cda94f0f9351ddb70e22af2c5b618f3f

Sharing

Copy URL Twitter E-mail

General

Target

cda94f0f9351ddb70e22af2c5b618f3f
Size

493KB
MD5

cda94f0f9351ddb70e22af2c5b618f3f
SHA1

5fe8ae1ccbed0937e0912e171a9521e429df2ba2
SHA256

5527e8295656e65211c714504858ca6608ca82efd3285541dab9a5b74663f57d
SHA512

fd2058313c9d21eaff53cb3d553a1d5366f53e17e364dfbe3a9b679ebf39e3932414ab037121d613d93c56d6d449d58da3be9132aa8f6490c991f33c884b3179
SSDEEP

6144:qunkflf0a6m4JHSlO7wDT9gCdY+Nny6uP7S+Mlkht6gvKO3aC2VXKc8Jbw2+fAdN:PnkdM7mCHynW96uP79qk6gvNaXKLfdv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cda94f0f9351ddb70e22af2c5b618f3f

Files

cda94f0f9351ddb70e22af2c5b618f3f
.exe windows:4 windows x86 arch:x86

d286ade9ed88d851c7d3904a3530a828

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

kernel32

SetFilePointer
HeapReAlloc
RtlUnwind
GetCurrentProcessId
GetACP
GetLocalTime
VirtualQuery
FlushFileBuffers
CompareStringW
IsBadWritePtr
GetCPInfo
GetVersion
GetCommandLineA
LCMapStringW
LeaveCriticalSection
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThread
FreeEnvironmentStringsW
GetLastError
CloseHandle
VirtualAlloc
GetSystemTime
SetEnvironmentVariableA
TlsSetValue
CompareStringA
GetStartupInfoA
OpenMutexA
GetOEMCP
TlsFree
InterlockedIncrement
GetEnvironmentStrings
SetVolumeLabelW
TerminateProcess
ReadFile
LCMapStringA
UnhandledExceptionFilter
GetCurrentProcess
WideCharToMultiByte
HeapDestroy
MultiByteToWideChar
HeapAlloc
VirtualFree
WriteFile
EnterCriticalSection
TlsAlloc
GetTimeZoneInformation
InterlockedExchange
InterlockedDecrement
FreeEnvironmentStringsA
SetStdHandle
GetEnvironmentStringsW
CreateMutexA
GetStringTypeW
GetFileType
GetProcAddress
HeapFree
LoadLibraryA
GetModuleFileNameA
GetStringTypeA
SetLastError
GetSystemTimeAsFileTime
GetModuleHandleA
TlsGetValue
GetCurrentThreadId
GetStdHandle
SetHandleCount
HeapCreate
AllocConsole
QueryPerformanceCounter
GetTickCount

user32

LoadBitmapA
SetMenuItemInfoW
DefDlgProcW
LoadImageA
MsgWaitForMultipleObjectsEx
SetKeyboardState
BroadcastSystemMessageA
DlgDirSelectExA
OpenIcon
DrawTextA
DrawStateW
PeekMessageW
DdeQueryNextServer
SetMenu
RegisterClassA
DdeAddData
RegisterClassExA
UnloadKeyboardLayout
ExitWindowsEx
EnumPropsW
GetScrollPos
SetDeskWallpaper
DragObject

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d286ade9ed88d851c7d3904a3530a828

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 4KB - Virtual size: 34KB

.data Size: 312KB - Virtual size: 311KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 4KB - Virtual size: 34KB

.data
Size: 312KB - Virtual size: 311KB

.rsrc
Size: 6KB - Virtual size: 5KB