6c3a17a265343fc29f119a108fc6f7dd

General

Target

6c3a17a265343fc29f119a108fc6f7dd
Size

23KB
MD5

6c3a17a265343fc29f119a108fc6f7dd
SHA1

58a07b56dba1f39190042b0d747f03250d564ea1
SHA256

c64be5f91386d8ac096207a20e0df80eb0b6ab3eb5ff33d91164c1f02d580ed8
SHA512

befa7fe8a40aa890778a904a3179140416ec34f47b5277dee45d03ff3e7741b494355d0da4191bd6cb4bfb19133e547af0281a15d9834252c7210dbce85ab42e
SSDEEP

384:q9aTp4DTA1oOoFtlFPOtAf9TBZtN0cc98eFW9NvtLtxV5:q9a14fEhoFtHh9FVZc98eg93z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c3a17a265343fc29f119a108fc6f7dd

Files

6c3a17a265343fc29f119a108fc6f7dd
.exe windows:4 windows x86 arch:x86

29c05319ba654c456d1ee9f2b84d3061

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32Next
Process32First
CreateToolhelp32Snapshot
lstrcmpiA
GlobalAlloc
ReadFile
PeekNamedPipe
Sleep
CreateProcessA
GetStartupInfoA
CreatePipe
CreateFileA
GetModuleFileNameA
WinExec
GetTickCount
CreateDirectoryA
GetCommandLineA
GetLastError
CreateMutexA
GetCurrentThreadId
DeviceIoControl
GetVersionExA
GetModuleHandleA
WriteFile
CloseHandle
DeleteFileA
LoadLibraryA
GetProcAddress

user32

GetInputState
PostThreadMessageA
GetMessageA
LoadCursorA
CopyIcon
MessageBoxA
SetSystemCursor

advapi32

RegSetValueExA
RegCreateKeyA
RegOpenKeyA
RegCloseKey

msvcrt

_except_handler3
_controlfp
__set_app_type
__p__fmode
__p__commode
strlen
strcpy
sprintf
memset
printf
strcat
memcpy
strstr
getchar
exit
fclose
fopen
strncpy
fread
fseek
__CxxFrameHandler
fscanf
remove
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
_strlwr

iphlpapi

GetAdaptersInfo

ws2_32

inet_addr

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

msvcirt

??6ostream@@QAEAAV0@H@Z
??6ostream@@QAEAAV0@PBD@Z
?cout@@3Vostream_withassign@@A
?endl@@YAAAVostream@@AAV1@@Z

Sections

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29c05319ba654c456d1ee9f2b84d3061

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

iphlpapi

ws2_32

wininet

msvcirt

Sections

.data Size: 18KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 4KB

.data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 4KB