ddfd3d3de5c151676d7adb0a46788bff

Sharing

Copy URL Twitter E-mail

General

Target

ddfd3d3de5c151676d7adb0a46788bff
Size

4.3MB
MD5

ddfd3d3de5c151676d7adb0a46788bff
SHA1

dbc091b9f4ac6237d7b44f19460e075cd72dcb37
SHA256

5f055c487bacaa9fb14b3887b81dd066d80ac1790932de7428fc3c78e1e6db45
SHA512

f011e52910a1d912eefd9011fb60efbeafc408f7b3b41ca9384a8d775ae878fcabdf1941b736c41b1757e0bf218ed838c25e34f4297ba4fe3d23f9801d1c967f
SSDEEP

98304:boejTXKoaUdt5LcTwS/DtEzytqEU+QRur0e36LNquO4iXYvIfjZTtx:EejTXKoaUdt5LcTFDuzeUnkr0Jqp9jbx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cvery.com/aspcodeprint.exe

Files

ddfd3d3de5c151676d7adb0a46788bff
.rar
cvery.com/aspcodeprint.exe
.exe windows:4 windows x86 arch:x86

4204e1fe9e2e0a7f6bec612446ce171b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
CreateDirectoryA
GetPrivateProfileStringA
SetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
WriteFile
DosDateTimeToFileTime
GetProcAddress
DeleteFileA
FreeLibrary
GetTempFileNameA
LoadLibraryA
GetTempPathA
GetSystemDirectoryA
FormatMessageA
lstrcmpA
lstrcpynA
GetLastError
ReadFile
FindResourceA
CompareStringA
CreateProcessA
WaitForSingleObject
GetStartupInfoA
RemoveDirectoryA
FindNextFileA
ExitProcess
MulDiv
GetSystemDefaultLCID
GetModuleFileNameA
lstrcatA
GetFileAttributesA
CreateFileA
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
Sleep
GetDiskFreeSpaceA
FindFirstFileA
FindClose
lstrcpyA
lstrlenA
LockResource
LoadResource
GetWindowsDirectoryA
CloseHandle
SetStdHandle
LCMapStringW
LCMapStringA
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
FlushFileBuffers
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
WideCharToMultiByte
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetModuleHandleA
HeapFree
HeapAlloc

user32

SendMessageA
TranslateMessage
MessageBoxA
wsprintfA
GetWindowLongA
GetParent
SetWindowTextA
GetWindowTextA
GetWindow
SetDlgItemTextA
EndDialog
SendDlgItemMessageA
CharNextA
DialogBoxParamA
GetClassNameA
IsCharAlphaA
GetDesktopWindow
GetDlgItemTextA
KillTimer
EnableWindow
SetTimer
PostMessageA
SetFocus
CreateDialogParamA
DestroyWindow
GetDlgItem
GetDC
ReleaseDC
ScreenToClient
SetWindowLongA
CreateWindowExA
SystemParametersInfoA
GetClientRect
MapWindowPoints
SetWindowPos
LoadStringA
MessageBeep
GetSysColor
DispatchMessageA
PeekMessageA
GetWindowRect

gdi32

CreateFontIndirectA
TextOutA
SetTextColor
SelectObject
SetBkMode
GetTextExtentPointA
GetDeviceCaps
GetObjectA
DeleteObject

comctl32

ord17
PropertySheetA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA

lz32

LZOpenFileA
LZCopy
LZClose

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cvery.com/下载说明.htm
.html .js polyglot
cvery.com/非常世纪资源网.url
.url

Sharing

General

Malware Config

Signatures

Files

4204e1fe9e2e0a7f6bec612446ce171b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

advapi32

shell32

lz32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 12KB - Virtual size: 27KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 41KB - Virtual size: 40KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 27KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 41KB - Virtual size: 40KB