06e5e7d530cb010f893112d986ac5f5f

Sharing

Copy URL Twitter E-mail

General

Target

06e5e7d530cb010f893112d986ac5f5f
Size

65KB
MD5

06e5e7d530cb010f893112d986ac5f5f
SHA1

a1cd0e2499bcd9ad4aa07d0ff79fad6f9cf1b4e7
SHA256

61fdf25a93810bbc3a6e607540034636d5afd0fe2fd48cbecde8f15f065dffcd
SHA512

f02e48eac55ed371cdf9fb59892a6be7e961c6840e795b4ad6812ed1d807d14231da7c355d520669ff9c57c1df41cfcb93734967b00f94482fb76afdac21617e
SSDEEP

768:NH9dk19uxaof7cuL4I9cmzhwugO8GxDAkFmKcx8xiUlmDzu1ce3XSI:NH9E9uxBf4EzlzhvAzx8xUm1DSI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06e5e7d530cb010f893112d986ac5f5f

Files

06e5e7d530cb010f893112d986ac5f5f
.exe windows:4 windows x86 arch:x86

f59ae05fd0a500749e19d2960a0af39e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32zdll

wsprintfA
ReleaseDC
OemToCharA
MessageBoxA
GetSystemMetrics
GetDC
GetAsyncKeyState
FindWindowA

kernel32zdll

lstrcpyW
lstrlenW
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
CloseHandle
CopyFileA
CreateDirectoryA
CreateFileA
CreateFileMappingA
CreateMutexA
CreateProcessA
CreateThread
DeleteFileA
ExitProcess
FreeResource
FindFirstFileA
FindNextFileA
FindResourceA
FreeLibrary
FreeResource
GetComputerNameA
GetComputerNameW
GetDiskFreeSpaceExA
GetDriveTypeA
GetEnvironmentVariableA
GetFileSize
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileSectionNamesA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetSystemDefaultLangID
GetSystemDirectoryA
GetTempPathA
GetTickCount
GetVersionExA
GetWindowsDirectoryA
GlobalMemoryStatusEx
HeapAlloc
HeapFree
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LoadLibraryA
LoadResource
LockResource
MapViewOfFile
MoveFileExA
MultiByteToWideChar
OpenProcess
ReadFile
RtlMoveMemory
RtlZeroMemory
SetCurrentDirectoryA
SetEndOfFile
SetErrorMode
SetFileAttributesA
SetFilePointer
SizeofResource
Sleep
UnmapViewOfFile
VerLanguageNameA
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA

gdi32zdll

GetDeviceCaps

Sections

ztext
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zrdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

zdata
Size: 4KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zrsrc
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zzzzzzzz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f59ae05fd0a500749e19d2960a0af39e

Headers

File Characteristics

Imports

user32zdll

kernel32zdll

gdi32zdll

Sections

ztext Size: 56KB - Virtual size: 56KB

zrdata Size: 2KB - Virtual size: 2KB

zdata Size: 4KB - Virtual size: 242KB

zrsrc Size: 512B - Virtual size: 404B

zzzzzzzz Size: 512B - Virtual size: 4KB

ztext
Size: 56KB - Virtual size: 56KB

zrdata
Size: 2KB - Virtual size: 2KB

zdata
Size: 4KB - Virtual size: 242KB

zrsrc
Size: 512B - Virtual size: 404B

zzzzzzzz
Size: 512B - Virtual size: 4KB