cc258435f094af48195684591cb68ac0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

cc258435f094af48195684591cb68ac0N.exe
Size

176KB
MD5

cc258435f094af48195684591cb68ac0
SHA1

6a285225cc786c52439461939ccaa171a7e86eff
SHA256

123135c1281830123beb0e614b0fdcd5f1b1c9dae92d9cbb0fcccf7f218d5a81
SHA512

b3881126904c256b413e7491756f40b04e4a6ca70141b267f37660ebad048777531547f5d9ffe105261db0c0ccddc531f2c999c7fefbea47ad3d0b0c8b292977
SSDEEP

3072:DipeqSHBOpXmcR+aeor9l9i8bcQqmqja5FBc9xKXqjxD0KhJXEwD:+peVBOPrxcQdqjarBc9x9bh1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc258435f094af48195684591cb68ac0N.exe

Files

cc258435f094af48195684591cb68ac0N.exe
.dll windows:4 windows x86 arch:x86

c9d0de2ec54eb02523c459e8ca047244

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

swprintf
malloc
exit
memmove
wcsncmp
clock
sqrt
calloc
tolower
wcstol
atol

user32

CharToOemA
DefFrameProcA
SetMenu
SystemParametersInfoA
ScreenToClient
InsertMenuA
SendMessageW
SetFocus
PeekMessageA
ChildWindowFromPoint
FillRect
MessageBeep
GetSystemMetrics
DrawTextA
LoadBitmapA
DestroyCursor
SetTimer
GetKeyboardLayoutNameA
ShowWindow
GetWindow
IsDlgButtonChecked
DrawAnimatedRects
RemovePropA
AdjustWindowRectEx
RegisterClassA
PostMessageA
PeekMessageW
EnableWindow
ShowOwnedPopups
PostQuitMessage
IsWindowEnabled
RegisterClipboardFormatA
DrawIcon
SetWindowPos
GetSysColor
GetWindowTextA
IsDialogMessageW
GetDlgItem
EnumChildWindows
GetCursor
DefMDIChildProcA
GetParent
CharNextW
IsZoomed
IsCharUpperA
ScrollWindow
GetSubMenu
SetWindowLongA
SetMenuItemInfoA
GetSysColorBrush
SendMessageA
SetActiveWindow
SetWindowsHookExA
CharUpperBuffA
CreatePopupMenu
SetRect
ReleaseCapture
GetScrollPos
OpenIcon
CreateWindowExA
DeleteMenu
GetWindowDC
DestroyMenu
WindowFromPoint
GetTopWindow
LoadIconA
GetWindowLongW
SetForegroundWindow
GetScrollRange
SetClipboardData
UpdateWindow
DestroyIcon
GetWindowRect
GetKeyboardLayout

advapi32

RegQueryValueA
RegQueryValueExA
RegEnumKeyA

shell32

SHGetFolderPathA
Shell_NotifyIconW

comctl32

ImageList_DragShowNolock
ImageList_Remove
ImageList_Create
ImageList_Draw
ImageList_Add
ImageList_Read
ImageList_GetBkColor
ImageList_Write
ImageList_Destroy

gdi32

SelectObject
SelectPalette
SaveDC
GetTextColor

kernel32

SetThreadLocale
GetCommandLineW
GetCommandLineA
ExitProcess
SetHandleCount
SetLastError
SizeofResource
VirtualAlloc

Exports

Exports

_6l6ViDr
_8pIysKBTIcsY@24
xwX5g@4
reAw0Xesdb@20
_cMztBMxG
TgeCD@4
_SVRa15Wc5
__p7ZA@24
_sjemBbMUkZ
_jAw7T8t0ph
_AFkpTtJe9H@8
_unv40ylyST3BI5
vZ3UU1IAH9UR
_4iW8RW5Es
V8lKj
QtHg1su4lr_oI3
_4DaGl4dd
RezoT4
jm5qpVkM0y
_cSn9LPdw
8bS1HPT4_A0t@8

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9d0de2ec54eb02523c459e8ca047244

Headers

File Characteristics

Imports

msvcrt

user32

advapi32

shell32

comctl32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 151KB - Virtual size: 299KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 151KB - Virtual size: 299KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB