268c6da28bbf54fdcda16f6ec1abe49d

Sharing

Copy URL Twitter E-mail

General

Target

268c6da28bbf54fdcda16f6ec1abe49d
Size

249KB
MD5

268c6da28bbf54fdcda16f6ec1abe49d
SHA1

05ff42fbbb8b8d758da00b5b4f39c7c6a656be2e
SHA256

19e457e67d45468e074c711dccbfe562b7a1d3e3a4428f4a092fd956909a8e7e
SHA512

e3b9d9e8a2cfe4da3e7bd3a1d38f51772976fbed4dae4320eebf351d9771de77eeb6ab8f211676d716b7fb03e9cb08ef4252b3e936f632eff89cd14d56bae60c
SSDEEP

6144:/C+03oI05lLtfDE28wPN1cM7uiHP0BCdwX:92oI05lu28wN15uiO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
268c6da28bbf54fdcda16f6ec1abe49d

Files

268c6da28bbf54fdcda16f6ec1abe49d
.exe windows:5 windows x86 arch:x86

e0b3de55276aa032e83213daf189c407

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFix
HeapReAlloc
lstrlenA
WritePrivateProfileStructA
GetModuleHandleExA
SetLocalTime
SetEndOfFile
InterlockedIncrement
_lwrite
CreateDirectoryW
GetProfileSectionA
SetVolumeMountPointW
OpenSemaphoreA
GetModuleHandleW
EnumTimeFormatsW
CreateActCtxW
CreateDirectoryExW
GetDriveTypeA
TlsSetValue
GetPriorityClass
GetVolumeInformationA
LoadLibraryW
GetConsoleMode
Sleep
ReadConsoleInputA
_hread
GetPrivateProfileStructW
GetComputerNameExA
SetConsoleMode
Beep
SetConsoleCursorPosition
WriteConsoleW
GetBinaryTypeA
WritePrivateProfileSectionW
TerminateProcess
GetAtomNameW
ReadFile
GetModuleFileNameW
CreateFileW
GetOverlappedResult
CompareStringW
GetACP
FillConsoleOutputCharacterA
SetCurrentDirectoryA
FindFirstFileA
OpenMutexW
GetHandleInformation
GetLastError
IsDBCSLeadByteEx
GetCurrentDirectoryW
GetThreadLocale
ReadConsoleOutputCharacterA
GetProcAddress
IsValidCodePage
CopyFileA
SetComputerNameA
BuildCommDCBW
ResetEvent
ProcessIdToSessionId
UnhandledExceptionFilter
OpenWaitableTimerW
LocalAlloc
GetFileType
AddAtomW
GetCommMask
SetSystemTime
SetEnvironmentVariableA
WTSGetActiveConsoleSessionId
SetConsoleTitleW
FreeEnvironmentStringsW
RequestWakeupLatency
CompareStringA
GetCPInfoExA
SetCalendarInfoA
_lopen
GetVersionExA
ReadConsoleInputW
LocalSize
LCMapStringW
CopyFileExA
CloseHandle
SetStdHandle
GetConsoleCP
SetFilePointer
VerifyVersionInfoW
GetTempFileNameW
GetCommandLineW
HeapSetInformation
GetStartupInfoW
InterlockedDecrement
DecodePointer
ExitProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
WriteFile
GetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapValidate
IsBadReadPtr
TlsAlloc
TlsGetValue
TlsFree
SetLastError
HeapCreate
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
HeapAlloc
GetModuleFileNameA
HeapSize
HeapQueryInformation
HeapFree
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
OutputDebugStringA
OutputDebugStringW
IsProcessorFeaturePresent
RaiseException
FlushFileBuffers

user32

GetListBoxInfo
GetComboBoxInfo
GetMenuBarInfo

advapi32

AdjustTokenPrivileges

Exports

Exports

_CallPattern@8

Sections

.text
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0b3de55276aa032e83213daf189c407

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 159KB - Virtual size: 158KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 20KB - Virtual size: 40KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 159KB - Virtual size: 158KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 20KB - Virtual size: 40KB

.rsrc
Size: 24KB - Virtual size: 24KB