cd13c9ecf61c6e65f19929e7f79d9a80N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

cd13c9ecf61c6e65f19929e7f79d9a80N.exe
Size

82KB
MD5

cd13c9ecf61c6e65f19929e7f79d9a80
SHA1

3185e3817936c53df83fe8f5beff680b6e038230
SHA256

ab48ce05ffdba2343e7ea7268a92bf7564ca45f2ef591a12d226bb04e294797a
SHA512

c1d3db5f52820e5aac895989c14c9ab24af12c5dc6de09aa69ca14462e1090e9ff45505c11b830448aba26d30699c690847bfc13c74722ac3859f74f5a97304a
SSDEEP

1536:3OkQeoBHywJkriZnEcdSRWb+tbzrzZFuSKa8XHT:GRywJcsSg4PuSfgz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd13c9ecf61c6e65f19929e7f79d9a80N.exe

Files

cd13c9ecf61c6e65f19929e7f79d9a80N.exe
.exe windows:4 windows x86 arch:x86

a2dc57ba18e67dba2c2e764eb422708d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetCommandLineA
lstrcmpA
GlobalAlloc
GetLastError
lstrcpyA
GetDateFormatA
GetFileSize
DeleteFileA
GetStdHandle
GetLocalTime
HeapFree
Sleep
lstrlenA
GetFileType
GetCPInfo
GetStringTypeW
CloseHandle

user32

IsMenu
CloseWindow
InsertMenuA
DrawIcon
DialogBoxParamA
CalcMenuBar
AppendMenuW
IsWindow
CreateIcon
GetMenu
GetCursor
LoadMenuA
DrawTextW
DrawTextA
DialogBoxParamW
CopyRect
GetFocus
GetDlgItem
CopyIcon
AppendMenuA
GetDC
LoadMenuA
GetWindowTextLengthA
GetWindowTextA
CopyRect
DrawTextW
DrawIconEx
IsMenu
InsertMenuA
GetMenu
DrawTextA
DialogBoxParamA
IsWindow
AlignRects
CloseWindow
CalcMenuBar
DialogBoxParamW
CopyIcon
EndDialog

comctl32

ImageList_GetImageInfo
ImageList_GetDragImage
ImageList_LoadImage
ImageList_AddMasked
ImageList_Copy
InitCommonControls
ImageList_Replace
ImageList_Merge
ImageList_Read
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_Remove
ImageList_ReplaceIcon
ImageList_GetImageRect
ImageList_LoadImageW
ImageList_Create
ImageList_Draw

advapi32

RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegReplaceKeyW
RegCreateKeyExA
RegQueryValueW
RegCreateKeyW
RegQueryValueA
RegDeleteValueW
RegDeleteValueA
RegOpenKeyW
RegQueryValueExW
RegOpenKeyA
RegGetKeySecurity
RegQueryInfoKeyA
RegQueryInfoKeyW
RegLoadKeyA
RegEnumKeyExA
RegEnumKeyA
RegEnumKeyExW

Sections

.FaPd
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mVDbSr
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdUYNm
Size: 6KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tkyRFZ
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2dc57ba18e67dba2c2e764eb422708d

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.FaPd Size: 12KB - Virtual size: 11KB

.mVDbSr Size: 29KB - Virtual size: 29KB

.vdUYNm Size: 6KB - Virtual size: 24KB

.tkyRFZ Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 4KB

.FaPd
Size: 12KB - Virtual size: 11KB

.mVDbSr
Size: 29KB - Virtual size: 29KB

.vdUYNm
Size: 6KB - Virtual size: 24KB

.tkyRFZ
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 4KB