6a20f6366470c524101538ab1d933e83

Sharing

Copy URL Twitter E-mail

General

Target

6a20f6366470c524101538ab1d933e83
Size

116KB
MD5

6a20f6366470c524101538ab1d933e83
SHA1

d437352e4ccef8dd9d552995ae479b191dbebd56
SHA256

e755e77fe75142f2cd7624b1cd326a10326477fb72074374e927e888a0f3fb01
SHA512

d42a02fabe9a027470fb8a23d12a3f16595252b416cae0e5b73d950217b294aa19d7cedb4da42dce12a9deff1ce93f860f7445899ec5bd3a6c911748a30a8198
SSDEEP

3072:D27PknZXNsnXPAMxAlUGco2YQuEErYy5qsF1GlR0qWkM7RN:XNs4I2UBo2IEEcy5F00qWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a20f6366470c524101538ab1d933e83

Files

6a20f6366470c524101538ab1d933e83
.exe windows:4 windows x86 arch:x86

6faf4c269331643e147d4d7c1ea77e56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OpenClipboard
GetClassLongA
UnhookWindowsHookEx
WaitMessage
IsWindowUnicode
InvalidateRect
AdjustWindowRectEx
CreatePopupMenu
SetClipboardData
IsCharLowerA
CallWindowProcA
IsCharUpperA
SetPropA
GetCursor
ChildWindowFromPoint
EndPaint
GetScrollPos
CreateMenu
PtInRect
GetClassInfoA
CreateWindowExA
BeginPaint
GetWindowTextA
CharLowerA
SetCapture
GetSubMenu
MoveWindow
TranslateMessage
GetKeyboardState
MapWindowPoints
IsChild
GetKeyState
GetWindowLongA
IsWindowEnabled
DestroyMenu
RegisterClassA
GetDCEx
ShowWindow
InsertMenuItemA
FillRect
DispatchMessageA
KillTimer
IsZoomed
GetDesktopWindow
GetKeyboardLayoutList
CharUpperA
GetFocus
SendMessageW
SetParent
SystemParametersInfoA
GetWindowRect
GetCursorPos
RedrawWindow
GetCapture
GetKeyNameTextA
GetKeyboardType
InsertMenuA
GetMenuItemCount
GetMenu
DefFrameProcA
GetWindowPlacement
GetLastActivePopup

kernel32

GetCommandLineA
GetCommandLineW
FindResourceA
ResetEvent
SetErrorMode
GetDiskFreeSpaceA
FreeResource
GetACP
GetFileType
SizeofResource
GetSystemDefaultLangID
lstrlenW
SetFilePointer
FormatMessageA
GetCurrentThreadId
GetThreadLocale
GetModuleHandleW
HeapDestroy
lstrcmpA
lstrcatA
HeapFree
FindClose
ReadFile
lstrcmpiA
HeapAlloc
DeleteFileA
WriteFile
GetFileSize
Sleep
lstrlenA
CreateEventA
InitializeCriticalSection
GetCurrentProcess
CompareStringA
GetStdHandle
CreateThread
LoadResource
MulDiv
SetEndOfFile
VirtualAlloc
GetProcessHeap
CloseHandle
MoveFileA
IsBadReadPtr
GlobalAlloc
GetLastError
FreeLibrary
GetStringTypeA
lstrcpynA
LoadLibraryA
DeleteCriticalSection
LocalFree
ExitProcess
SetThreadLocale
GetFullPathNameA
GetUserDefaultLCID
WideCharToMultiByte
GetVersionExA
RaiseException
EnumCalendarInfoA
GetFileAttributesA
VirtualAllocEx
SetHandleCount

gdi32

GetBitmapBits
CreatePalette
GetTextColor

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

_5ipWGL1PLfXwy@12

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6faf4c269331643e147d4d7c1ea77e56

Headers

File Characteristics

Imports

user32

kernel32

gdi32

version

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 99KB - Virtual size: 242KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 99KB - Virtual size: 242KB

.rsrc
Size: 2KB - Virtual size: 1KB