExitProcess
CreateDirectoryW
CreateFileW
CreateThread
DeleteCriticalSection
DeleteFileW
DosDateTimeToFileTime
EnterCriticalSection
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
GetCommandLineW
GetComputerNameW
GetConsoleCP
GetConsoleMode
GetCPInfo
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceExW
GetDriveTypeW
GetEnvironmentStringsW
GetFileTime
GetFileType
GetLastError
GetLocalTime
GetLogicalDrives
GetModuleFileNameW
GetModuleHandleW
GetOEMCP
GetPrivateProfileIntW
GetPrivateProfileStringW
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTempPathW
GetTickCount
GetVolumeInformationW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedIncrement
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
LoadLibraryW
LocalFileTimeToFileTime
MoveFileW
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
RemoveDirectoryW
SetEndOfFile
SetFileTime
SetLastError
SetStdHandle
WideCharToMultiByte
Sleep
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
SetUnhandledExceptionFilter

user32

FindWindowW
GetAsyncKeyState
GetCursorPos
GetDlgItemInt
GetDlgItemTextW
GetMenuItemCount
GetMessageW
GetSubMenu
GetWindowRect
GetWindowTextW
IsDialogMessageW
KillTimer
LoadAcceleratorsW
LoadImageW
LoadMenuW
LoadStringW
MapWindowPoints
MessageBoxW
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
SendDlgItemMessageW
SendMessageW
SetActiveWindow
EndDialog
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemInfoW
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
SystemParametersInfoW
TrackPopupMenuEx
TranslateAcceleratorW
GetDesktopWindow
DialogBoxParamW
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DefWindowProcW
CreateWindowExW
CreatePopupMenu
CreateDialogParamW
GetWindowLongW
EnableWindow
EnableMenuItem
SetDlgItemInt
DispatchMessageW

gdi32

GetStockObject
GetObjectW
SetTextColor
DeleteObject

advapi32

RegSetValueExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
RegQueryValueExW

shell32

ShellExecuteW

oleaut32

GetErrorInfo

Sections

.text
Size: 424KB - Virtual size: 422KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lic0
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac17994fa31be8bb830971ecebca6a1d

Headers

File Characteristics

Imports

msacm32

msvcrt

kernel32

user32

gdi32

advapi32

shell32

oleaut32

Sections

.text Size: 424KB - Virtual size: 422KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 12.1MB

.data1 Size: 4KB - Virtual size: 648B

.lic0 Size: 8KB - Virtual size: 4KB

.rsrc Size: 76KB - Virtual size: 73KB

.text
Size: 424KB - Virtual size: 422KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 12.1MB

.data1
Size: 4KB - Virtual size: 648B

.lic0
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 76KB - Virtual size: 73KB