cc35d45c3b68622b790ba57d2c43371a

Sharing

Copy URL Twitter E-mail

General

Target

cc35d45c3b68622b790ba57d2c43371a
Size

491KB
MD5

cc35d45c3b68622b790ba57d2c43371a
SHA1

8b2691e1f58c2728629c5f9157c74b4c83796354
SHA256

ad66659f742aaa026b58cb0e5d8e07d38c02878d8833e955da010070d922c431
SHA512

c801e99ece92c2a5ed14b621734c6ed6f415e19929bd27350f731eff18f81905cbbaab2f6ec06eb3038954464eccb44323fb2cbe7eec18d8d726ff20f9082d6b
SSDEEP

12288:twRO/aDLApr4Ly03orgW9RqD97VZb4Vur0:tZCw46rgWRc7nbr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc35d45c3b68622b790ba57d2c43371a

Files

cc35d45c3b68622b790ba57d2c43371a
.exe windows:4 windows x86 arch:x86

8e4eca82d50f2b08a617844155829c73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

gdi32

CreateDIBitmap
SetMapMode
GetPixel
GetCharWidthW
GetEnhMetaFilePaletteEntries
GetColorSpace
RectInRegion

shell32

SHBrowseForFolderW
FreeIconList
SheGetDirA
ShellExecuteA
SHFileOperationA

user32

RegisterClassExA
SetWindowPos
RegisterClassA
ExcludeUpdateRgn
SetWindowPlacement
GetDoubleClickTime
wsprintfW
ReplyMessage
MapWindowPoints
AnimateWindow
GetThreadDesktop
DefWindowProcW
SwapMouseButton
FreeDDElParam
GetClipboardOwner
DdeFreeDataHandle
GetClassLongA

comctl32

InitCommonControlsEx

kernel32

GetModuleHandleA
SetStdHandle
TerminateProcess
GetPrivateProfileSectionA
InterlockedCompareExchange
OpenMutexA
SetEnvironmentVariableA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentThread
LCMapStringW
TlsFree
GetStartupInfoW
GetCurrencyFormatA
InterlockedDecrement
GetSystemTimeAdjustment
GetCurrentProcessId
SetFilePointer
WriteFile
UnhandledExceptionFilter
GetVersion
GetFileType
GetLastError
GetCurrentProcess
HeapDestroy
InterlockedIncrement
VirtualFree
HeapCreate
WideCharToMultiByte
LCMapStringA
GetStartupInfoA
TlsAlloc
IsValidLocale
GetNamedPipeHandleStateW
GetModuleFileNameA
EnterCriticalSection
CompareStringW
ExitProcess
VirtualQuery
HeapReAlloc
VirtualQueryEx
GetCPInfo
SetVolumeLabelA
GetStringTypeA
LoadLibraryA
GetStdHandle
GetLocalTime
InitializeCriticalSection
GetSystemTime
FindResourceA
GetTickCount
LeaveCriticalSection
lstrcmpiW
MultiByteToWideChar
GetEnvironmentStrings
ReadFile
HeapAlloc
FlushFileBuffers
TlsGetValue
RtlUnwind
FreeEnvironmentStringsW
GetDiskFreeSpaceExA
FreeEnvironmentStringsA
GetStringTypeW
InterlockedExchange
SetHandleCount
HeapFree
SetLastError
GetCommandLineA
CreateMutexA
CompareStringA
DeleteCriticalSection
GetCommandLineW
GetModuleFileNameW
GetTimeZoneInformation
GetProcAddress
IsBadWritePtr
VirtualAlloc
GetSystemTimeAsFileTime
TlsSetValue
GetEnvironmentStringsW
CloseHandle
GetProcessShutdownParameters

wininet

CreateUrlCacheEntryW
RunOnceUrlCache
InternetSetOptionA
GopherGetLocatorTypeW
InternetAlgIdToStringA
GetUrlCacheEntryInfoExW

Sections

.text
Size: 326KB - Virtual size: 325KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e4eca82d50f2b08a617844155829c73

Headers

File Characteristics

PDB Paths

Imports

gdi32

shell32

user32

comctl32

kernel32

wininet

Sections

.text Size: 326KB - Virtual size: 325KB

.rdata Size: 38KB - Virtual size: 55KB

.data Size: 105KB - Virtual size: 105KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 326KB - Virtual size: 325KB

.rdata
Size: 38KB - Virtual size: 55KB

.data
Size: 105KB - Virtual size: 105KB

.rsrc
Size: 21KB - Virtual size: 20KB