4ce14b498d09c1040ad95a624e55f45d557e9e88dde4d44be294d858782c668f

Sharing

Copy URL

Twitter E-mail

General

Target

4ce14b498d09c1040ad95a624e55f45d557e9e88dde4d44be294d858782c668f
Size

4.1MB
MD5

7114560c134dbf491c7141bf75d6604a
SHA1

d2218ce873bf378a7a3977419970b3b8b9fc4264
SHA256

4ce14b498d09c1040ad95a624e55f45d557e9e88dde4d44be294d858782c668f
SHA512

40a1ef355095d497b0e8333ee8238df202a3516b25bded9808e0dc05c7f53aa5767ce4e63d070017711d210c26b3a88d751982a1d58964749109083547502d90
SSDEEP

98304:Az+kKWGxkTtDzA5LT0s9kxXglJIDzaCNjOL79bM2dSz:I+PWXtfAdTl9FlJIDznSL7hdS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ce14b498d09c1040ad95a624e55f45d557e9e88dde4d44be294d858782c668f

Files

4ce14b498d09c1040ad95a624e55f45d557e9e88dde4d44be294d858782c668f
.exe windows:5 windows x86 arch:x86

bbeae6f09219b9750e4da7c7ec042243

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
SetRectEmpty

kernel32

GetVersionExA
GetVersion
GetVersionExA
GetVersion
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

gdi32

CreateCompatibleDC
LineTo

gdiplus

GdipCreateFromHDC

ole32

CreateStreamOnHGlobal

imm32

ImmAssociateContext

shell32

SHAppBarMessage
SHGetSpecialFolderPathA

shlwapi

PathFileExistsA

winmm

PlaySoundA
midiStreamOut

ws2_32

closesocket

winspool.drv

OpenPrinterA

advapi32

RegCloseKey

oleaut32

LoadTypeLi

comctl32

ord17

comdlg32

GetSaveFileNameA

Sections

.text
Size: - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 617KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rRJ
Size: - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sHo
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.+EO
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbeae6f09219b9750e4da7c7ec042243

Headers

File Characteristics

Imports

user32

kernel32

gdi32

gdiplus

ole32

imm32

shell32

shlwapi

winmm

ws2_32

winspool.drv

advapi32

oleaut32

comctl32

comdlg32

Sections

.text Size: - Virtual size: 2.9MB

.rdata Size: - Virtual size: 540KB

.data Size: - Virtual size: 617KB

.rRJ Size: - Virtual size: 2.3MB

.sHo Size: 4KB - Virtual size: 3KB

.+EO Size: 4.1MB - Virtual size: 4.1MB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: - Virtual size: 2.9MB

.rdata
Size: - Virtual size: 540KB

.data
Size: - Virtual size: 617KB

.rRJ
Size: - Virtual size: 2.3MB

.sHo
Size: 4KB - Virtual size: 3KB

.+EO
Size: 4.1MB - Virtual size: 4.1MB

.rsrc
Size: 4KB - Virtual size: 2KB