cd301c48758d0cc1877eafac449ef280N[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

cd301c48758d0cc1877eafac449ef280N.exe
Size

387KB
MD5

cd301c48758d0cc1877eafac449ef280
SHA1

4aa537c12ab38396e76d053f052c0539a16b7613
SHA256

c80fbe6c7435ee539db2771970ec8a5619bdef83fd2724bb1a1b46e0f791bfdf
SHA512

bae744bcbda9581f9797e617cb9112734e9531c7b6455de4d61652487ff3fe76acfed3ef34ab0c4448d83c380c47b928caf4ec8be3cd6c792a2e39547240c415
SSDEEP

6144:F7YBstUZAubizHd5kkMjFstPUUV1z3+HwpkGCZm0UOU/JIU3+HwE:hYBbAFsjFIj3+QpkncJH3+Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd301c48758d0cc1877eafac449ef280N.exe

Files

cd301c48758d0cc1877eafac449ef280N.exe
.exe windows:1 windows x86 arch:x86

5f39bae1041883de34c7b2cdc38970b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
CreateThread
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
ExitProcess
FindResourceA
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetDateFormatA
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalMemoryStatus
InitializeCriticalSection
LeaveCriticalSection
LoadResource
LocalAlloc
LocalFree
LockResource
MultiByteToWideChar
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetFilePointer
SetHandleCount
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WideCharToMultiByte
WriteFile

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comctl32

InitCommonControls

gdi32

BitBlt
CreateCompatibleDC
CreateFontA
CreatePalette
DeleteDC
DeleteObject
GetDeviceCaps
RealizePalette
SelectObject
SelectPalette
SetDIBits

user32

CheckDlgButton
CreateDialogParamA
DestroyWindow
DispatchMessageA
EnableWindow
EnumThreadWindows
GetDlgItem
GetMessageA
GetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
IsWindow
LoadBitmapA
LoadStringA
MessageBoxA
PostMessageA
PostQuitMessage
SendMessageA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
InstallDlgBoxProc
__DebuggerHookData
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 323KB - Virtual size: 358KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5f39bae1041883de34c7b2cdc38970b5

Headers

File Characteristics

Imports

advapi32

kernel32

version

comctl32

gdi32

user32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 48KB

.data Size: 10KB - Virtual size: 24KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 3KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 323KB - Virtual size: 358KB

.text
Size: 47KB - Virtual size: 48KB

.data
Size: 10KB - Virtual size: 24KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 323KB - Virtual size: 358KB