cd7487d733d153fbeea2a8c1f86e944f9e3add0ca7d96f9d35a112e04ceef18b

Sharing

Copy URL Twitter E-mail

General

Target

cd7487d733d153fbeea2a8c1f86e944f9e3add0ca7d96f9d35a112e04ceef18b
Size

15.6MB
MD5

62aa34e42c0e9eb864a23d53263046f2
SHA1

9c2724b62cce4f9c7110e9a6303e8de1ddf08931
SHA256

cd7487d733d153fbeea2a8c1f86e944f9e3add0ca7d96f9d35a112e04ceef18b
SHA512

ceb07ce364e7cf9b9401cc9f8facf1954795064ce5970a5baec6da33a7e3316524c255f755ef76467b6698988496cc00855d479d7d0432d25d26df585dd68fcd
SSDEEP

393216:4nb/A9hpLRdF8JxJAXa9dkLsgr8tDSJUoM:4b/MhlFcxP9dkQgr89SaoM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd7487d733d153fbeea2a8c1f86e944f9e3add0ca7d96f9d35a112e04ceef18b

Files

cd7487d733d153fbeea2a8c1f86e944f9e3add0ca7d96f9d35a112e04ceef18b
.exe windows:4 windows x86 arch:x86

00c4c2273c40014297accfe3de28b974

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

oleaut32

SysFreeString
GetErrorInfo
SafeArrayPtrOfIndex

advapi32

RegQueryValueExA
RegSetValueExA

user32

GetKeyboardType
CreateWindowExA

kernel32

GetACP
TlsSetValue
lstrlenW
Sleep

gdi32

UnrealizeObject
GetRandomRgn

version

VerQueryValueA

mpr

WNetGetConnectionA

ole32

CreateStreamOnHGlobal
IsEqualGUID

comctl32

_TrackMouseEvent

shell32

ShellExecuteA
SHGetSpecialFolderLocation

comdlg32

GetOpenFileNameA

oleacc

LresultFromObject

winmm

timeGetTime

wsock32

WSACleanup

gdiplus

GdipCreateHBITMAPFromBitmap

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 2.0MB - Virtual size: 12.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 542KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

00c4c2273c40014297accfe3de28b974

Headers

File Characteristics

Imports

oleaut32

advapi32

user32

kernel32

gdi32

version

mpr

ole32

comctl32

shell32

comdlg32

oleacc

winmm

wsock32

gdiplus

msvcrt

iphlpapi

psapi

Sections

.text Size: 2.0MB - Virtual size: 12.7MB

.sedata Size: 1.1MB - Virtual size: 1.1MB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 542KB - Virtual size: 544KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 2.0MB - Virtual size: 12.7MB

.sedata
Size: 1.1MB - Virtual size: 1.1MB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 542KB - Virtual size: 544KB

.sedata
Size: 4KB - Virtual size: 4KB