6c93af68d88185109cdd8c5bdb310542 | Triage

Sharing

General

Target

6c93af68d88185109cdd8c5bdb310542
Size

347KB
MD5

6c93af68d88185109cdd8c5bdb310542
SHA1

0165c396f06c31c9e7ca892c9528d1df567271ab
SHA256

9898795c01aa24bccb59f559fe54d289c2b1eb4cf7278c7d0bda05c4084d5e59
SHA512

b01f99465fc49218c4da7fa2b64e3f798d00f2c5a78740c0ef362284efc91a83d54432ce536996c4d29f25a802828ef563d25e62ffb7e7b04753f01947d7643d
SSDEEP

6144:hQp8ix91HA11SHeF4qjjo+5fUs+0KrQgEbJHSYBpE82v+JC+8F:cr1HAQ+F4qPbfL+0qpEbAKc+Jz8F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c93af68d88185109cdd8c5bdb310542

Files

6c93af68d88185109cdd8c5bdb310542
.exe windows:4 windows x86 arch:x86

a1f34f4e87037b84e8757ae5def13fca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
FreeLibrary
GetProcAddress
EnumCalendarInfoExA
LoadLibraryW
WideCharToMultiByte
DeleteFileW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalFree

oleaut32

VARIANT_UserFree
GetErrorInfo
VarUI1FromUI4
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

msimg32

TransparentBlt

Sections

.text
Size: 233KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE