2e6214d9bbf6ca870911d8d661745052

Sharing

Copy URL Twitter E-mail

General

Target

2e6214d9bbf6ca870911d8d661745052
Size

261KB
MD5

2e6214d9bbf6ca870911d8d661745052
SHA1

577cb5aee1f1718779a8c6a3ef71fdcaa5499b3b
SHA256

5c1ec4e5831ec30a1c1dc549d469ef6ddbfa9df1aadc1822fed6c9973f04b6a1
SHA512

f597b3713e822749f1b4b723a865fa5c6cb377a311f6aaead89e3908445f8b2a9ca024f712375b9cb110446e059e29349dcd0c1af8ff0779f531daa416eca77e
SSDEEP

6144:ImfpyCsrOBMNZxXE4eUSY7GRqKKCGb76j:hfOAyIBY7i9I6j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e6214d9bbf6ca870911d8d661745052

Files

2e6214d9bbf6ca870911d8d661745052
.exe windows:4 windows x86 arch:x86

cdbe3be2970c9678d04550019cf810fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetBkColor
GetClipRgn
GetCurrentObject
GetDCBrushColor
GetDCPenColor
GetFontLanguageInfo
GetFontUnicodeRanges
GetMapMode
GetMetaRgn
GetNearestPaletteIndex
GetPixelFormat
GetPolyFillMode
GetRandomRgn
GetStretchBltMode
GetSystemPaletteUse
GetTextCharacterExtra
GetTextCharsetInfo
GetTextColor
SetPixel
SetSystemPaletteUse
SetTextCharacterExtra
SetTextColor
SetTextJustification

kernel32

CloseHandle
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
FindResourceA
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalAlloc
GlobalFlags
GlobalHandle
GlobalSize
InitializeCriticalSection
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalFlags
LockResource
MoveFileA
QueryPerformanceCounter
SetFilePointer
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_chgsign
_copysign
_chgsign
_errno
_fgetchar
_fileno
_fileno
_fmode
_fpclass
_fpclass
_fputchar
_fputwchar
_fsopen
_fcvt
_getw
_initterm
_iob
_itoa
_lock
_memccpy
_memicmp
_onexit
_rmtmp
_scalb
_stat
_strdup
_stricmp
_strlwr
_strnset
_strrev
_strtime
_swab
_swab
_tempnam
_unlock
_vsnprintf
_wcsnicmp
_wfdopen
_wfreopen
_wfsopen
_wfullpath
_wmakepath
_wperror
_wpopen
_wstrdate
_wstrtime
_wtmpnam
abort
atoi
calloc
clearerr
ctime
div
exit
fclose
fflush
fgetws
fopen
fprintf
fread
free
freopen
fscanf
fwrite
fwscanf
gmtime
iscntrl
ispunct
iswalnum
ldiv
malloc
memcmp
memmove
memset
memcpy
printf
puts
rand
realloc
scanf
setbuf
signal
sprintf
srand
strcat
strcmp
strcpy
strlen
strncmp
strstr
time
tmpfile
toupper
ungetwc
vfprintf

user32

BeginPaint
CallWindowProcA
CheckDlgButton
DrawTextA
EndDialog
EndPaint
GetCursor
GetDlgItem
GetDlgItemInt
GetForegroundWindow
GetInputState
GetKeyboardType
GetMenu
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuState
GetPropA
GetQueueStatus
GetScrollPos
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
IsWindowEnabled
IsWindowUnicode
PostMessageA
RemovePropA
SendMessageA
SetDlgItemTextA
SetFocus
ShowWindow
WindowFromDC

Sections

.text
Size: 230KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cdbe3be2970c9678d04550019cf810fc

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 230KB - Virtual size: 229KB

.data Size: 18KB - Virtual size: 18KB

.rdata Size: 3KB - Virtual size: 2KB

.eh_fram Size: 2KB - Virtual size: 2KB

.bss Size: - Virtual size: 28KB

.idata Size: 5KB - Virtual size: 5KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.text
Size: 230KB - Virtual size: 229KB

.data
Size: 18KB - Virtual size: 18KB

.rdata
Size: 3KB - Virtual size: 2KB

.eh_fram
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 28KB

.idata
Size: 5KB - Virtual size: 5KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B