c6075ea5d9b2ca777ead425b9d08abf57fc13cabf2176c96cad6985d9a1ab96e

Sharing

Copy URL Twitter E-mail

General

Target

c6075ea5d9b2ca777ead425b9d08abf57fc13cabf2176c96cad6985d9a1ab96e
Size

877KB
MD5

064e62035eeb4fae224e18eebf61ebc0
SHA1

36c12efffd1a59b40999d8eef575d54d35c861c7
SHA256

c6075ea5d9b2ca777ead425b9d08abf57fc13cabf2176c96cad6985d9a1ab96e
SHA512

c0ff604b3e6146778c63b5505c324ba426b01ef5d7244622aff83f31973bb553e045e79116ce9a849d53584ab4e1e4cf12e47ba63dde6fb53fea6f69818e03ec
SSDEEP

12288:0VpwfcVczvYh6eVBAl9FabwtLlu3KbYqjTQunwqNJBYxlZncrbo3JYZGZuwJ:HH06eVBAVabEluK5jTQITw+r+JwmJ

Score

N/A

Malware Config

Signatures

Files

c6075ea5d9b2ca777ead425b9d08abf57fc13cabf2176c96cad6985d9a1ab96e
.exe windows x86

b42cad64348f310fc2b903c02a2ae0cc

Code Sign

03:a0:7b:73:9f:47:1b:2f:11:97:f3:c5:f9:77:c2:47:a6:e9:52:0d
Signer

Actual PE Digest

03:a0:7b:73:9f:47:1b:2f:11:97:f3:c5:f9:77:c2:47:a6:e9:52:0d

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

NO CERTIFICATE

01/01/0001, 00:00
Valid: false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

wininet

HttpEndRequestA

kernel32

GetVersion
WriteFile
VirtualAlloc
GetCommandLineW
CreateFileMappingA
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetStdHandle
HeapReAlloc
HeapAlloc
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetProcAddress
GetVersionExA
GetCommandLineA
CloseHandle
lstrcmpiA
QueryPerformanceCounter
CreateFileA
CreateThread
TlsGetValue
ReadFile
GetCurrentProcessId
GetTickCount
ExitProcess
GetStartupInfoA
GetSystemTimeAsFileTime
CreateDirectoryW
GetLastError
SetErrorMode
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
SetFilePointer
HeapFree
GetModuleHandleA

user32

CreateWindowExA
RegisterClassExA
ShowWindow
GetSystemMetrics
MessageBoxA
ShowScrollBar
ShowCursor
ShowOwnedPopups
TranslateMessage
ValidateRect
WaitMessage
WindowFromPoint
SetScrollPos
SetScrollRange
SetWindowLongA
SetWindowPlacement
SetWindowPos

gdi32

SetAbortProc
GetLogColorSpaceW
DeleteMetaFile
OffsetWindowOrgEx
TextOutW
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetPixel
SetROP2
StretchBlt
UnrealizeObject
Rectangle

comdlg32

ChooseFontA
ReplaceTextW
GetSaveFileNameA
GetOpenFileNameA
FindTextW

advapi32

AllocateAndInitializeSid
RegCreateKeyExA
RegCloseKey

shell32

ShellExecuteA
StrStrIA

ole32

CoTaskMemAlloc

oleaut32

VarDecRound
VarRound
VarNumFromParseNum
SafeArrayRedim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElement
SafeArrayPutElement
VariantInit

Sections

.text
Size: 700KB - Virtual size: 696KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b42cad64348f310fc2b903c02a2ae0cc

Code Sign

03:a0:7b:73:9f:47:1b:2f:11:97:f3:c5:f9:77:c2:47:a6:e9:52:0dSigner

Signature Validations

Verification

01/01/0001, 00:00 Valid: false

Headers

File Characteristics

Imports

comctl32

wininet

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 700KB - Virtual size: 696KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 152KB - Virtual size: 148KB

03:a0:7b:73:9f:47:1b:2f:11:97:f3:c5:f9:77:c2:47:a6:e9:52:0d
Signer

01/01/0001, 00:00
Valid: false

.text
Size: 700KB - Virtual size: 696KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 152KB - Virtual size: 148KB