6ec7209cddcfa1fa238f34dbf6fd54e0

Sharing

Copy URL Twitter E-mail

General

Target

6ec7209cddcfa1fa238f34dbf6fd54e0
Size

272KB
MD5

6ec7209cddcfa1fa238f34dbf6fd54e0
SHA1

c15f1c5a90ca3989903f586f916d507afd68242c
SHA256

7b43dfb3686e4a498858217402f59095334c79e327719dec4e93df94aeb6736a
SHA512

8b71ea25f2f0e4d487f4ed68dabe91bf2d79b41a217a6e150ed360bf38e3abce6e992cf212e4be1eec0b9f1c3d1b42d17f00a89840b7c689baf079cd2976e0dd
SSDEEP

3072:l13cCdeVJA1mQ9U903j7Z/M0tplvKRgMIRwHU9/TEAfVG87TcXH4kZFFZYsR6o:Pxdg0JggMc/TEmL3CY6ZYsR6o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ec7209cddcfa1fa238f34dbf6fd54e0

Files

6ec7209cddcfa1fa238f34dbf6fd54e0
.exe windows:5 windows x86 arch:x86

d1e70908603ec6843ba32b5e25af5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

??3@YAXPAX@Z
malloc
free
sscanf
atoi
??2@YAPAXI@Z
memmove
_splitpath
_makepath

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyA
RegOpenKeyExA
RegDeleteValueA
RegQueryValueA

kernel32

SetErrorMode
GetCommandLineA
lstrcpynA
GetModuleHandleA
SetCurrentDirectoryA
GetLastError
GlobalFree
GetWindowsDirectoryA
DeleteFileA
CreateFileMappingA
RemoveDirectoryA
FindClose
FindNextFileA
GetCurrentDirectoryA
GetPrivateProfileStringA
InterlockedIncrement
InterlockedDecrement
GetSystemDirectoryA
lstrlenW
LocalFree
FormatMessageA
CreateProcessA
MulDiv
MultiByteToWideChar
GetCurrentProcess
GetVersionExA
GetModuleFileNameA
WideCharToMultiByte
TerminateProcess
GetExitCodeThread
GetPrivateProfileIntA
lstrcatA
lstrcmpiA
lstrcpyA
CloseHandle
GetFileAttributesA
CreateFileA
GetProcAddress
lstrlenA
LoadLibraryA
FindFirstFileA
FreeLibrary
GlobalAlloc
ExitProcess
SetFileAttributesA

gdi32

CreateBitmap
DPtoLP
GetMapMode
GetTextMetricsA
SetBkMode
GetStockObject
SetTextColor
StretchBlt
GetObjectA
BitBlt
GetDeviceCaps
CreateCompatibleBitmap
CreateFontIndirectA
SelectObject
DeleteDC
CreateCompatibleDC
SetBkColor
SetMapMode
DeleteObject

user32

ReleaseDC
LoadAcceleratorsA
LoadImageA
MessageBoxA
TranslateAcceleratorA
GetWindowLongA
DestroyWindow
GetSysColor
GetMessageA
PostMessageA
ShowWindow
GetParent
CharNextA
CharPrevA
SetWindowTextA
GetDlgItem
SetWindowPos
SetMessageQueue
GetSystemMetrics
EndDialog
EnableWindow
DialogBoxParamA
IsDlgButtonChecked
MsgWaitForMultipleObjects
CheckDlgButton
GetWindowTextA
DefWindowProcA
FillRect
GetClientRect
GetSysColorBrush
MoveWindow
LoadCursorA
SetCursor
ExitWindowsEx
SendDlgItemMessageA
UpdateWindow
MapWindowPoints
GetWindowRect
BringWindowToTop
GetUpdateRect
SetWindowLongA
EnumThreadWindows
CreateDialogParamA
GetDesktopWindow
EnumChildWindows
CreateWindowExA
GetFocus
SetFocus
IsWindowEnabled
GetWindow
MessageBeep
CheckRadioButton
IsChild
GetNextDlgTabItem
LoadIconA
PostQuitMessage
RegisterClassExA
DrawFocusRect
InflateRect
OffsetRect
CopyRect
DrawTextA
RedrawWindow
EndPaint
DrawEdge
BeginPaint
DrawIcon
RegisterClassA
GetClassInfoA
UnregisterClassA
PeekMessageA
WaitMessage
TranslateMessage
DispatchMessageA
GetDC
CallWindowProcA
SendMessageA
FindWindowA
GetLastActivePopup
LoadStringA
IsWindowVisible
InvalidateRect
IsRectEmpty
wsprintfA
SetForegroundWindow

comctl32

InitCommonControlsEx
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

SysFreeString

shlwapi

PathIsURLA
PathIsFileSpecA

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1e70908603ec6843ba32b5e25af5bf8

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 52KB - Virtual size: 52KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 212KB - Virtual size: 212KB

.text
Size: 52KB - Virtual size: 52KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 212KB - Virtual size: 212KB