0c2be343087ad00fe78a44055117319de44d4942fa3da2a7742af8acef2f796e

General

Target

0c2be343087ad00fe78a44055117319de44d4942fa3da2a7742af8acef2f796e
Size

242KB
MD5

fe874f617c06c9de4f191aa340e01b3f
SHA1

3edbe0d4001faf7d6cb521d2e0d64497b9c86898
SHA256

0c2be343087ad00fe78a44055117319de44d4942fa3da2a7742af8acef2f796e
SHA512

ab1ae3325488c933b15db3503f825f2c61fef2af24a4aef8940e8b62eafb574ae21a68df2f76de85ab3275b057c13f413d1bfeb81b251aa28022d062b945cb7d
SSDEEP

6144:oFFwzzz3cIfPK6MJA5swpD8VSgh6yPvU6/qqAfnb9BcVB:uFwzzYI3K6mAV6jFM6/j4b9uV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c2be343087ad00fe78a44055117319de44d4942fa3da2a7742af8acef2f796e

Files

0c2be343087ad00fe78a44055117319de44d4942fa3da2a7742af8acef2f796e
.exe windows:5 windows x86 arch:x86

48c6de59aef035f1324f44b16bc11828

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetCurrentObject
GetFontLanguageInfo
GetRandomRgn
GetClipRgn
GetDCBrushColor
GetPolyFillMode
GetTextCharsetInfo
GetMetaRgn
GetBkColor
GetObjectType
GetNearestPaletteIndex
GetFontUnicodeRanges
GetNearestColor
SetTextColor
GetDCPenColor
UpdateColors
GetTextColor
GetMapMode
GetPixelFormat
GetTextCharset
SetTextCharacterExtra

user32

GetMenuItemCount
CheckDlgButton
EnableWindow
GetDlgItem
SetFocus
SetWindowTextA
PostMessageA
SetDlgItemTextA
GetQueueStatus
IsWindowEnabled
GetWindowDC
DrawTextA
SendMessageA
GetDlgItemInt
RemovePropA
GetForegroundWindow
MoveWindow
GetDialogBaseUnits
GetMenu
BeginPaint
GetMenuState
GetWindowContextHelpId
GetMenuItemID
GetMenuContextHelpId
IsWindowUnicode
EndDialog
ShowWindow
GetCursor
GetScrollPos
EndPaint
GetDC
GetKeyboardType
LoadIconA
GetWindowLongA
GetInputState
WindowFromDC

kernel32

GetProcAddress
GetStdHandle
HeapAlloc
GetFileTime
GetCurrentThreadId
IsDebuggerPresent
GetCurrentProcessId
DeleteFileA
GlobalAlloc
GlobalSize
LocalFlags
GlobalFlags
GetCurrentProcess
GetTickCount
LockResource
GetVersion
GetModuleHandleA
SizeofResource
GetLastError
GlobalHandle
IsProcessorFeaturePresent
CloseHandle
GetProcessHeap
GetDriveTypeA
SetFilePointer
GetFileType
FindClose

Sections

.text
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48c6de59aef035f1324f44b16bc11828

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 193KB - Virtual size: 193KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 15KB - Virtual size: 129KB

.reloc Size: 30KB - Virtual size: 29KB

.text
Size: 193KB - Virtual size: 193KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 15KB - Virtual size: 129KB

.reloc
Size: 30KB - Virtual size: 29KB