ccd0bde42eadb882f4a73149c9564560N[.]exe

General

Target

ccd0bde42eadb882f4a73149c9564560N.exe
Size

21KB
MD5

ccd0bde42eadb882f4a73149c9564560
SHA1

d3ad7fb1aadf9a58e82d2e61175d406cee38d8b6
SHA256

05ae6fbdab338cb8aca8adc49309429d9dfb28713febc99daa513578240541de
SHA512

25a6ad342b0ceb880020a8d8f1a914d6e3f175b678cfc5dee30c67acf59dcd82a521d3a6c5bb13e29296432406778d8bbf23f475ee25bd4cccf981ab094b71ef
SSDEEP

384:ByyyyyyyyyyyyyyyynpzLwAiNq/dfZTUt9/J4BWBkD2pQ5uqZ0TlQN+u0cG4:ByyyyyyyyyyyyyyyynCA8q/dfZ8ZJ4BP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccd0bde42eadb882f4a73149c9564560N.exe

Files

ccd0bde42eadb882f4a73149c9564560N.exe
.exe windows:54418 windows x86 arch:x86

8248e535f95c12bd9c2c11fda3bb490b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleHandleA
GetProcessHeap
Sleep
GetLastError
WideCharToMultiByte
LeaveCriticalSection
SetEvent
TerminateProcess
GetVersionExA
GetCommandLineW
GetCurrentProcess
CloseHandle
lstrcmpiW
GetProcAddress
Sleep
GetProcAddress
GetCurrentProcessId
VirtualAlloc
LocalAlloc
HeapAlloc
lstrcpyW
MultiByteToWideChar
ExitProcess
VirtualFree
WriteFile
GetProcessHeap
SetUnhandledExceptionFilter
InterlockedDecrement
CloseHandle
lstrcpyW
LeaveCriticalSection
ExitProcess
lstrcpyW
lstrcmpiW
HeapFree
WaitForSingleObject
HeapAlloc
HeapAlloc
VirtualAlloc
GetVersionExA
HeapFree
GetProcessHeap
GetCurrentThreadId
GetTickCount

user32

LoadStringW
RegisterClassW
LoadImageW
SendMessageA
RegisterClassW
EndPaint
MoveWindow
BeginPaint
CreateWindowExW
GetSystemMetrics
PostQuitMessage
SetCursor
LoadCursorW
SetWindowPos
InvalidateRect
EndDialog
WinHelpW
IsDlgButtonChecked
PeekMessageW
SendMessageA
SetRect
EnableMenuItem
wsprintfW
DestroyIcon
CreateDialogParamW
EndPaint
RegisterClassExW
SetWindowPos
GetWindowTextW
GetDesktopWindow
GetMessageW
DestroyMenu
GetMenu
GetWindowLongW
LoadStringW
GetKeyState
EnableWindow
RegisterClassW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8248e535f95c12bd9c2c11fda3bb490b

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB