6b43021f1b7f3cc3af4604fd650dbc41

Sharing

Copy URL Twitter E-mail

General

Target

6b43021f1b7f3cc3af4604fd650dbc41
Size

84KB
MD5

6b43021f1b7f3cc3af4604fd650dbc41
SHA1

1bb5b8ca9b0d0285dacb9359699db58c27c04347
SHA256

e603b451976b066315f4f78247486da6f5f652c50270e171f5b3a8cbcf7545c1
SHA512

566d42c0592c40ee8297e14500d13c7e67bb1b5d585018c3aa6e4ce78fb702ae7b1523979522d7c8d1e67fb0bc56b4b0585e19a9685b42cfb7dd9f43781febb9
SSDEEP

1536:Twhkyr/hl/spmAYtb9EftOEz19Hlx5Ct2tblcE5zAhAy/naYUgJZv:TwhJhl/spmAYV9EFOQ19X5Ct2tblcE5i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b43021f1b7f3cc3af4604fd650dbc41

Files

6b43021f1b7f3cc3af4604fd650dbc41
.exe windows:4 windows x86 arch:x86

56889a1ac7bb3603d1bbc27c881a6e0a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMenuState
SendMessageA
DestroyWindow
GetSystemMetrics
InflateRect
MoveWindow
CharUpperA
InvalidateRect
GetMenuItemCount
GetMenuItemID
CheckMenuItem
EnableMenuItem
DrawMenuBar
IsIconic
GetClientRect
DestroyIcon
PostQuitMessage
DefWindowProcA
LoadStringA
GetMenu
GetSubMenu
LoadAcceleratorsA
FindWindowA
GetLastActivePopup
LoadIconA
RegisterClassA
CreateWindowExA
RegisterWindowMessageA
ShowWindow
UpdateWindow
PostMessageA
GetMessageA
IsDialogMessageA
DispatchMessageA
MessageBoxA
wsprintfA
SetCursor
TranslateMessage
SetFocus
LoadCursorA
TranslateAcceleratorA

kernel32

GetPrivateProfileSectionA
GetLocalTime
ExitProcess
WriteFile
lstrcmpA
CopyFileA
GetTempFileNameA
HeapReAlloc
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetProcAddress
lstrcmpiA
_lclose
GetLastError
_lcreat
lstrlenA
GetWindowsDirectoryA
_lwrite
lstrcpyA
_llseek
OpenFile
lstrcatA
GetSystemDirectoryA
LocalFree
LocalUnlock
LocalLock
LocalAlloc
FileTimeToSystemTime
CloseHandle
FileTimeToLocalFileTime
GetFileTime
CreateFileA
GetPrivateProfileStringA
GetVersion
Sleep
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
SetFilePointer
MoveFileA
DeleteFileA
SetFileAttributesA
GetFileAttributesA
GetShortPathNameA
LCMapStringW
GetTimeZoneInformation
UnhandledExceptionFilter
HeapCreate
LCMapStringA
LoadLibraryA
DeviceIoControl
SizeofResource
LockResource
LoadResource
FindResourceA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapFree
HeapAlloc
GetStdHandle
RtlUnwind
GetEnvironmentStringsW
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType

comctl32

ord2
ord6
ord17

shell32

ShellAboutA

advapi32

RegUnLoadKeyA
RegSetValueExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegEnumValueA
RegCreateKeyA
RegQueryValueExA
RegSaveKeyA
RegLoadKeyA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

comdlg32

FindTextA
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA

gdi32

EndPage
EndDoc
StartDocA
GetDeviceCaps
AbortDoc
StartPage
SetBkMode

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 173B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.EATt
Size: 4KB - Virtual size: 597B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

56889a1ac7bb3603d1bbc27c881a6e0a

Headers

File Characteristics

Imports

user32

kernel32

comctl32

shell32

advapi32

version

comdlg32

gdi32

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 173B

.data Size: 12KB - Virtual size: 28KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 8KB - Virtual size: 4KB

.EATt Size: 4KB - Virtual size: 597B

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 173B

.data
Size: 12KB - Virtual size: 28KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 8KB - Virtual size: 4KB

.EATt
Size: 4KB - Virtual size: 597B