a4cc3150cf460d549d04143c9f590258777bb4731eaa75243cf0c8aaad5c2c67N

General

Target

a4cc3150cf460d549d04143c9f590258777bb4731eaa75243cf0c8aaad5c2c67N
Size

5.9MB
MD5

0187fe463dd77924499d8eebe78a8fd0
SHA1

bcbe180a57468bdf11562221081e577270eb295d
SHA256

a4cc3150cf460d549d04143c9f590258777bb4731eaa75243cf0c8aaad5c2c67
SHA512

31f0a8fd492f3b87b14ae02c16b58b15be8d842b8764ca4481ebf1e38c63309a85c4b4d6c08193b44ce1d9242f723e9b02da83935f25b35caa6db6248bba4f24
SSDEEP

98304:7kFqZH7oLzfye4NZmsvwi+JbkAFx17/Vuccef6e7ZdeBs6PX6zru8ZRwraZ/q58C:QF8H8LLl1sFIjDf3jS2ukirK/q58Aag5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4cc3150cf460d549d04143c9f590258777bb4731eaa75243cf0c8aaad5c2c67N

Files

a4cc3150cf460d549d04143c9f590258777bb4731eaa75243cf0c8aaad5c2c67N
.exe windows:4 windows x86 arch:x86

544133b272f5ce304ec1804270c27d0c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualUnlock
GetCurrentDirectoryA
GetWindowsDirectoryA
GetSystemInfo
HeapSize
GetComputerNameA
VirtualAlloc
BeginUpdateResourceA
SetFilePointerEx
EndUpdateResourceA
GetConsoleCursorMode
GlobalLock
GetExitCodeThread
GetConsoleTitleA
VirtualLock
FileTimeToLocalFileTime
ChangeTimerQueueTimer
UpdateResourceA
LocalHandle
GetThreadSelectorEntry
VirtualLock
GetVolumePathNamesForVolumeNameA
GetThreadPriorityBoost
GetSystemTimes
CreateDirectoryA
GetTimeZoneInformation
SetVolumeLabelA
GetThreadPriorityBoost
GetCommModemStatus
CreateWaitableTimerA
OpenJobObjectA
GetLastError
SetThreadAffinityMask
ReadConsoleInputA
SetThreadUILanguage
lstrcatA
GetLogicalDriveStringsA
SetConsoleTextAttribute

dpnlobby

DirectPlay8LobbyCreate

advapi32

CredGetTargetInfoA

user32

SendMessageTimeoutA
ScrollChildren
IsDlgButtonChecked
SetCursor
UnregisterHotKey
CalcMenuBar
DialogBoxIndirectParamAorW
IsCharAlphaNumericA
SetCursorContents
OpenWindowStationA
DestroyMenu
DeviceEventWorker
GetWindow
GetKeyboardType
SendMessageCallbackA
SetWindowsHookA
CheckDlgButton
LoadAcceleratorsA
PtInRect

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 847KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

544133b272f5ce304ec1804270c27d0c

Headers

File Characteristics

Imports

kernel32

dpnlobby

advapi32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 847KB - Virtual size: 1.1MB

.data Size: 349KB - Virtual size: 349KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 847KB - Virtual size: 1.1MB

.data
Size: 349KB - Virtual size: 349KB

.rsrc
Size: 99KB - Virtual size: 99KB