6af0921cd1ad42b3ae69508b15e7b286

General

Target

6af0921cd1ad42b3ae69508b15e7b286
Size

175KB
MD5

6af0921cd1ad42b3ae69508b15e7b286
SHA1

aca0c0b27c307fc5c226f050fb003349d9cef3af
SHA256

e2b57a510916b234c7a1439680b68737b5f179c72e8446ae3848898314e4d51f
SHA512

6bf8b923cec182d4f5c8905715fbd0f8835ab55faaf12f2d74ad24fb0960c9d9577216c598f38d3332a30bbf9537a263b6063d1bbfeeec874f6d5a47262bd798
SSDEEP

3072:jZgu2+Bm9rchGrIX6eTtaULLr8WKSDH8vIXBfH2k/4i77l7yMOQxGqycNQTyoYU:jZgYB8oqInLL38WK5vIFdgi7B7mgBT++

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6af0921cd1ad42b3ae69508b15e7b286

Files

6af0921cd1ad42b3ae69508b15e7b286
.exe windows:4 windows x86 arch:x86

a153d380e6e1a3a6c8623ac76ff78f2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

SetUnhandledExceptionFilter
GlobalAddAtomW
HeapCreate
IsBadReadPtr
GetEnvironmentStringsW
HeapReAlloc
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStartupInfoA
WriteFile
GetACP
GetModuleFileNameA
SetConsoleCtrlHandler
GetEnvironmentStrings
IsBadWritePtr
GetOEMCP
IsBadCodePtr
FatalAppExitA
EnumResourceNamesA
FreeEnvironmentStringsW
SetFilePointer
GetFileType
HeapDestroy
GetDateFormatW
GetCPInfo
WideCharToMultiByte
VirtualAlloc
SetHandleCount
VirtualFree
GetEnvironmentVariableA
GetStdHandle
GetCurrentThread

gdi32

IntersectClipRect
GetStockObject
FillPath
CreatePatternBrush
Rectangle
SelectClipPath
SetROP2
GetClipBox
EndPath
GetGraphicsMode
MoveToEx
SetGraphicsMode
CloseFigure
LineTo
SetBrushOrgEx
BeginPath
GetWorldTransform
PolylineTo
PolyBezierTo
PolyDraw

Sections

.text
Size: 97KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a153d380e6e1a3a6c8623ac76ff78f2a

Headers

File Characteristics

Imports

setupapi

kernel32

gdi32

Sections

.text Size: 97KB - Virtual size: 488KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 74KB - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 97KB - Virtual size: 488KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 74KB - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 4KB