6940d85480e06ce5dd9ffece9099897485946926d4bf4e6aeaaa788a9a22bcfe

Sharing

Copy URL Twitter E-mail

General

Target

6940d85480e06ce5dd9ffece9099897485946926d4bf4e6aeaaa788a9a22bcfe
Size

1018KB
MD5

974bd38a4c037e8332fe0c7f17ab3472
SHA1

28342d1ad4da1c9157e3a3c0d3c065ec2bb5be4b
SHA256

6940d85480e06ce5dd9ffece9099897485946926d4bf4e6aeaaa788a9a22bcfe
SHA512

19245534d83aefe20f80df5685901faf166c2ff5c748e0119cd2b83e19b00d112697413cb8bde9de8fe767e51626ffe849d527eff0cebe733e2c66a24e688103
SSDEEP

24576:HEBMVFScECsqG5xA8EcKF+gGW/Uqlb+W:kebkCsqG5UcGvNMqt+W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6940d85480e06ce5dd9ffece9099897485946926d4bf4e6aeaaa788a9a22bcfe

Files

6940d85480e06ce5dd9ffece9099897485946926d4bf4e6aeaaa788a9a22bcfe
.exe windows x86

7542bcd568970d01905958d80082f5b0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundW

kernel32

GetFileSize
ReadFile
WriteFile
FlushFileBuffers
SetEndOfFile
GetCommandLineW
GetProcAddress
GetModuleHandleW
GetLocaleInfoA
SetStdHandle
LCMapStringW
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
HeapQueryInformation
HeapSize
HeapReAlloc
VirtualQuery
GetProcessHeap
HeapAlloc
HeapFree
SetConsoleCtrlHandler
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
HeapDestroy
HeapCreate
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetStringTypeW
CloseHandle
GetCPInfo
GetOEMCP
GetACP
ExitProcess
IsProcessorFeaturePresent
IsBadReadPtr
HeapValidate
FatalAppExitA
InitializeCriticalSectionAndSpinCount
lstrlenA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThread
SetLastError
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
DecodePointer
EncodePointer
RaiseException
RtlUnwind
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
Sleep
InterlockedDecrement
InterlockedIncrement
CreateFileW
SetFilePointer
GlobalAlloc
GlobalLock
GlobalUnlock
WideCharToMultiByte
MultiByteToWideChar
lstrcpyW
SystemTimeToFileTime
SetLocalTime
GetLocalTime
FindResourceW
SizeofResource
LoadResource
LockResource
GetCurrentDirectoryW
GetModuleFileNameW
IsValidLocale
GetLastError
LoadLibraryW
FreeLibrary
lstrlenW
EnumSystemLocalesA
IsValidCodePage
GetUserDefaultLCID

user32

DrawTextW
UpdateWindow
SetWindowPos
SetFocus
DestroyIcon
DestroyCursor
CreateIconFromResource
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CharUpperW
GetDC
MessageBeep
MessageBoxW
SetTimer
KillTimer
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemRect
CheckMenuRadioItem
CheckMenuItem
EnableMenuItem
GetMenuState
GetMenuCheckMarkDimensions
LoadImageW
ReleaseDC
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CharLowerW
IsWindowVisible
SetMenuItemBitmaps
LoadBitmapW
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuW
AppendMenuW
DrawMenuBar
RemoveMenu
SetForegroundWindow
DestroyWindow
SetCursor
GetClientRect
FillRect
GetSysColor
BeginPaint
EndPaint
GetCursorPos
ScreenToClient
LoadCursorW
GetKeyState
GetSystemMetrics
MoveWindow
SetWindowRgn
GetMenuItemCount
GetMenuItemID
GetDlgItem
LoadIconW
ClientToScreen
TrackPopupMenu
DestroyMenu
GetSubMenu
LoadMenuW
LoadAcceleratorsW
SetWindowPlacement
GetWindowPlacement
CallWindowProcW
GetWindowLongW
EnumChildWindows
CreateDialogParamW
GetWindow
SetWindowLongW
IsWindowEnabled
ShowWindow
SetActiveWindow
GetActiveWindow
SetMenu
GetSystemMenu
GetMenu
SetRect
PeekMessageW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
IsDialogMessageW
PostQuitMessage
SetParent
CheckDlgButton
IsDlgButtonChecked
SendMessageW
SetCapture
ReleaseCapture
GetWindowRect
InvalidateRect
GetParent
GetDlgItemInt
EnableWindow
GetClassLongW
GetClassNameW
GetDlgCtrlID
CloseClipboard

gdi32

RoundRect
SelectObject
CreatePen
SetBkColor
GetStockObject
SetBkMode
CreateSolidBrush
SetTextColor
GetObjectW
Rectangle
GetTextExtentPoint32W
GetTextMetricsW
CreateFontIndirectW
DeleteDC
BitBlt
StretchBlt
SetStretchBltMode
CreateCompatibleDC
GetDeviceCaps
DeleteObject
CreateRoundRectRgn

shell32

DragQueryFileW
DragQueryPoint
DragFinish
DragAcceptFiles
Shell_NotifyIconW

comctl32

ord17

Sections

.textbss
Size: - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 515KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 395KB - Virtual size: 394KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7542bcd568970d01905958d80082f5b0

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

shell32

comctl32

Sections

.textbss Size: - Virtual size: 241KB

.text Size: 515KB - Virtual size: 514KB

.rdata Size: 71KB - Virtual size: 71KB

.data Size: 6KB - Virtual size: 20KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 395KB - Virtual size: 394KB

.reloc Size: 21KB - Virtual size: 21KB

.textbss
Size: - Virtual size: 241KB

.text
Size: 515KB - Virtual size: 514KB

.rdata
Size: 71KB - Virtual size: 71KB

.data
Size: 6KB - Virtual size: 20KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 395KB - Virtual size: 394KB

.reloc
Size: 21KB - Virtual size: 21KB