cc10c6133fd5a974eb05e2f385694d21

General

Target

cc10c6133fd5a974eb05e2f385694d21
Size

65KB
MD5

cc10c6133fd5a974eb05e2f385694d21
SHA1

eea29906ba0cf8665f8a2df731bc172c1afcf17e
SHA256

a62ea951cc96e669033f2c1124cafb2213f73ecff471ce7031b5da16c9428c5f
SHA512

216e7b42685a03f9ee84513f06491aef73ebae829ac21b4c883af1455ff6df5140571bb09b7209f7a47857217c80722ebd6ab632ac5accceeca4f40b332874d2
SSDEEP

1536:AEd8yj0Uvj+wQQSq9rmGrX18Uvt36Hq2:92yj0Uvj+wxSqNmGrX1tvt36v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc10c6133fd5a974eb05e2f385694d21

Files

cc10c6133fd5a974eb05e2f385694d21
.dll windows:4 windows x86 arch:x86

a281a839b70f34f2e07069fa99972037

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

PeekMessageA
DispatchMessageA
TranslateMessage
SendMessageA
PostThreadMessageA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

msvcrt

??3@YAXPAX@Z
fwrite
_fdopen
_close
_open
sscanf
strrchr
fseek
memcpy
??2@YAPAXI@Z
rename
atoi
memset
puts
printf
_strset
strstr
free
malloc
ftell
calloc
_initterm
_adjust_fdiv
strncmp
strcmp
strncat
fgets
strchr
strncpy
atol
atof
qsort
strcat
fread
sprintf
strcpy
strlen
fopen
_snprintf
fputs
fclose
_stricmp
_strnicmp
_strlwr
remove
tolower

kernel32

ExitThread
WaitForSingleObject
GetModuleFileNameA
GetCurrentDirectoryA
MultiByteToWideChar
RemoveDirectoryA
FindNextFileA
CreateDirectoryA
Sleep
GetFullPathNameA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetFileAttributesA
GetModuleHandleA
GetProcAddress
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateFileA
GetFileSize
SetFilePointer
ReadFile
CloseHandle
GetSystemTime
CreateThread

Exports

Exports

AddReply
HandleEventHook
RegisterCallback

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a281a839b70f34f2e07069fa99972037

Headers

File Characteristics

Imports

user32

ole32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 7KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 7KB

.reloc
Size: 2KB - Virtual size: 2KB