ac86c4972f7bf9a62ad7bd5fc4ffcccc[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

ac86c4972f7bf9a62ad7bd5fc4ffcccc.zip
Size

448KB
MD5

ac86c4972f7bf9a62ad7bd5fc4ffcccc
SHA1

243ee37d5503bc330b0593a36275dbe452bcce29
SHA256

d99f3b5b99dd6857fd12974b2f292ba7c59d0b99858ed0d1d2d20aeb9b63419c
SHA512

e986dab06df8b89903fe2b8ccb9f19ee48d7971a347cb458d87aa4b04d7d99a938a16cb74dc27bc3fa1be2c24bde65adbd60dc6bebce8664ae450ad714e7ab7a
SSDEEP

6144:2mISoW7EEAZT/ZjlDsjtKBUe9MEu0RTBUY4GzBhWPjn63rrF3Mww3aAFO9B9Zkz4:26oWOjIEGeVR2Y4Gd663rluXSBm4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/No 00014052024 3 DE DICIEMBRE DE 2024 COBRO JURÍDICO VIGENTE.exe

Files

ac86c4972f7bf9a62ad7bd5fc4ffcccc.zip
.zip

Password: 5298
No 00014052024 3 DE DICIEMBRE DE 2024 COBRO JURÍDICO VIGENTE.exe
.exe windows:6 windows x86 arch:x86

Password: 5298

f25ab2b89cf57e9099f9e15a113c344d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\MultiCommander\BuildOutput\Output\Win32\Release v143\MultiCrashReport\MultiCrashReport.pdb

Imports

wininet

HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetGetLastResponseInfoW
InternetReadFile
InternetConnectW
InternetOpenW
HttpQueryInfoW
InternetCloseHandle

kernel32

GlobalFlags
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FlushFileBuffers
GetFullPathNameW
GetVolumeInformationW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetEnvironmentStringsW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetCurrentThread
WriteConsoleW
GetVersionExW
GetCurrentProcessId
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
FormatMessageW
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
GetModuleHandleW
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
OutputDebugStringW
RaiseException
RtlUnwind
GetCommandLineA
GetCommandLineW
GetModuleHandleExW
HeapQueryInformation
GetStdHandle
ExitProcess
GetTimeZoneInformation
LCMapStringW
EnterCriticalSection
SetLastError
OutputDebugStringA
GetACP
SystemTimeToFileTime
FileTimeToDosDateTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetLocalTime
GetSystemTime
GetCurrentProcess
DuplicateHandle
GetFileType
GetFileInformationByHandle
FindNextFileW
WinExec
DeleteCriticalSection
GetProcessHeap
HeapSize
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
lstrlenW
LoadLibraryA
GetProcAddress
lstrcpynW
GetNumberFormatW
GetLocaleInfoW
MulDiv
GetUserDefaultLangID
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
WideCharToMultiByte
MultiByteToWideChar
CopyFileExW
GetPrivateProfileStringW
lstrcpyW
LoadLibraryW
GetModuleFileNameW
FreeLibrary
GetWindowsDirectoryW
GetLastError
WriteFile
SetFilePointer
GetFileSizeEx
GetFileAttributesW
FindFirstFileW
FindClose
DeleteFileW
CloseHandle
ReadFile
GetFileSize
CreateFileW
CopyFileW
FindResourceW
SizeofResource
LockResource
LoadResource
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
SetFilePointerEx
GetConsoleOutputCP
GetConsoleMode
TerminateProcess

user32

CharUpperW
DestroyMenu
RealChildWindowFromPoint
GetSysColorBrush
PostQuitMessage
TranslateMessage
GetMessageW
GetWindowThreadProcessId
WindowFromPoint
GetCursorPos
ClientToScreen
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
SetDlgItemTextW
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
CallNextHookEx
SetWindowsHookExW
GetLastActivePopup
GetClassNameW
GetClassLongW
GetWindowLongW
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollPos
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
PeekMessageW
GetWindow
DispatchMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
GetMenuItemCount
GetMenuItemID
GetSubMenu
OffsetRect
SetRectEmpty
SendDlgItemMessageA
UpdateWindow
GetFocus
DrawEdge
GetParent
SetWindowLongW
MessageBeep
ReleaseDC
GetDC
KillTimer
IsWindow
InflateRect
InvalidateRect
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
FillRect
GetSysColor
GetClientRect
RedrawWindow
DrawIcon
GetSystemMetrics
UnregisterClassW
MessageBoxW
SetActiveWindow
ReleaseCapture
SetCapture
SetFocus
GetAsyncKeyState
wsprintfW
CopyIcon
DestroyCursor
LoadCursorW
PtInRect
ScreenToClient
SetCursor
SetTimer
PostMessageW
GetMessagePos
RegisterWindowMessageW
GetWindowRect
LockWindowUpdate
LoadIconW
EnableWindow
SendMessageW
GetTopWindow

gdi32

MoveToEx
SelectObject
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetMapMode
SetBkMode
ScaleWindowExtEx
GetObjectW
SelectClipRgn
SaveDC
RestoreDC
LineTo
GetClipBox
DeleteObject
CreatePen
SetTextColor
SetBkColor
CreateBitmap
CreateRectRgn
CreateSolidBrush
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetTextExtentPoint32W
GetCurrentObject
GetBkColor
Escape
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetStockObject
GetDeviceCaps
DeleteDC
CreateDCW
CreateFontIndirectW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyExW
RegCloseKey
RegEnumValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
IsTextUnicode
RegQueryValueExW
RegQueryValueW
RegOpenKeyExW

shell32

ShellExecuteExW
ShellExecuteW
ExtractIconW

comctl32

ImageList_GetBkColor
ImageList_GetImageInfo
ImageList_SetBkColor

shlwapi

PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
CoTaskMemFree
CoCreateGuid
CoInitialize

oleaut32

SysFreeString
VariantInit
VariantClear
VariantChangeType
SysAllocString

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 286KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 546KB - Virtual size: 545KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: 5298

Password: 5298

f25ab2b89cf57e9099f9e15a113c344d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wininet

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

version

oleacc

Sections

.text Size: 286KB - Virtual size: 288KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 8KB - Virtual size: 20KB

.rsrc Size: 546KB - Virtual size: 545KB

.text
Size: 286KB - Virtual size: 288KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 8KB - Virtual size: 20KB

.rsrc
Size: 546KB - Virtual size: 545KB