9cdad6fa16e9cd279d02ca2ef36aa2002bbddd4f3b7fd9d856bc4297d958d69f

General

Target

9cdad6fa16e9cd279d02ca2ef36aa2002bbddd4f3b7fd9d856bc4297d958d69f
Size

60KB
MD5

052e0045d9c340e7de9baa6443ae6a11
SHA1

c2dccfe4e93c3ad5a1e73a0bf39a122a98b4b0ae
SHA256

9cdad6fa16e9cd279d02ca2ef36aa2002bbddd4f3b7fd9d856bc4297d958d69f
SHA512

a5e44312adb9743d5ad8f4bf98dff130acda0cceb2643aa5ac84e0e4890d6c38f30bfaca0220e1b1b1353eb95bcb7e8dcff4621991e694334793daa309fe570d
SSDEEP

1536:hidP+WJgXRbHeE1PnBovfDfPfkYVEIrplH:hwP+WJyHRAdVvplH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9cdad6fa16e9cd279d02ca2ef36aa2002bbddd4f3b7fd9d856bc4297d958d69f

Files

9cdad6fa16e9cd279d02ca2ef36aa2002bbddd4f3b7fd9d856bc4297d958d69f
.exe windows:4 windows x86 arch:x86

7f779f935a0340967c08f395a6396053

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rapi

CeCreateFile
CeRapiUninit
CeRapiGetError
CeGetLastError
CeRapiInit
CeRapiInvoke
CeWriteFile
CeCloseHandle
CeGetFileAttributes

user32

MessageBoxA

kernel32

GetFileType
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedExchange
GetOEMCP
GetACP
LoadLibraryA
LocalAlloc
GetModuleFileNameA
CloseHandle
ReadFile
CreateFileA
FindClose
FindFirstFileA
ReleaseMutex
WaitForSingleObject
OutputDebugStringA
LocalFree
FormatMessageA
SetLastError
GetLastError
GetVersionExA
RtlUnwind
RaiseException
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetCommandLineA
HeapAlloc
HeapFree
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetStartupInfoA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
HeapSize
SetFilePointer
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetCPInfo
VirtualProtect
GetSystemInfo
VirtualQuery

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7f779f935a0340967c08f395a6396053

Headers

File Characteristics

Imports

rapi

user32

kernel32

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 8KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 8KB