26c960e8647571e0abfbd07e94d4611e73a46230352027e95d8ad25b51fe4ce5

Sharing

Copy URL Twitter E-mail

General

Target

26c960e8647571e0abfbd07e94d4611e73a46230352027e95d8ad25b51fe4ce5
Size

356KB
MD5

9a78b1def8ceed57f963b9b95e2194f5
SHA1

d81e73c92e15787f9ad46ea214270ae531538ed4
SHA256

26c960e8647571e0abfbd07e94d4611e73a46230352027e95d8ad25b51fe4ce5
SHA512

55a3dfd88b4e63b07e23b5d0395edf34ad77b1bb77d538e6e3db6df85c3716a943576e58cc3b63bb7241291117bd4c1d3391ff79b041d480de3866f010deb72f
SSDEEP

3072:vRfVl/tH0z7POvv4Fw7tt4adv+LiD3h6ccSZJtMOX2Ugw795KSb6AsUPyAqsX0Xp:Jd7o7Ozvvh6cvZougGJboD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26c960e8647571e0abfbd07e94d4611e73a46230352027e95d8ad25b51fe4ce5

Files

26c960e8647571e0abfbd07e94d4611e73a46230352027e95d8ad25b51fe4ce5
.dll windows:4 windows x86 arch:x86

1b94a626b7f31bfe02b26fc7359e5bd0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\adc3_build02-bkp\adcmodule-9\bin\x86\release\ffzadc4.pdb

Imports

kernel32

GetVersion
HeapAlloc
HeapFree
HeapCreate
GetFullPathNameA
lstrcpyA
GetModuleFileNameA
HeapDestroy
FreeLibraryAndExitThread
LoadLibraryW
GetLastError
SetLastError
GetModuleFileNameW
OutputDebugStringA
DisableThreadLibraryCalls
FreeLibrary
CloseHandle
CreateThread
LoadLibraryA
lstrcpynA
WideCharToMultiByte
lstrcmpA
lstrcatA
lstrlenA
LoadLibraryExA
GetUserDefaultLangID
FindResourceA
FindResourceExW
LockResource
LoadResource
SizeofResource
IsDBCSLeadByte
InitializeCriticalSection
InterlockedIncrement
LeaveCriticalSection
GetFileAttributesW
DeleteCriticalSection
InterlockedDecrement
WaitForSingleObject
GetExitCodeThread
SetThreadPriority
CompareStringW
CompareStringA
GetTimeZoneInformation
GetLocaleInfoW
HeapSize
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
RaiseException
HeapReAlloc
VirtualAlloc
InterlockedExchange
SetConsoleCtrlHandler
FatalAppExitA
SetEnvironmentVariableA
WriteFile
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
EnterCriticalSection
GetModuleHandleA
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
RtlUnwind
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThread
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

SetTimer
KillTimer
GetCaretPos
SetCaretPos
MessageBeep
GetDlgItemTextA
GetDlgItemInt
GetDlgItemTextW
SetDlgItemTextA
ShowWindow
SetFocus
SendDlgItemMessageA
EnableWindow
wsprintfW
MessageBoxW
DialogBoxIndirectParamW
SystemParametersInfoA
ReleaseDC
GetDlgItem
GetParent
PostMessageA
SetWindowLongA
GetWindowLongA
EndDialog
SendMessageA
GetDC
wsprintfA
SetDlgItemInt

gdi32

CreateFontIndirectA
GetTextExtentPoint32A
GetDeviceCaps

Exports

Exports

FXZADC_CloseDevice
FXZADC_GetCharSet
FXZADC_GetInputTrayInfo
FXZADC_GetInputTrayInfoEx
FXZADC_GetNumberOfInputTrayInfo
FXZADC_GetNumberOfInputTrayInfoEx
FXZADC_GetValueBoolean
FXZADC_GetValueInteger
FXZADC_GetValueString
FXZADC_GetValueUInteger
FXZADC_OpenDevice
FXZADC_SelectDevice
FXZADC_SetAttribute

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b94a626b7f31bfe02b26fc7359e5bd0

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 184KB - Virtual size: 180KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 184KB - Virtual size: 180KB

.reloc
Size: 8KB - Virtual size: 7KB