cd7feed26892e2892f53fcbde012a1b0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

cd7feed26892e2892f53fcbde012a1b0N.exe
Size

593KB
MD5

cd7feed26892e2892f53fcbde012a1b0
SHA1

b4709b659b6a03f2cb435a837521757adbea1de8
SHA256

cef3454bb8af6d564efa12a02cf89e81cc26f99d03f8d12cef52077c742c83b3
SHA512

d56de809f8a2e0846c08d5b6b10bfa6a96e0427ffdd3339092858b016d7f09d5059749889ae10185129d80875fa9ce1b7dd74e684d9ddaa7dd387d290bb4c55e
SSDEEP

12288:XmC7BjFX/8DdOGixVreHWxDKkAQV4n+shO:Fp8Dt2xekAQV4LhO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd7feed26892e2892f53fcbde012a1b0N.exe

Files

cd7feed26892e2892f53fcbde012a1b0N.exe
.exe windows:4 windows x86 arch:x86

6a917be89bb401c9e2f8a2df4927c700

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
SendMessageA
SetFocus
CallWindowProcA
SetWindowLongA
CreateWindowExA
InvalidateRect
ShowWindow
MoveWindow
ReleaseDC
GetDC
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
GetWindowRect
UpdateWindow
RegisterClassExA
LoadIconA
GetSystemMetrics
DefWindowProcA
SetScrollPos
ScrollWindow
LoadCursorA
SetCursor
EndPaint
DialogBoxParamA
EndDialog
GetDlgItem
PeekMessageA
SetScrollInfo
SetScrollRange
SetTimer
BeginPaint
FillRect
PostQuitMessage
SetWindowTextA
MessageBoxA
GetKeyState

gdi32

TextOutA
SetTextColor
SetBkMode
BitBlt
CreateSolidBrush
GetTextExtentPoint32A
GetStockObject
GetTextMetricsA
CreateCompatibleDC
SelectObject
GetMapMode
SetMapMode
GetObjectA
RestoreDC
DeleteDC
CreateDIBSection
DeleteObject
SaveDC
SetGraphicsMode
ModifyWorldTransform
SetViewportOrgEx
SetWindowOrgEx
GetDeviceCaps
DPtoLP
CreateFontIndirectA

comctl32

ord17
ord6

wsock32

send
WSAAsyncSelect
recv
socket
htons
connect
closesocket
ioctlsocket
gethostbyname
WSACleanup
WSAStartup
WSAGetLastError

kernel32

GetCPInfo
LoadLibraryA
SetEndOfFile
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
WideCharToMultiByte
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
CloseHandle
GetProcAddress
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetFileAttributesA
DeleteFileA
GetLastError
HeapReAlloc
GetLocalTime
GetOEMCP
GetEnvironmentStringsW
GetACP
LCMapStringA
LCMapStringW
GetTimeZoneInformation
HeapAlloc
HeapFree
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetSystemTime
SetStdHandle
GetCurrentProcess
CreateFileA
FlushFileBuffers
ExitProcess
WriteFile
RtlUnwind
TerminateProcess

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 9.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6a917be89bb401c9e2f8a2df4927c700

Headers

File Characteristics

Imports

user32

gdi32

comctl32

wsock32

kernel32

Sections

.text Size: 74KB - Virtual size: 74KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 17KB - Virtual size: 9.8MB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 67KB - Virtual size: 68KB

.text Size: 428KB - Virtual size: 428KB

.text
Size: 74KB - Virtual size: 74KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 17KB - Virtual size: 9.8MB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 67KB - Virtual size: 68KB

.text
Size: 428KB - Virtual size: 428KB