6bf425c6c025975a2701be32354d8721da3558d985af0cb3c84da844bb232e16

Sharing

Copy URL Twitter E-mail

General

Target

6bf425c6c025975a2701be32354d8721da3558d985af0cb3c84da844bb232e16
Size

793KB
MD5

b1b587ea4d205f2557984d4b65e8374e
SHA1

306651e60d02a52ca4e623ac77989473d0dbeb49
SHA256

6bf425c6c025975a2701be32354d8721da3558d985af0cb3c84da844bb232e16
SHA512

5fcbef8156aa7c7b11a055d282d0c036e4d0e6d33b4fcd5528ba1d6005cd5c18deb496452253a95734f8faf57d59264d7bd61fd9b608e6d9f955975e37b0f3f9
SSDEEP

24576:f6IWZks8hu8OBBj0ibC3tx6LbarqjJM6KwlnrgmrV:f6IWkhu8U0ibMtxMbW6tnsm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6bf425c6c025975a2701be32354d8721da3558d985af0cb3c84da844bb232e16

Files

6bf425c6c025975a2701be32354d8721da3558d985af0cb3c84da844bb232e16
.exe windows x86

b3bd6e68dfb115026eaab591f1405355

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

setupapi

SetupDiGetClassDevsW

pthreadvc2

pthread_self

libsndfile

ord71

mmshellhook

UnSetMMShellHook

version

GetFileVersionInfoA

msacm32

acmFormatEnumW

cddb

CDDBQuery

comctl32

ImageList_Destroy

ws2_32

WSACleanup

winmm

waveOutGetNumDevs

user32

SetScrollPos

gdi32

SetBrushOrgEx

comdlg32

GetOpenFileNameW

advapi32

RegCreateKeyExW

shell32

CommandLineToArgvW

ole32

CoCreateInstance

oleaut32

SysFreeString

hid

HidP_GetCaps

shlwapi

UrlUnescapeA

Sections

.text
Size: 743KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b3bd6e68dfb115026eaab591f1405355

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

setupapi

pthreadvc2

libsndfile

mmshellhook

version

msacm32

cddb

comctl32

ws2_32

winmm

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

hid

shlwapi

Sections

.text Size: 743KB - Virtual size: 3.1MB

.rsrc Size: 49KB - Virtual size: 52KB

.reloc Size: 512B - Virtual size: 512B

.text
Size: 743KB - Virtual size: 3.1MB

.rsrc
Size: 49KB - Virtual size: 52KB

.reloc
Size: 512B - Virtual size: 512B