1c26f6728257bc8e752f14917630e5b5670c3cb42e234ef323ee43fbd4cdc98c[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

1c26f6728257bc8e752f14917630e5b5670c3cb42e234ef323ee43fbd4cdc98c.exe
Size

477KB
MD5

d58455a0d565b2702cea14cf0c3d467b
SHA1

ba6e1dfa1edbfd333959e5fe77d23cffe7afaac0
SHA256

1c26f6728257bc8e752f14917630e5b5670c3cb42e234ef323ee43fbd4cdc98c
SHA512

1b61343a6360af7f08e6277661f05da05fd3a05838a09459fa04a1b25026a4b52de690875e74df4319c7ead112a9dc3c96096005a3fdca1181c591f432149c68
SSDEEP

6144:Xyuf9iH1joy/I/f/22/4DWJLlu8Menul9XL//3/Pn//3/vnv/3/v//X/vf/n/3/6:XyY9LVluunuU1/2/Rm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c26f6728257bc8e752f14917630e5b5670c3cb42e234ef323ee43fbd4cdc98c.exe

Files

1c26f6728257bc8e752f14917630e5b5670c3cb42e234ef323ee43fbd4cdc98c.exe
.exe windows:5 windows x86 arch:x86

aaf89e6894c88ecc3bc1fed5e7e0a637

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
ReadFile
SetConsoleOutputCP
SetFilePointer
SetLastError
SetThreadAffinityMask
SetThreadLocale
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
MultiByteToWideChar
UnhandledExceptionFilter
UnmapViewOfFile
WinExec
WriteFile
lstrcatA
lstrcpyA
lstrcpynA
lstrlenA
MapViewOfFile
IsDebuggerPresent
InterlockedExchange
InterlockedCompareExchange
GetWindowsDirectoryA
GetVersionExW
GetVersionExA
GetUserDefaultLangID
GetUserDefaultLCID
GetTickCount
GetSystemTimeAsFileTime
GetStartupInfoA
GetProcessAffinityMask
GetPrivateProfileStringA
GetOEMCP
GetNumberFormatA
GetModuleFileNameA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetFileSize
GetFileInformationByHandle
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetConsoleOutputCP
CreateFileW
FreeLibrary
FormatMessageW
FileTimeToSystemTime
FileTimeToDosDateTime
DuplicateHandle
CreateProcessA
CreateFileMappingA
CreateFileA
CopyFileA
CompareStringA
CloseHandle
LoadLibraryA
GetProcAddress
GetModuleHandleA
TerminateProcess

user32

CharNextW
PaintDesktop
IsWindowUnicode
LoadCursorFromFileW
IsMenu
CountClipboardFormats
GetDesktopWindow
GetOpenClipboardWindow
GetDialogBaseUnits
GetSystemMetrics
IsGUIThread
AnyPopup
GetMessagePos
CopyIcon
GetKeyState
GetKeyboardType
DestroyCursor
CreateWindowExW
DefWindowProcW
DispatchMessageA
DispatchMessageW
FindWindowW
GetMessageA
GetMessageW
IsWindow
KillTimer
PostMessageW
PostQuitMessage
PostThreadMessageA
RegisterClassExW
SetTimer
TranslateMessage
CreatePopupMenu
DestroyIcon
GetAsyncKeyState
GetWindowTextLengthW
IsCharAlphaA
IsCharAlphaNumericA
CloseClipboard
GetDlgCtrlID
CharUpperA
GetMenuContextHelpId
GetCaretBlinkTime
InSendMessage
GetWindowDC
CloseDesktop
CharLowerW
OpenIcon
GetWindowContextHelpId
IsCharAlphaW
GetWindowTextLengthA
GetInputState
LoadCursorFromFileA
GetShellWindow
VkKeyScanW
CloseWindow
VkKeyScanA
IsClipboardFormatAvailable
GetKeyboardLayout
IsCharLowerW
OemKeyScan
IsWindowEnabled
GetDoubleClickTime
CreateMenu
GetSysColor
IsCharLowerA
GetActiveWindow
GetDC
DestroyMenu
IsCharUpperW
ShowCaret
GetFocus
GetClipboardViewer
EndMenu
CharNextA
DestroyWindow

gdi32

EndPath
CancelDC
FlattenPath
GetTextAlign
CreateCompatibleDC
CreateMetaFileW
GetObjectType
GetBkColor
GetLayout
BeginPath
WidenPath
GetStockObject
UpdateColors
GetGraphicsMode
GetDCPenColor
SaveDC
GetBkMode
GdiFlush
GetSystemPaletteUse
GetTextCharset
CreateMetaFileA
GetEnhMetaFileA
AbortDoc
GetPixelFormat
CloseFigure
DeleteDC
AddFontResourceA
EndDoc
GetColorSpace
GetFontLanguageInfo
CreatePatternBrush
GdiGetBatchLimit
SetMetaRgn
DeleteColorSpace
UnrealizeObject
AbortPath
CloseEnhMetaFile
RealizePalette
GetPolyFillMode
StrokePath

advapi32

RegQueryValueExW
RegOpenKeyW

Sections

.text
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaf89e6894c88ecc3bc1fed5e7e0a637

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 267KB - Virtual size: 267KB

.rdata Size: 74KB - Virtual size: 73KB

.data Size: 21KB - Virtual size: 21KB

.rsrc Size: 114KB - Virtual size: 113KB

.text
Size: 267KB - Virtual size: 267KB

.rdata
Size: 74KB - Virtual size: 73KB

.data
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 114KB - Virtual size: 113KB