c3ccdb1b68a5f38196bf65182b5877bd01c98abcb37e7dc2b61885f04f273f57

Sharing

Copy URL

Twitter E-mail

General

Target

c3ccdb1b68a5f38196bf65182b5877bd01c98abcb37e7dc2b61885f04f273f57
Size

644KB
MD5

cfe29d32a11ecd032c83cd39e054879e
SHA1

52e9d0c0923c373f293e86466fae656a7656795e
SHA256

c3ccdb1b68a5f38196bf65182b5877bd01c98abcb37e7dc2b61885f04f273f57
SHA512

218dda6eac0d26613983fe5ed2904f025982acd060f8ad1f119aba04b4c4d08bdaab690d65b3a0fe5a09095a37bed60cd33531a324e86fb15e9a95ab1e7aae08
SSDEEP

12288:BEUWeqVKe3Zaxk7rUVKZHH3AJRvtJKIVoFMWOYo6kqzitVe/e:ByeqZZaxkHfZH4vtJP+AYrkqz4Ve/e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c3ccdb1b68a5f38196bf65182b5877bd01c98abcb37e7dc2b61885f04f273f57

Files

c3ccdb1b68a5f38196bf65182b5877bd01c98abcb37e7dc2b61885f04f273f57
.exe windows:4 windows x86 arch:x86

c5f4bd106263bec197fe2ffa7e0aa776

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetImageCount
CreateToolbar
ImageList_Merge
CreateStatusWindow
CreateStatusWindowA
ImageList_GetImageRect
InitCommonControlsEx

kernel32

GetVersionExA
CompareStringW
SetLastError
FreeLibrary
SetUnhandledExceptionFilter
GetEnvironmentStringsA
HeapCreate
LoadLibraryA
CompareStringA
MultiByteToWideChar
EnterCriticalSection
GetFileType
HeapAlloc
GetCurrentThreadId
HeapDestroy
IsValidCodePage
GetDateFormatA
Sleep
GetCommandLineA
WriteConsoleW
GetCurrentProcess
GetModuleFileNameA
GetStartupInfoW
SetEnvironmentVariableA
SetHandleCount
LCMapStringA
GetUserDefaultLCID
ReadConsoleOutputW
SetVolumeLabelA
GetStdHandle
TlsFree
GetTimeFormatA
RtlUnwind
FreeEnvironmentStringsW
GetTimeZoneInformation
FreeEnvironmentStringsA
IsValidLocale
GetDiskFreeSpaceExA
GetEnvironmentStringsW
GetCurrentDirectoryW
InterlockedExchange
VirtualAlloc
LocalLock
WideCharToMultiByte
LCMapStringW
GetEnvironmentStrings
GetTickCount
GetConsoleCP
GetLastError
AddAtomW
CreateMutexA
FlushFileBuffers
IsDebuggerPresent
HeapSize
DeleteCriticalSection
GetACP
InterlockedDecrement
LeaveCriticalSection
InitializeCriticalSection
GetCurrentProcessId
GetThreadLocale
HeapFree
InterlockedIncrement
UnhandledExceptionFilter
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
OpenWaitableTimerW
GetConsoleMode
EnumSystemLocalesA
TlsSetValue
OpenMutexA
GetStringTypeW
EnumResourceLanguagesA
SetStdHandle
GetSystemTimeAsFileTime
GetLocaleInfoW
WriteFile
GetStringTypeA
TlsGetValue
ExitProcess
PulseEvent
GetModuleHandleA
CloseHandle
CreateFileMappingW
HeapReAlloc
GetConsoleOutputCP
GetCPInfo
ReadFile
SetConsoleCtrlHandler
TlsAlloc
TerminateProcess
GetProcessHeap
QueryPerformanceCounter
VirtualFree
CreateFileA
GetStartupInfoA
CreateThread
SetFilePointer
GetCurrentThread
WriteConsoleA
FileTimeToLocalFileTime
GetProcAddress
SetFileAttributesA
GetOEMCP
VirtualQuery

shell32

DragAcceptFiles

user32

GetSysColor
SetCursor
CreateWindowExW
PostThreadMessageW
SetScrollInfo
UnregisterClassA
DefDlgProcW
RegisterClassA
ExitWindowsEx
SetDlgItemTextW
EnumWindowStationsA
SetWindowsHookExW
RegisterClassExA
WindowFromPoint
ClipCursor
FindWindowExW
CreateIconFromResource
InSendMessageEx
FindWindowExA
PeekMessageW
LookupIconIdFromDirectory
GetListBoxInfo
AppendMenuW
DefWindowProcA
MessageBoxW
IsMenu
GetMessageTime
GetWindowInfo
DestroyWindow
DestroyCursor
DdeDisconnectList
DlgDirListComboBoxA
EmptyClipboard
GetTabbedTextExtentW
GetAltTabInfo
GetMenuItemID
EnumDesktopsA
CreateDialogParamA
MessageBoxIndirectA
EnumPropsW
DdeAccessData
DispatchMessageW
ReleaseDC
DdeReconnect
EnumDisplaySettingsW
GetPropA
SetWinEventHook
SetDebugErrorLevel
RegisterClassExW
CopyIcon
SetRect
GetCaretBlinkTime
DlgDirListW
ShowWindow
SetSystemCursor
DialogBoxIndirectParamW
GetMessageA
LoadBitmapA
GetClipboardViewer
CharPrevA
GetKeyboardType
GetPropW
EnumDisplaySettingsExW
SetWindowPlacement
UnregisterHotKey
SetCursorPos
GetClipboardSequenceNumber

wininet

FindNextUrlCacheEntryExW
FtpGetCurrentDirectoryW
InternetGetConnectedStateExA
UpdateUrlCacheContentPath

Sections

.text
Size: 236KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5f4bd106263bec197fe2ffa7e0aa776

Headers

File Characteristics

Imports

comctl32

kernel32

shell32

user32

wininet

Sections

.text Size: 236KB - Virtual size: 232KB

.rdata Size: 256KB - Virtual size: 252KB

.data Size: 116KB - Virtual size: 139KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 236KB - Virtual size: 232KB

.rdata
Size: 256KB - Virtual size: 252KB

.data
Size: 116KB - Virtual size: 139KB

.rsrc
Size: 32KB - Virtual size: 31KB