19c4b9bc608d537cd9ce677c1bf3fc1fd171bd33ccfa323f8bf0de2a8c72022b

Sharing

Copy URL Twitter E-mail

General

Target

19c4b9bc608d537cd9ce677c1bf3fc1fd171bd33ccfa323f8bf0de2a8c72022b
Size

1.1MB
MD5

2806f7adc82cec8c6ff2798c1c860b0f
SHA1

c62657cd70b52d2d0b08893bc72ab86cee1d67d2
SHA256

19c4b9bc608d537cd9ce677c1bf3fc1fd171bd33ccfa323f8bf0de2a8c72022b
SHA512

461b9ecd7d4ae47f7f32fb8de22fc0974d18cdab7b278eed44d157c20d9a6bff2de645a7ff80232cbc8f2d48169802e0e876cc473a9fc61e1acf230906114263
SSDEEP

24576:XVf1lYHXWY1Z6UxS1v5ECtICLETOcxIGVYwzkHTVyZnuM:lf1lYG66lKVYwuTVyX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19c4b9bc608d537cd9ce677c1bf3fc1fd171bd33ccfa323f8bf0de2a8c72022b

Files

19c4b9bc608d537cd9ce677c1bf3fc1fd171bd33ccfa323f8bf0de2a8c72022b
.exe windows:4 windows x86 arch:x86

0e7f43393080b0e577979848ab4b328e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

InitCommonControls

gdi32

ChoosePixelFormat
GetDeviceCaps
GetDeviceGammaRamp
SetDeviceGammaRamp
SetPixelFormat
SwapBuffers

kernel32

AllocConsole
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeConsole
FreeLibrary
GetCommandLineA
GetConsoleScreenBufferInfo
GetLargestConsoleWindowSize
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetProcAddress
GetStartupInfoA
GetStdHandle
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatus
GlobalSize
GlobalUnlock
LoadLibraryA
MapViewOfFile
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleInputA
ReadConsoleOutputCharacterA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
SetEvent
SetUnhandledExceptionFilter
Sleep
UnmapViewOfFile
WaitForMultipleObjects
WriteConsoleInputA
WriteFile

msvcrt

_close
_dup
_lseek
_open
_read
_stricmp
_strnicmp
_unlink
_write
__getmainargs
__p__environ
__set_app_type
_cexit
_fileno
_findclose
_findfirst
_findnext
_fmode
_fpreset
_iob
_mkdir
_setjmp
_setmode
_vsnprintf
atan
atan2
atexit
atof
atoi
ceil
exit
exp
floor
free
isalpha
isdigit
isupper
localtime
log
longjmp
malloc
memcpy
memmove
memset
pow
rand
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strftime
strncmp
strncpy
strrchr
strstr
strtok
strtol
tan
time
tolower
toupper

user32

AdjustWindowRectEx
ChangeDisplaySettingsA
ClipCursor
CloseClipboard
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
GetClipboardData
GetCursorPos
GetDC
GetKeyboardState
GetMessageA
GetSystemMetrics
LoadCursorA
LoadIconA
MessageBoxA
MoveWindow
OpenClipboard
PeekMessageA
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SetCapture
SetCursorPos
SetForegroundWindow
SetWindowPos
ShowCursor
ShowWindow
SystemParametersInfoA
ToAscii
TranslateMessage
UpdateWindow

winmm

joyGetDevCapsA
joyGetNumDevs
joyGetPosEx
mciSendCommandA
timeBeginPeriod
timeGetTime
waveOutClose
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

wsock32

WSACleanup
WSAGetLastError
WSAStartup
bind
closesocket
gethostbyname
getsockname
htons
ioctlsocket
ntohs
recvfrom
sendto
setsockopt
socket

Sections

.text
Size: 973KB - Virtual size: 972KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 45.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0e7f43393080b0e577979848ab4b328e

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

msvcrt

user32

winmm

wsock32

Sections

.text Size: 973KB - Virtual size: 972KB

.data Size: 62KB - Virtual size: 61KB

.bss Size: - Virtual size: 45.6MB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 65KB - Virtual size: 65KB

.text
Size: 973KB - Virtual size: 972KB

.data
Size: 62KB - Virtual size: 61KB

.bss
Size: - Virtual size: 45.6MB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 65KB - Virtual size: 65KB