6200803fba9ca84e91973dee7babce7e

Sharing

Copy URL Twitter E-mail

General

Target

6200803fba9ca84e91973dee7babce7e
Size

184KB
MD5

6200803fba9ca84e91973dee7babce7e
SHA1

4055877c9a0b3a531c2ffe3a2ee344ed7acf5af9
SHA256

8dc844ca1585fafbaf4295512f8037f2f98ec3bf12de67bb228ef3f62684859d
SHA512

540f133a385aad0662b6caa470fd3d8ecb01086ce2717a1236782edb3a45906d47f8a76e4b1d3926ba95214e62ddbea836c2af8588a7add21115000f75fd81b8
SSDEEP

3072:Ii4Ffvj8GDq0nPZ2E/HhliodTaXD9njXXGQSF+QgKSm9hX8on9:I7ftqYHbiImDquKSmrMon

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6200803fba9ca84e91973dee7babce7e

Files

6200803fba9ca84e91973dee7babce7e
.exe windows:4 windows x86 arch:x86

3c385907dd9a37624cba76609980a698

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
ExpandEnvironmentStringsA
GetVersionExA
InterlockedCompareExchange
OpenProcess
TerminateProcess
CreateMutexA
CreateThread
Sleep
MulDiv
HeapCreate
SetUnhandledExceptionFilter
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
RaiseException
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
SetFilePointer
ReadFile
GetProcAddress
WideCharToMultiByte
HeapSize
VirtualAlloc
VirtualFree
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapReAlloc
GetCurrentProcess
ExitProcess
HeapAlloc
HeapFree
RemoveDirectoryA
DeleteFileA
CreateProcessA
IsBadCodePtr
CreateDirectoryA
LoadLibraryA
SetEndOfFile
GetLastError
CopyFileA
WinExec
GetTempPathA
CreateFileA
WriteFile
CloseHandle

advapi32

RegDeleteKeyA
RegCloseKey
RegOpenKeyA
RegSetValueExA
RegCreateKeyA
RegQueryValueExA

comctl32

InitCommonControlsEx
PropertySheetA

comdlg32

PrintDlgA
GetSaveFileNameA

gdi32

StartPage
EndDoc
DeleteObject
CreateCompatibleDC
GetStockObject
CreateFontA
CreateSolidBrush
SetBkMode
SetBkColor
GetDeviceCaps
LineTo
MoveToEx
SetTextColor
StartDocA
EndPage
BitBlt
GetObjectA
SelectObject
DeleteDC

ole32

CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

SysAllocString
SysFreeString

rasapi32

RasEnumEntriesA
RasEnumDevicesA
RasEnumConnectionsA
RasGetEntryPropertiesA
RasDialA
RasDeleteEntryA
RasSetEntryPropertiesA
RasSetEntryDialParamsA
RasGetConnectStatusA
RasHangUpA
RasGetErrorStringA

rpcrt4

UuidToStringA
UuidCreate

shell32

SHGetSpecialFolderPathA

user32

LoadImageA
MessageBoxA
KillTimer
GetDC
wsprintfA
EndDialog
GetWindowThreadProcessId
GetWindowTextA
DispatchMessageA
SetWindowTextA
IsDialogMessageA
TranslateAcceleratorA
TranslateMessage
DialogBoxParamA
ShowWindow
SetDlgItemTextA
SendDlgItemMessageA
PostQuitMessage
EnableWindow
GetDlgItem
GetDlgItemTextA
SetWindowPos
ClientToScreen
GetClientRect
SystemParametersInfoA
GetWindowRect
SetTimer
SetFocus
ScreenToClient
CloseWindow
GetWindow
DefWindowProcA
GetSysColor
EnumWindows
DrawTextA
GetParent
CheckDlgButton
IsDlgButtonChecked
BringWindowToTop
DestroyWindow
SendMessageA
GetMessageA
IsWindow
SetWindowLongA
BeginPaint
GetSysColorBrush
FillRect
EndPaint
InvalidateRect
LoadAcceleratorsA
CreateDialogParamA

wininet

InternetOpenA
InternetReadFile
InternetOpenUrlA
InternetQueryDataAvailable
InternetCloseHandle

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c385907dd9a37624cba76609980a698

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

comdlg32

gdi32

ole32

oleaut32

rasapi32

rpcrt4

shell32

user32

wininet

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 40KB - Virtual size: 87KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 40KB - Virtual size: 87KB

.rsrc
Size: 60KB - Virtual size: 56KB