6af1211ad1bcaae19f1f89837e477ec6

Sharing

Copy URL

Twitter E-mail

General

Target

6af1211ad1bcaae19f1f89837e477ec6
Size

85KB
MD5

6af1211ad1bcaae19f1f89837e477ec6
SHA1

3ec70ec25c60f4f4c9083f8df824a625cac7f46c
SHA256

e1013d1084647e726693d87b58f81fe7897b82b657f228765e49bae3923e4713
SHA512

43a2f79e7a6c5aa9d0d86b62efaeb5f9d43d32027407de55b608d63e0ea4475dcc794da32358e347e3ee3276527bf20c00cd8d3f34c33a1b4a337d249becc023
SSDEEP

1536:K3ETstzWmNGYsTS8W6oH4us91CnhQSXTZdN+LVtwVbdJl9Ygmo/HhzvVrh3:83BsTVOAKnCSjZangF9YkHhzp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6af1211ad1bcaae19f1f89837e477ec6

Files

6af1211ad1bcaae19f1f89837e477ec6
.exe windows:5 windows x86 arch:x86

e885c9fb29dd7f0dac189e8f918d0455

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathParseIconLocationA
PathCommonPrefixA
StrStrIA
ord158
PathFindNextComponentW
ChrCmpIW

kernel32

GetSystemTimeAdjustment
SetFileApisToANSI
GetProcessShutdownParameters
lstrlenA
SetEndOfFile
LoadLibraryExW
GlobalUnfix
PrepareTape
GetCommTimeouts
lstrcpyA
OpenSemaphoreW
lstrcmpiW
CreateFileMappingA
GetModuleHandleExW
MapViewOfFile
EscapeCommFunction

user32

GetClipCursor
GetSubMenu
DrawTextW
MonitorFromPoint
GetWindowRect
DrawCaption
CharUpperA
WindowFromPoint
GetClientRect
CreateIconIndirect
GetDC
GetForegroundWindow
GetMenu
GetAltTabInfoW
AdjustWindowRect
SetClipboardViewer
ModifyMenuA
DestroyCursor
RedrawWindow

gdi32

GetEnhMetaFileHeader
SetMiterLimit
SetDCBrushColor
SetViewportOrgEx
GetStockObject
CreateRectRgnIndirect
PtInRegion
GetFontLanguageInfo
CreateFontA
GetEnhMetaFileA
GetGlyphOutlineA
SetEnhMetaFileBits

Exports

Exports

?_InvertRect@@YGKPAD0PAG@Z
?_SetRect@@YGKPAD0@Z
?_SetRectEmpty@@YGPAXPAKPAEPAI@Z

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 1024B - Virtual size: 643B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RData
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CData
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e885c9fb29dd7f0dac189e8f918d0455

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.itext Size: 1024B - Virtual size: 643B

RData Size: 512B - Virtual size: 44B

CData Size: 3KB - Virtual size: 2KB

.rsrc Size: 68KB - Virtual size: 68KB

.reloc Size: 1024B - Virtual size: 740B

.text
Size: 10KB - Virtual size: 10KB

.itext
Size: 1024B - Virtual size: 643B

RData
Size: 512B - Virtual size: 44B

CData
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 68KB - Virtual size: 68KB

.reloc
Size: 1024B - Virtual size: 740B