cc5cd0683861494cec6c5356704200b0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

cc5cd0683861494cec6c5356704200b0N.exe
Size

139KB
MD5

cc5cd0683861494cec6c5356704200b0
SHA1

2d0d60465c624e37f3fbcbb463b3989bbf8f5c32
SHA256

81596f38113545c5c5ceb4a73fa59abde83a044d5f587ed51025a28c24538f4a
SHA512

8988c659d0634b52328838f5aee15a4d8be6da2868a4e4aee290161c16af551c713e9129551fc45e17e42db12888ebcd4f7e1f26b86751edc3bb638a85cb18c4
SSDEEP

3072:qnIQJA+NNjsEjjws3CXKYQhOZetjCd3zA76K8kiZA:G7sEjcs3WKYQA8QhKfZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cc5cd0683861494cec6c5356704200b0N.exe

Files

cc5cd0683861494cec6c5356704200b0N.exe
.exe windows:5 windows x86 arch:x86

405b46a7ab68fde98c5930bf76f72b67

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
RtlUnwind
FindNextFileW
GetACP
DosPathToSessionPathA
SetErrorMode
GetModuleHandleA
VirtualProtect
GetLastError
GetProcAddress
lstrcmpW
OutputDebugStringA
CreateDirectoryW
HeapFree
GlobalFree
VirtualFree
CreateDirectoryExW
CreateProcessA
VirtualAlloc
DeleteFileA
LoadLibraryW
GetTimeFormatW
ExitThread
TlsGetValue
GetNumberFormatW

msvcrt

__setusermatherr
wcscmp
towupper
printf
memcpy
swscanf
_XcptFilter
_wcsicmp
wcstol
wcsrchr
__CxxFrameHandler
wcsncpy
_wtoi
iswlower
wcstok
toupper
strncpy
atoi
_wcmdln
_wcsnicmp

user32

LoadMenuW
ReleaseDC
RegisterClassA
SendMessageW
MapWindowPoints
CopyRect
DestroyWindow
LoadCursorW
GetProcessWindowStation
DispatchMessageW
GetMenuItemCount
ClientToScreen
SetCapture
BeginPaint
DialogBoxParamA
wsprintfW
GetCursorPos
CheckDlgButton
IsWindow
ScreenToClient
GetParent
LoadImageW
SetScrollPos
ReleaseCapture
LoadCursorA
SendMessageA
UnregisterClassW

gdi32

SetTextColor
StretchBlt
RestoreDC
TranslateCharsetInfo
PatBlt
SetBkMode
Rectangle
CreateFontIndirectW
CreateCompatibleDC
CreateBitmap

opengl32

glFogfv
glColor4i
wglShareLists
glColor4f
glStencilMask
glColor4d
glColor3ui
GlmfBeginGlsBlock
glTexCoord2dv
glTexCoord2d

Exports

Exports

EtbQioqMmnqLqy
Ewmcq
EhepcxeEod
MnmLapztsCicmmpQobalf

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

405b46a7ab68fde98c5930bf76f72b67

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.crt Size: 512B - Virtual size: 72B

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 115B

.data Size: 56KB - Virtual size: 56KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 256B

.text
Size: 13KB - Virtual size: 13KB

.crt
Size: 512B - Virtual size: 72B

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 256B