6def20b869e6533ac2d67390e6aebd56bcf97b9c67ed2a1853d78e0de37b7d0e

Sharing

Copy URL

Twitter E-mail

General

Target

6def20b869e6533ac2d67390e6aebd56bcf97b9c67ed2a1853d78e0de37b7d0e
Size

11.1MB
MD5

41c60b1d10131a0d75b5715f1cf5005a
SHA1

a74725ae72d2f03f2774a4a21b5997cfa9ba60c4
SHA256

6def20b869e6533ac2d67390e6aebd56bcf97b9c67ed2a1853d78e0de37b7d0e
SHA512

9a1ff3116c381ec9bb86640735475b0c5bba4eee37fb98351ce378bee00f4a8ba34c3c1ba7e79bd973398a2b4b4872558c781dfbf270b55b4b5e2db3d454dc5c
SSDEEP

196608:MFnHV4x/Wc1MduM6JpmSc9LgRbVXng91reh1JU56eS+C+N:MFnHV4hT1dM6J0dLgRhQnqh1Cl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6def20b869e6533ac2d67390e6aebd56bcf97b9c67ed2a1853d78e0de37b7d0e

Files

6def20b869e6533ac2d67390e6aebd56bcf97b9c67ed2a1853d78e0de37b7d0e
.exe windows x86

0f89ca529b00c0c40aa3329a0f69bd7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiStreamOut

ws2_32

WSAAsyncSelect

kernel32

TerminateProcess

user32

GetDlgCtrlID

gdi32

LineTo

msimg32

GradientFill

winspool.drv

OpenPrinterA

advapi32

RegQueryValueExA

shell32

Shell_NotifyIconA

ole32

CoGetClassObject

oleaut32

SysAllocStringLen

comctl32

ImageList_GetIcon

oledlg

ord8

comdlg32

ChooseColorA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 4.2MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yesno
Size: 6.9MB - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yesno
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f89ca529b00c0c40aa3329a0f69bd7e

Headers

File Characteristics

Imports

winmm

ws2_32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

comdlg32

msvcrt

iphlpapi

psapi

Sections

.text Size: 4.2MB - Virtual size: 7.9MB

.yesno Size: 6.9MB - Virtual size: 6.9MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.yesno Size: 4KB - Virtual size: 4KB

.text
Size: 4.2MB - Virtual size: 7.9MB

.yesno
Size: 6.9MB - Virtual size: 6.9MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.yesno
Size: 4KB - Virtual size: 4KB