ccc9f1c5c087535295051b0baa44945c | Triage

Sharing

General

Target

ccc9f1c5c087535295051b0baa44945c
Size

183KB
MD5

ccc9f1c5c087535295051b0baa44945c
SHA1

36dbea29185a56cbc31eb3858f20d40de45c76c4
SHA256

e25ad78cce9f907b69008d0caca09f65832c232e3465cd77766c35f7fb082888
SHA512

c837a2ec7e6c5194eedb0c80d4a2e4728184f5e1ab9c30a15d9d25b3f65b036f4eea6f2462bfa00347dc19d9147c3e96a027719ad039bc04b2739e7fccf44374
SSDEEP

3072:yPyKEJRh5WQTQ+3zj5SaOa9x2dPc4V7BHkODYG3e0uibNL0HsTADJR9mfOzS5KS+:iy59Tx3pbOa9wz7uODYL0BNLC/Fnwh+t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccc9f1c5c087535295051b0baa44945c

Files

ccc9f1c5c087535295051b0baa44945c
.exe windows:4 windows x86 arch:x86

94d59bd5124fcd0fa6a97d7fa39029eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

gdi32

GetDeviceCaps
GetTextMetricsA
SelectObject
GetTextExtentPointA
DeleteObject
CreateFontIndirectA

ole32

CoGetMalloc
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoTaskMemRealloc

kernel32

LeaveCriticalSection
lstrlenW
GetCPInfo
HeapSize
SetHandleCount
GetCPInfoExW
RaiseException
DeleteCriticalSection
GetEnvironmentStrings
InterlockedIncrement
UnhandledExceptionFilter
GetStartupInfoA
MultiByteToWideChar
GetACP
GetVersionExA
GetThreadLocale
FreeEnvironmentStringsW
InterlockedExchange
EnumResourceTypesA
TlsSetValue
FreeEnvironmentStringsA
TlsGetValue
WriteFile
WideCharToMultiByte
GetLocaleInfoA
LoadLibraryW
GetTickCount
GetFileType
GetOEMCP
InitializeCriticalSection
GetLastError
GetEnvironmentStringsW
EnterCriticalSection
QueryPerformanceCounter
GetStdHandle
GetCurrentProcessId

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ