6805ce176e8d48eff988b562019051f0

Sharing

Copy URL Twitter E-mail

General

Target

6805ce176e8d48eff988b562019051f0
Size

137KB
MD5

6805ce176e8d48eff988b562019051f0
SHA1

666d47f9015075c0fb6bd92120e2e84685da1e28
SHA256

3cbf5bd652c35d1ef4531bc9e85e773dd5ad36e1739cc7a1fbbf9d759bd3a1e5
SHA512

433f1eb86e21f66073152c6d8b02a8198729550e857057553b24cee56be43f9670ded3bd68f677e811fdd10e8c8511ee9383b4566056955afc13cb2bfbe6f479
SSDEEP

3072:D5DK2e7MXd6YPJ4s+HrOIaTJjREB7y2z6O3ZXnKFZ1gV58:0YAY+1OIaT5RPIZcSVW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6805ce176e8d48eff988b562019051f0

Files

6805ce176e8d48eff988b562019051f0
.exe windows:5 windows x86 arch:x86

342d347d79ea335fffd766604786b304

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SystemTimeToFileTime
GetDateFormatA
GetStartupInfoA
RaiseException
GetCommandLineW
GetVersionExW
IsBadCodePtr
VirtualProtect
GetModuleHandleA

user32

SetWindowPlacement
LoadCursorA
SetCapture
ScreenToClient
GetMenuItemCount
UnregisterClassA
GetPropA
SetWindowsHookExA
InvalidateRect
SendMessageA
GetClientRect

msvcrt

log10
__getmainargs
_vsnprintf
_acmdln
strpbrk
__p__fmode
__setusermatherr
__lc_codepage
_adjust_fdiv
__set_app_type
__p__commode
exit
_initterm
_XcptFilter
_putenv
fread
cos
_except_handler3

version

VerInstallFileW
VerQueryValueW
VerLanguageNameA

advapi32

InitializeAcl
OpenSCManagerA
CloseServiceHandle
RegOpenKeyA
EqualSid
RegQueryValueExA
LookupPrivilegeValueA
CryptGenRandom
IsValidSid
CryptCreateHash
RegSetValueExA
RegCreateKeyExW

oleaut32

SysAllocStringByteLen
SysReAllocStringLen
GetActiveObject
SysStringByteLen
SafeArrayGetElement
SafeArrayGetUBound
SysAllocStringLen
CreateErrorInfo

shell32

SHChangeNotify
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHAppBarMessage

ole32

DoDragDrop
IsEqualGUID
CLSIDFromString
CoUninitialize
OleFlushClipboard
OleSetClipboard
CoGetInterfaceAndReleaseStream

comctl32

InitCommonControls
CreatePropertySheetPageW
PropertySheetW
ImageList_GetBkColor
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_Destroy

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

342d347d79ea335fffd766604786b304

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

version

advapi32

oleaut32

shell32

ole32

comctl32

Sections

.text Size: 91KB - Virtual size: 90KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 91KB - Virtual size: 90KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 29KB - Virtual size: 29KB