ccc340e13a41943d883bceee80ad8adb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccc340e13a41943d883bceee80ad8adb
Size

372KB
MD5

ccc340e13a41943d883bceee80ad8adb
SHA1

3aedd856437e92c38395bb2701f1d2c568c9184c
SHA256

48c319c1fa9f36646f9cf97e2bda941b41218d40a43e59f2947a3e371f284d9c
SHA512

5a90c914ce4f288058f6cf1a397d41095d219f7a9f1e64dee472fdd05facac638641d2ca017c2f87584feadda8d786d14352259657f94c3174214837b443fc26
SSDEEP

6144:5JgT4UsxnVs3zjKFYUKGYyrBKcHnjYfIHTn1rrQzWmtXhzpJP/yDfMvCecDjd7mN:LgcZ6GMWTHnnzn1rrQ5tTIJp7mf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccc340e13a41943d883bceee80ad8adb

Files

ccc340e13a41943d883bceee80ad8adb
.exe windows:4 windows x86 arch:x86

aaf8e5d43c4ac94a365ab387c42ca2a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
FindVolumeClose
CloseHandle
VirtualAlloc
ResumeThread
GetDriveTypeW
WriteFile
FreeConsole
GetEnvironmentVariableA
InterlockedExchange
LocalSize
ResetEvent
GetExitCodeProcess
LocalFree
CreateThread
GetMailslotInfo
GetModuleHandleW
GetACP
GetPrivateProfileIntW
GlobalFree

user32

EndDialog
GetClientRect
CreateWindowExA
DrawStateW
DispatchMessageA
GetSysColor
GetClassInfoA
IsWindow
CallWindowProcW
SetFocus
GetCursorInfo
GetSysColor
GetKeyboardType

mstime

DllUnregisterServer
DllUnregisterServer
DllGetClassObject
DllUnregisterServer
DllUnregisterServer

hdwwiz.cpl

InstallNewDevice

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ