c939ce58930210541b8df8bf4cffaa30N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

c939ce58930210541b8df8bf4cffaa30N.exe
Size

292KB
MD5

c939ce58930210541b8df8bf4cffaa30
SHA1

b58fdca72e6dbaad8c9168b6b0b96d07ec9de354
SHA256

cdd62cc90f5cdb6412c6b2bf02c24bf3fd727d532e066e14459f9c3b86d7edec
SHA512

062f740c1445272c322d1ce8245a7caab0b7e803395a69683159844d970f434a9eca32e9754dc668543e4c212a3c182f5bc148f14e27031ae8157443f1aaecc3
SSDEEP

6144:wAvzg/hBtL0DaXI/BC1af2c6aRnqPRdEo1wU:IPtoaXkv2gy/1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c939ce58930210541b8df8bf4cffaa30N.exe

Files

c939ce58930210541b8df8bf4cffaa30N.exe
.exe windows:4 windows x86 arch:x86

a8797d980a3647a213ddf186d4c7a9dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleInputA
GetModuleHandleW
GetStringTypeA
IsValidCodePage
GetEnvironmentStringsW
GetProfileIntW
HeapAlloc
TlsSetValue
SetEnvironmentVariableA
InterlockedIncrement
SetUnhandledExceptionFilter
CreateEventA
GetCommandLineW
VirtualQueryEx
MultiByteToWideChar
SetConsoleCtrlHandler
WriteFile
GetLocaleInfoA
GetLocaleInfoW
SetPriorityClass
LCMapStringW
EnterCriticalSection
GetModuleFileNameW
EnumSystemLocalesA
SetEndOfFile
GetStartupInfoW
SetLastError
GetLastError
GetProcAddress
SetThreadIdealProcessor
GetFileType
TlsFree
lstrcmpiA
CompareStringW
GetConsoleCursorInfo
GetStdHandle
VirtualQuery
InterlockedDecrement
TlsAlloc
IsValidLocale
DuplicateHandle
GetTimeFormatA
SetHandleCount
GetDateFormatA
HeapReAlloc
InitializeCriticalSectionAndSpinCount
ExitProcess
IsBadWritePtr
GetDriveTypeW
VirtualAlloc
TlsGetValue
QueryPerformanceCounter
GetCurrentProcess
HeapCreate
GetModuleHandleA
GetACP
GetTimeZoneInformation
GetUserDefaultLCID
GetCurrentThreadId
LCMapStringA
VirtualFree
CompareStringA
GetCPInfo
GetCurrentProcessId
GetModuleFileNameA
HeapDestroy
DeleteCriticalSection
GetNamedPipeHandleStateA
GetTickCount
GetStartupInfoA
SetFileTime
FreeLibrary
LeaveCriticalSection
IsDebuggerPresent
RtlUnwind
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
InterlockedExchange
HeapSize
ReadConsoleInputA
GetTimeFormatW
GetCurrentThread
WideCharToMultiByte
GetOEMCP
GetStringTypeW
HeapFree
TerminateProcess
LoadLibraryA
EnumResourceTypesA
Sleep
UnhandledExceptionFilter
GetEnvironmentStringsA

comdlg32

LoadAlterBitmap
ReplaceTextA
ChooseFontW
GetFileTitleW
GetOpenFileNameW
ChooseFontA
GetFileTitleA
GetSaveFileNameA
ReplaceTextW
FindTextA
PrintDlgW
GetSaveFileNameW
PageSetupDlgA
ChooseColorA

user32

DdeGetLastError
SetSysColors
ValidateRect
SetDlgItemTextW

gdi32

GetPixelFormat

Sections

.text
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8797d980a3647a213ddf186d4c7a9dc

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

gdi32

Sections

.text Size: 143KB - Virtual size: 142KB

.data Size: 142KB - Virtual size: 141KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 143KB - Virtual size: 142KB

.data
Size: 142KB - Virtual size: 141KB

.rsrc
Size: 6KB - Virtual size: 6KB