6b80f2f5b0c5f1d10df518bba140bbfc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6b80f2f5b0c5f1d10df518bba140bbfc
Size

205KB
MD5

6b80f2f5b0c5f1d10df518bba140bbfc
SHA1

60d51a4faf6fef70e0bbf46cbe571e8e8d7f11e3
SHA256

7b9fdfe11956e6e6c63dad1e379e2a07f998ebdc2c994590df91dceedd38a278
SHA512

7aa6e90d4073b1016403d390c7dcf5d329b3936cca5059ccfff3dfeded45e24cf185c119a58a4dae3bd20acd482f3a53987c91d55ac563b2add8a9e46890f008
SSDEEP

6144:IRUzKTZCZYMCQdUJcLXt8umVK+rGceJI2DkD:kUzsY1CQdUcxAJEkD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6b80f2f5b0c5f1d10df518bba140bbfc

Files

6b80f2f5b0c5f1d10df518bba140bbfc
.exe windows:4 windows x86 arch:x86

fe596a3c6f900228e7f8c7c1772ceeb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCPInfo
LoadLibraryA
GetDateFormatA
VirtualAllocEx
GetCurrentThreadId

user32

GetDesktopWindow
CharLowerA
SetWindowPos
GetMenu
IsCharLowerA
SetWindowLongA
GetWindowDC
GetWindowTextLengthA
SetTimer
SetWindowPlacement

shlwapi

PathGetCharTypeA
SHQueryValueExA
SHStrDupA
SHDeleteKeyA
PathIsContentTypeA

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
RestoreDC
GetBitmapBits
GetClipBox

Exports

Exports

_xLJRTrGb7
_UcY35Duov
_cEd9C9g5@4
_W56Sg6uk9d5o
zjJRa4qgEkpqx@4
yCPEYo@8
_528btnaNE
_ErxvFaq@8
_jFmDlFqN2hJ@24
S4M7rY5m3b1KM4
_mTJPXnq@4
xnIcnX@12
cyI6bU
ah1rc
_AEjNLEt@12
pPw6wc0f@4
_doGi4qidc@16

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ