c1d2f27d5e52b9a22a4e1c98dba1ae785fe35fe1978962debf1c99958328e5f2

Sharing

Copy URL Twitter E-mail

General

Target

c1d2f27d5e52b9a22a4e1c98dba1ae785fe35fe1978962debf1c99958328e5f2
Size

415KB
MD5

520bf08b27ce71dc51a24e5be891af34
SHA1

64f8969404a7733232cc30d7658891b8443037f4
SHA256

c1d2f27d5e52b9a22a4e1c98dba1ae785fe35fe1978962debf1c99958328e5f2
SHA512

f0a094b313dba35ee5de3ac3827607512070cee1e0638712ca7e633a7f5ea00c22f521ff019fe1b2ed46031fd90fc967866d89bf418da29ddaad738d9beadb65
SSDEEP

12288:zk/41taQlt5INNLgRSEAnMMMMMMMMMMMM:zPt/zsgRSEKMMMMMMMMMMMM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1d2f27d5e52b9a22a4e1c98dba1ae785fe35fe1978962debf1c99958328e5f2

Files

c1d2f27d5e52b9a22a4e1c98dba1ae785fe35fe1978962debf1c99958328e5f2
.exe windows:1 windows x86 arch:x86

98bcc745aba71ae984f0d310d471fa48

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

wsprintfA
AppendMenuA
BeginPaint
BringWindowToTop
CallWindowProcA
CheckMenuItem
ClientToScreen
CopyRect
CreateMenu
CreatePopupMenu
CreateWindowExA
DdeClientTransaction
DdeConnect
DdeCreateDataHandle
DdeCreateStringHandleA
DdeFreeStringHandle
DdeInitializeA
DdeUninitialize
DefWindowProcA
DeleteMenu
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawMenuBar
DrawTextA
EnableMenuItem
EnableWindow
EndDialog
EndPaint
EnumChildWindows
FillRect
FindWindowA
FrameRect
GetCapture
GetClassNameA
GetClientRect
GetDC
GetDlgCtrlID
GetDlgItem
GetFocus
GetKeyState
GetMenuItemCount
GetMenuState
GetMenuStringA
GetMenu
GetMessageA
GetParent
GetSubMenu
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRect
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindow
GetWindowTextA
GetWindowTextLengthA
InflateRect
InsertMenuA
IntersectRect
InvalidateRect
IsChild
IsIconic
IsRectEmpty
IsWindow
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadMenuA
LoadStringA
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RegisterClassA
ReleaseCapture
ReleaseDC
ScrollWindow
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetCursor
SetDlgItemTextA
SetDoubleClickTime
SetFocus
SetMenu
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowTextA
ShowOwnedPopups
ShowWindow
TrackPopupMenu
TranslateMessage
UnregisterClassA
UpdateWindow
WindowFromPoint

ole32

CoCreateInstance
CoInitialize
CoUninitialize

advapi32

CloseServiceHandle
CreateServiceA
GetUserNameA
OpenSCManagerA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumValueA
RegFlushKey
RegOpenKeyA
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA

kernel32

CloseHandle
CreatePipe
CreateProcessA
DuplicateHandle
EnterCriticalSection
FreeLibrary
GetCPInfo
GetCurrentProcess
GetDiskFreeSpaceA
GetDriveTypeA
GetExitCodeProcess
GetLastError
GetPrivateProfileStringA
GetStdHandle
GetSystemDirectoryA
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalLock
GlobalReAlloc
GlobalUnlock
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
SetErrorMode
Sleep
WaitForSingleObject
WinExec
WriteFile
WritePrivateProfileStringA
lstrcmpiA
CloseHandle
CreateDirectoryA
CreateEventA
CreateFileA
CreateMutexA
CreateProcessA
CreateThread
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
GetCPInfo
GetCommandLineA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetExitCodeProcess
GetFileAttributesA
GetFileInformationByHandle
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStdHandle
GetTimeZoneInformation
GetVersion
LoadLibraryA
LocalFileTimeToFileTime
MoveFileA
ReadConsoleInputA
ReadFile
ReleaseMutex
RemoveDirectoryA
RtlUnwind
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WriteConsoleA
WriteFile

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectA
CreatePatternBrush
CreatePen
CreateSolidBrush
DPtoLP
DeleteDC
DeleteObject
GetBkColor
GetCurrentPositionEx
GetDeviceCaps
GetNearestColor
GetObjectA
GetStockObject
GetTextExtentPointA
GetTextMetricsA
LineTo
MoveToEx
Rectangle
SelectObject
SetBkColor
SetROP2
SetStretchBltMode
SetTextColor
StretchBlt
TextOutA
UnrealizeObject

comdlg32

ChooseColorA
ChooseFontA

Exports

Exports

_EnumFunc@8
_GUIDialogFunc@16
_GUIEditFunc@16
_GUIEnumFunc@8
_GUIGroupBoxFunc@16
_GUIInitDialogFunc@16
_GUITimerProc@16
_GUIWindowProc@16
_InsertResDlgCntlFunc@8
_StatusWndCallback@16
_ToolBarWndProc@16

Sections

BEGTEXT
Size: 190KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DGROUP
Size: 22KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 19KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 154KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98bcc745aba71ae984f0d310d471fa48

Headers

File Characteristics

Imports

user32

ole32

advapi32

kernel32

gdi32

comdlg32

Exports

Exports

Sections

BEGTEXT Size: 190KB - Virtual size:

DGROUP Size: 22KB - Virtual size:

.bss Size: 19KB - Virtual size:

.idata Size: 7KB - Virtual size:

.edata Size: 512B - Virtual size:

.reloc Size: 11KB - Virtual size:

.rsrc Size: 154KB - Virtual size:

BEGTEXT
Size: 190KB - Virtual size:

DGROUP
Size: 22KB - Virtual size:

.bss
Size: 19KB - Virtual size:

.idata
Size: 7KB - Virtual size:

.edata
Size: 512B - Virtual size:

.reloc
Size: 11KB - Virtual size:

.rsrc
Size: 154KB - Virtual size: