666b6ec568b6ce6bd9a8c26c193a2997

Sharing

Copy URL Twitter E-mail

General

Target

666b6ec568b6ce6bd9a8c26c193a2997
Size

166KB
MD5

666b6ec568b6ce6bd9a8c26c193a2997
SHA1

533522811740c538003dd2ac2e60e4362032bfa2
SHA256

e4a922d27b9415ce61738a965f23e17a169ddd67b37187649569ab3d9577d3ec
SHA512

1f18d09f8ca3ca76e3eb28d771a2edd2c91861defb7ae37abef66dc1385330bc65eea5c2965d779b6a5da11f5ddfde3cabe582c134b777b255e1b5d7d0efc310
SSDEEP

3072:LDqYZOxFf3rjQpGId3/tdFl6EKhe9JAV/oT+avW0tBZuJtZZU:EsGIdlLl6EYe9JGAPHZu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
666b6ec568b6ce6bd9a8c26c193a2997

Files

666b6ec568b6ce6bd9a8c26c193a2997
.exe windows:5 windows x86 arch:x86

527a03fc53da85adc26925aeb15dbb0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetClipBox
RectVisible
CreatePen
SetMapMode
SetTextColor
SetStretchBltMode
SetTextAlign
RestoreDC
CreateSolidBrush
LineTo
CreateCompatibleDC
SelectObject
GetObjectA
GetStockObject
PatBlt
GetPixel
GetDeviceCaps
CreateFontIndirectA
SelectPalette
CreatePalette
GetTextMetricsA
SaveDC
DeleteObject

kernel32

QueryPerformanceCounter
lstrcmpiW
DeleteFileW
lstrlenW
GlobalFindAtomA
SetCurrentDirectoryA
GetThreadLocale
GetACP
GetTickCount
DeleteFileA
GetCurrentThread
GetCurrentThreadId
GetProcessHeap
GetCurrentProcess
GetVersion
GetStartupInfoA
VirtualAlloc
lstrcmpiA
VirtualFree
GetDriveTypeA
GetCommandLineW
GetModuleHandleA
GetConsoleOutputCP
RemoveDirectoryA
GetOEMCP
IsDebuggerPresent
GlobalFindAtomW
GetCommandLineA
lstrlenA
CopyFileA
GetWindowsDirectoryA
lstrcmpA
GetModuleHandleW
GetCurrentProcessId
GetUserDefaultLangID
MulDiv

user32

GetParent
TranslateMessage
GetDesktopWindow
CharNextA
GetSystemMetrics
GetDC

glu32

gluNurbsCallback

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Emawccjw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Kjkq, Gl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

527a03fc53da85adc26925aeb15dbb0b

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 10KB - Virtual size: 10KB

Emawccjw Size: 512B - Virtual size: 4KB

.rdata Size: 26KB - Virtual size: 25KB

Kjkq, Gl Size: 512B - Virtual size: 4KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 10KB - Virtual size: 10KB

Emawccjw
Size: 512B - Virtual size: 4KB

.rdata
Size: 26KB - Virtual size: 25KB

Kjkq, Gl
Size: 512B - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 27KB - Virtual size: 26KB