6a44ea9f47139756f80a6fe2940ee177

General

Target

6a44ea9f47139756f80a6fe2940ee177
Size

455KB
MD5

6a44ea9f47139756f80a6fe2940ee177
SHA1

65607c42b9b44209c48aa3eea91038d776d34004
SHA256

4ea030d40090065906ba1095bcd68b46279f6701494f11330fc0bb136c365eb2
SHA512

4dcc024facfe064441efd3e02f4b6922eb0bc8eade6d7e509eff5ecdf0f9402b322e762941e156727b6a35d56bb4bcdbd11e4ef2678a055444c483645bf54785
SSDEEP

6144:fJUd/YMJCWYXVTkPSLpSxJuG1ikGHYv707zVCZwPJQYjHdmUgZZVVMSKSk:2d6WFaVSxkGV07zVCqPJQ/UsZHMSv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a44ea9f47139756f80a6fe2940ee177

Files

6a44ea9f47139756f80a6fe2940ee177
.exe windows:4 windows x86 arch:x86

a938517fb57a8c76478b09674bd36b14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginPaint
RegisterClassExW
LoadMenuW
LoadCursorW
DrawTextW
TranslateAcceleratorW
TranslateMessage
GetMessageW
FindWindowW
EndPaint
PostQuitMessage
LoadStringW
SetTimer
EnableWindow
DialogBoxParamW
DefWindowProcW
EndDialog
wsprintfW
CreateWindowExW
LoadIconW
SendMessageW
ShowWindow
UpdateWindow
MessageBoxW
DestroyWindow
GetWindowRect
DestroyCursor
HideCaret
GetSubMenu
GetWindowPlacement
GetSystemMetrics
DialogBoxIndirectParamW
MessageBeep
InflateRect
InsertMenuItemW
DestroyIcon
GetSysColor
GetWindowLongW
InsertMenuW
SetClipboardViewer
DispatchMessageW
GetWindowTextW

kernel32

lstrlenA
lstrcmpA
GetLastError
CreateFileW
GetCurrentDirectoryW
GetStartupInfoA
GetModuleHandleW
lstrlenW
SetLastError
GetVersionExW
ExitProcess
GetModuleHandleA
ReadFile

comctl32

ord17

msvcrt

_exit
_XcptFilter
exit
__p__acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
memset

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a938517fb57a8c76478b09674bd36b14

Headers

File Characteristics

Imports

user32

kernel32

comctl32

msvcrt

Sections

.text Size: 165KB - Virtual size: 164KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 37KB - Virtual size: 37KB

.rsrc Size: 188KB - Virtual size: 187KB

.text
Size: 165KB - Virtual size: 164KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 37KB - Virtual size: 37KB

.rsrc
Size: 188KB - Virtual size: 187KB