6534b23a03510a55b31e773ba00beb61

Sharing

Copy URL

Twitter E-mail

General

Target

6534b23a03510a55b31e773ba00beb61
Size

464KB
MD5

6534b23a03510a55b31e773ba00beb61
SHA1

6438aaeb233dea04e562d037693ff7029049a7f6
SHA256

73fe11e243b64559048d64bba5d94309da901892bde817e6da286a1c9e6139c2
SHA512

2aaae6e6ce6eef811199573b994ac8876322e5cda0fcdf236bf631f9ea21e723732672af67af921943aa46f9862dddc5ba3e98d1f34bc9aa625309f1a91c71f0
SSDEEP

12288:v2o5+3VlubNiv5+Xv+3nSY2GXLTCLzsbQrGgf/6dxm732:v4x+mSNLaO5sk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6534b23a03510a55b31e773ba00beb61

Files

6534b23a03510a55b31e773ba00beb61
.exe windows:4 windows x86 arch:x86

136eb448e31a73c13cef6d96c47f778d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHBrowseForFolderA
InternalExtractIconListA
SHQueryRecycleBinA
ExtractIconEx
DragQueryFileAorW
DragQueryPoint
ExtractIconExW
RealShellExecuteExW
SHGetFileInfoW
SHChangeNotify
SHQueryRecycleBinW
SHUpdateRecycleBinIcon
DragAcceptFiles
SHAddToRecentDocs
SHGetNewLinkInfo
SHGetPathFromIDListW
SHGetFileInfo
SHGetDataFromIDListW
DragQueryFile

advapi32

CryptDestroyHash
RegOpenKeyExA
CreateServiceW
RegQueryValueW
CryptGetKeyParam
ReportEventA
GetUserNameW
DuplicateToken
CryptGetDefaultProviderW
LookupAccountSidA
RegSetValueExA
RegSaveKeyW
DuplicateTokenEx
RegLoadKeyA
RegCreateKeyExW
RegReplaceKeyW
InitiateSystemShutdownW
LookupAccountNameA
CryptDecrypt
CryptSetHashParam

comdlg32

ReplaceTextW
ChooseFontW
GetSaveFileNameW
GetFileTitleA
PrintDlgA
ChooseFontA

gdi32

GetCurrentPositionEx
GetNearestColor
CopyEnhMetaFileW
GetCurrentObject
CreatePenIndirect
DeviceCapabilitiesExA
CreateCompatibleDC
BeginPath
MaskBlt
SetLayout
AnimatePalette
GetTextAlign

kernel32

FreeEnvironmentStringsW
GetStdHandle
CompareStringW
GetSystemTimeAsFileTime
GetModuleFileNameA
SetUnhandledExceptionFilter
DeleteCriticalSection
InterlockedIncrement
ExitProcess
SetLastError
GetCPInfo
IsValidLocale
EnumDateFormatsW
TlsAlloc
WaitForMultipleObjectsEx
UnhandledExceptionFilter
LoadLibraryA
VirtualQuery
GetFileType
GetStringTypeW
RtlUnwind
GetStartupInfoA
HeapReAlloc
VirtualAlloc
UnmapViewOfFile
GetUserDefaultLCID
FreeLibrary
GetLastError
GetCurrentThreadId
VirtualFree
GetFileSize
FreeEnvironmentStringsA
GetDateFormatA
LeaveCriticalSection
GetEnvironmentStrings
EnterCriticalSection
GetLocaleInfoA
GetTempFileNameW
GetStringTypeA
EnumSystemLocalesA
LCMapStringW
HeapDestroy
LCMapStringA
GetCommandLineA
GetCurrentProcessId
InterlockedExchange
GetTickCount
CompareStringA
GetFileAttributesExW
GetEnvironmentStringsW
GetWindowsDirectoryA
FindFirstFileW
GetLocaleInfoW
TlsSetValue
EnumResourceLanguagesA
GetTimeFormatA
GetModuleHandleW
MultiByteToWideChar
SetHandleCount
GetTimeZoneInformation
GetOEMCP
GetEnvironmentVariableW
HeapFree
GetCurrentThread
GetCurrentProcess
SetConsoleCursorInfo
QueryPerformanceCounter
HeapCreate
WriteFile
CreateWaitableTimerA
GetProfileSectionA
TlsFree
TerminateProcess
IsDebuggerPresent
SetFileAttributesW
CreateDirectoryExW
FindFirstFileExA
HeapSize
LocalAlloc
IsValidCodePage
GetModuleHandleA
SetConsoleCtrlHandler
SetEnvironmentVariableA
FillConsoleOutputAttribute
GetProcAddress
InterlockedDecrement
HeapAlloc
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
GetACP
TlsGetValue
Sleep

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

136eb448e31a73c13cef6d96c47f778d

Headers

File Characteristics

Imports

shell32

advapi32

comdlg32

gdi32

kernel32

Sections

.text Size: 173KB - Virtual size: 172KB

.data Size: 277KB - Virtual size: 276KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 173KB - Virtual size: 172KB

.data
Size: 277KB - Virtual size: 276KB

.rsrc
Size: 13KB - Virtual size: 12KB