ccde000094677ddd498976e9a729b94b

Sharing

Copy URL Twitter E-mail

General

Target

ccde000094677ddd498976e9a729b94b
Size

101KB
MD5

ccde000094677ddd498976e9a729b94b
SHA1

199a574e40e1deecf1e25a1d3cf33618a253a502
SHA256

d475164fa99c23989eaee8b53528cec6940f266857b33c63af02a82cd00ac9d5
SHA512

02df94af9314dc9338668feb4e4d09867dac4bda466d92853a363036f3181861c36a1ea6d91d10e823840a158364571460edfeb53726a5acb26bffb3af619561
SSDEEP

1536:0wWLNiGR1tN5gqt9RMscA4D0DqokB6gz47Wgs0LZ8LzdqPH4:xGR1NgqRcAehRgsIgzdqg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccde000094677ddd498976e9a729b94b

Files

ccde000094677ddd498976e9a729b94b
.exe windows:4 windows x86 arch:x86

9ebce803811a8492073923e35733c9ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegLoadKeyA

gdi32

GetDIBits
CreatePenIndirect
CreateFontIndirectA
GetPixel
SelectObject
GetCurrentPositionEx
SaveDC
CopyEnhMetaFileA

kernel32

LocalAlloc
FreeLibrary
GlobalFindAtomA
ExitProcess
VirtualAllocEx
GetProcAddress
LoadLibraryExA
ExitThread
GetModuleHandleA
GetFileSize
GetLocalTime

user32

DispatchMessageA
ChildWindowFromPoint
InsertMenuA
GetClientRect
InvalidateRect
GetScrollRange
GetCursor
SetTimer
GetWindowThreadProcessId
SetForegroundWindow
IsWindowEnabled
TranslateMDISysAccel
SendMessageW
CheckMenuItem
GetCapture
CreateWindowExA
ClientToScreen
DefWindowProcA
IsDialogMessageA
DestroyIcon
GetMessagePos
GetKeyboardLayoutNameA
UnregisterClassA
OpenClipboard
IntersectRect
GetKeyState
CallNextHookEx
WaitMessage
TranslateMessage
GetWindowDC
PostQuitMessage
GetKeyboardState
SystemParametersInfoA
SetWindowPlacement
GetDC
CharNextW
ScrollWindow
EnableWindow
PeekMessageW
EmptyClipboard
LoadIconA
SetWindowsHookExA
SetParent
SetPropA
SetCursor
ShowScrollBar
GetWindowRect
MessageBeep
SetClassLongA
FindWindowA
AdjustWindowRectEx
IsIconic
GetPropA
PeekMessageA
GetClassLongA
GetMenuState
GetFocus
TrackPopupMenu
RegisterClipboardFormatA
CreateMenu
DrawIconEx
ReleaseCapture
UnhookWindowsHookEx
CharLowerA
EnableMenuItem
CharLowerBuffA
ReleaseDC
EqualRect
GetKeyNameTextA
ActivateKeyboardLayout
DrawFrameControl
SetFocus
GetSystemMetrics
GetSystemMenu
SetScrollRange
IsChild
MoveWindow
OffsetRect
InsertMenuItemA
GetTopWindow
RemovePropA
RegisterWindowMessageA
KillTimer
EnumThreadWindows
IsWindow
SetRect
GetWindowLongW
DeleteMenu
GetMenuItemCount
DrawTextA
RemoveMenu
GetSubMenu
GetLastActivePopup
EndPaint
GetMenuItemInfoA
SetWindowLongA
GetDlgItem
FrameRect
SetScrollInfo
GetIconInfo
SetCapture
EnableScrollBar
EnumWindows
LoadBitmapA
GetForegroundWindow
MapWindowPoints
PostMessageA
GetKeyboardLayoutList
CharNextA
ShowOwnedPopups
InflateRect
GetMenuStringA
DrawIcon
ShowWindow
GetSysColorBrush
ScreenToClient
DestroyWindow
DestroyMenu
GetActiveWindow

oleaut32

SafeArrayUnaccessData
SysFreeString
SafeArrayGetElement
VariantCopyInd
SysReAllocStringLen

shlwapi

SHStrDupA
SHSetValueA
SHGetValueA

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA

shell32

SHGetDiskFreeSpaceA

msvcrt

log
calloc
strncmp
memcpy

version

GetFileVersionInfoSizeA
VerQueryValueA
VerInstallFileA

ole32

CoReleaseMarshalData
CreateStreamOnHGlobal
CoUninitialize
CoFreeUnusedLibraries
CreateOleAdviseHolder
MkParseDisplayName
CreateBindCtx
OleRun
StringFromIID
CoRegisterClassObject

comctl32

ImageList_Destroy
ImageList_Read
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Add
ImageList_Draw
ImageList_Create
ImageList_Write

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 1024B - Virtual size: 599B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ebce803811a8492073923e35733c9ea

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

oleaut32

shlwapi

comdlg32

shell32

msvcrt

version

ole32

comctl32

Sections

.text Size: 30KB - Virtual size: 29KB

.bss Size: 1024B - Virtual size: 599B

.idata Size: 68KB - Virtual size: 68KB

.text
Size: 30KB - Virtual size: 29KB

.bss
Size: 1024B - Virtual size: 599B

.idata
Size: 68KB - Virtual size: 68KB