6b0d6dbf9d6a411d35b250595cff4b3f | Triage

Sharing

General

Target

6b0d6dbf9d6a411d35b250595cff4b3f
Size

212KB
MD5

6b0d6dbf9d6a411d35b250595cff4b3f
SHA1

22e3dfe9ff7968f143237d90aeb6bf51de0ecc59
SHA256

e5c92201b021ea0cde8a889902f2404c100a903a862be17e7a387d331446f83f
SHA512

64a3072be6c8203b6f031c738c50d0b21ca8323ac444fa0907bf7fbb3bae7cec8f50b7b5a03b23047eee4638d6a9de91c99738611e88db57da7f079944105732
SSDEEP

6144:iDpla3f0AQ2Zm63AEGLozFsKxrxiHMTYTzxxjXPfp:iDplahvMLozFJ0FX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b0d6dbf9d6a411d35b250595cff4b3f

Files

6b0d6dbf9d6a411d35b250595cff4b3f
.exe windows:4 windows x86 arch:x86

10c85e16b6779e274a5c6e4c58ed8476

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
lstrcatA
HeapDestroy
GetFileAttributesExA
HeapSummary
GetLogicalDriveStringsA
CompareStringA
EnumSystemLocalesA
ReadConsoleOutputA
GlobalGetAtomNameA
GetVolumePathNameA
GetThreadIOPendingFlag
SetFilePointer
GetProcessShutdownParameters
GlobalFindAtomA
GetExitCodeProcess
SetConsoleOutputCP
DeviceIoControl
GetSystemTime
GlobalFree
FillConsoleOutputCharacterA
SetFileAttributesA
ReadConsoleOutputAttribute
GetPrivateProfileSectionNamesW
GetDiskFreeSpaceExA
RegisterWaitForInputIdle
FindFirstVolumeMountPointW
VirtualAlloc
GetEnvironmentStringsA
GetDllDirectoryA
IsBadReadPtr
InterlockedExchange
WriteConsoleOutputCharacterA

wininet

InternetConnectA
InternetOpenW
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
InternetSetOptionW
InternetReadFile

Sections

.data
Size: - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 825KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ