68f4e62488ecebf1a2be4a8b7ec92be9

Sharing

Copy URL Twitter E-mail

General

Target

68f4e62488ecebf1a2be4a8b7ec92be9
Size

652KB
MD5

68f4e62488ecebf1a2be4a8b7ec92be9
SHA1

3f60a5144bc60d70773218a84e10b542358402f2
SHA256

6b22938d94b73d9eadbde51601c5b8a0f42043cb46d36389657e21a7c0864557
SHA512

7718f0ffaff3b8919a2e3c779db98672b8dea0498c84265a126ead51db768f189a46d8c64ad9782c82c9f231be993e08e5852b66e2d4159c81e954df55c9ea1b
SSDEEP

12288:iDUHBfEHnBgVpR5TqLALNPIuy0KBhWx1FqetYHxjbGHR3:auBfEHBgVpjmaNPLmhWjYetwjbGx3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68f4e62488ecebf1a2be4a8b7ec92be9

Files

68f4e62488ecebf1a2be4a8b7ec92be9
.exe windows:4 windows x86 arch:x86

62cfac9ff9aceec941239219288a9bfc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetOEMCP
Sleep
VirtualFree
HeapCreate
SizeofResource
GetModuleHandleW
GetACP
CloseHandle
ReadFile
TlsFree
MapViewOfFile
RaiseException
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetEnvironmentStrings
FileTimeToLocalFileTime
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
SetStdHandle
InterlockedIncrement
HeapAlloc
GetFileType
CreateEventA
CreateFileW
GlobalLock
DuplicateHandle
FindNextFileA
FindFirstFileA
lstrcmpA
GetProcessHeap
GetProcAddress
DeleteFileW
GetCPInfo
GetWindowsDirectoryA
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
QueryPerformanceCounter
ExitProcess
SetHandleCount
EnterCriticalSection
HeapFree
LeaveCriticalSection
GetLocaleInfoA
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
IsDebuggerPresent
SetLastError
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetExitCodeProcess
LocalFree
SetEvent
SetFileAttributesA
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
GetStringTypeA
WideCharToMultiByte
FreeEnvironmentStringsW
CreateFileA
ExpandEnvironmentStringsA
LocalAlloc
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindFirstFileW
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
GetConsoleOutputCP
GetStdHandle
GetVersion
GetModuleHandleA
GetCurrentThread
GetTickCount
GetCurrentProcessId
GetCurrentThreadId
GetLastError
FreeLibrary
GetCommandLineA

user32

GetDlgItem
SetWindowLongA
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
SetFocus
DispatchMessageA
RegisterClassA
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
ScreenToClient
ReleaseDC
GetDC
PeekMessageA
EndPaint
SetWindowPos
PostQuitMessage
FillRect
SetForegroundWindow
MessageBoxA
GetSysColor
SystemParametersInfoA
GetFocus
wsprintfA
GetClientRect
SetCursor
LoadCursorA
LoadIconA
DestroyWindow
GetDesktopWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteDC
CreateSolidBrush
SetTextColor

advapi32

RegOpenKeyExA
RegCreateKeyExA

msvcrt

free
_exit
exit

Sections

.text
Size: 615KB - Virtual size: 941KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62cfac9ff9aceec941239219288a9bfc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 615KB - Virtual size: 941KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 11KB - Virtual size: 11KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 615KB - Virtual size: 941KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 18KB - Virtual size: 18KB