c6c2bf8cf4ec5be80792dd230698de00657a77ed6ebc696779c58681e0141628

Sharing

Copy URL Twitter E-mail

General

Target

c6c2bf8cf4ec5be80792dd230698de00657a77ed6ebc696779c58681e0141628
Size

305KB
MD5

a9d0aecd9cd0e513f528403c8658c4d0
SHA1

8bb695deafeab0f0e70aeb6594e79f65282608b6
SHA256

c6c2bf8cf4ec5be80792dd230698de00657a77ed6ebc696779c58681e0141628
SHA512

229fefd28401e3af75caca921d57cb98f630e83d2a36f20ca85b79d1ed80b1731d9bf2903a2632269394a05ce7fc7a712d5d11f917c932b78681b6b68e820c6d
SSDEEP

6144:afQyc8kfTwYmDSPLP+9b034qWGSEkuafd1pdC6kF88+Y8u5GsSCw:mNePLIqWtEkuafdBFRow

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6c2bf8cf4ec5be80792dd230698de00657a77ed6ebc696779c58681e0141628

Files

c6c2bf8cf4ec5be80792dd230698de00657a77ed6ebc696779c58681e0141628
.dll windows:6 windows x86

22f9da2ddd11bbfa83531264fe2976d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SystemTimeToTzSpecificLocalTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetConsoleMode
GetConsoleOutputCP
SetStdHandle
SetFilePointerEx
GetStringTypeW
SetEnvironmentVariableW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
LCMapStringW
GetFileType
GetStdHandle
ExitProcess
HeapQueryInformation
GetModuleHandleExW
GetCommandLineW
GetCommandLineA
InterlockedFlushSList
RtlUnwind
OutputDebugStringW
GetFileAttributesExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentProcess
WriteFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FormatMessageW
LocalFree
GlobalFree
GlobalUnlock
CompareStringW
GlobalFindAtomW
LoadLibraryA
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CreateEventW
CloseHandle
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
FindResourceW
SizeofResource
LockResource
LoadResource
LoadLibraryExW
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
LeaveCriticalSection
EnterCriticalSection
SetLastError
OutputDebugStringA
GetACP
WideCharToMultiByte
MultiByteToWideChar
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
HeapFree
WriteConsoleW

user32

SetWindowTextW
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
LoadIconW
UnhookWindowsHookEx
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
RemovePropW
GetPropW
SetPropW
RedrawWindow
EndPaint
BeginPaint
SetForegroundWindow
UpdateWindow
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DrawTextW
BeginDeferWindowPos
SetWindowPos
DestroyWindow
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
UnregisterClassW
GetClientRect
SetRectEmpty
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
GetWindow
GetWindowTextW
GetScrollPos
GetLastActivePopup
GetWindowThreadProcessId
ClientToScreen
RealChildWindowFromPoint
SetTimer
KillTimer
GetForegroundWindow
InvalidateRect
OffsetRect
GetParent
PostMessageW
PostQuitMessage
SendMessageW
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExW
CallNextHookEx
SetCursor
EnableWindow
IsWindowEnabled
MessageBoxW
GetWindowLongW
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
ReleaseDC
GetSystemMetrics
GetSysColorBrush
LoadCursorW
CharUpperW
DeferWindowPos
DestroyMenu

gdi32

Escape
GetClipBox
GetStockObject
PtVisible
RectVisible
RestoreDC
SaveDC
SelectObject
SetMapMode
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
DeleteObject
GetDeviceCaps
SetTextColor
SetBkColor
DeleteDC
CreateBitmap

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

ShellExecuteW

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathFindExtensionW

ole32

CoTaskMemFree
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize

oleaut32

VariantChangeType
VariantClear
VariantInit
SysAllocString
SysFreeString

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22f9da2ddd11bbfa83531264fe2976d2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

oleacc

Sections

.text Size: 174KB - Virtual size: 173KB

.rdata Size: 59KB - Virtual size: 58KB

.data Size: 6KB - Virtual size: 17KB

.rsrc Size: 51KB - Virtual size: 51KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 174KB - Virtual size: 173KB

.rdata
Size: 59KB - Virtual size: 58KB

.data
Size: 6KB - Virtual size: 17KB

.rsrc
Size: 51KB - Virtual size: 51KB

.reloc
Size: 13KB - Virtual size: 13KB