6d2cb861a4ae7a6d546aed898ae98fee

Sharing

Copy URL Twitter E-mail

General

Target

6d2cb861a4ae7a6d546aed898ae98fee
Size

216KB
MD5

6d2cb861a4ae7a6d546aed898ae98fee
SHA1

e721af92b56a39878179afeea37516672a75f62e
SHA256

e491aaa1e2fc9851841c680d0fd5587ed2bd8c905a2f612fd464c21bad91de68
SHA512

79f4839f32e419220cad99911bf67fbc70fb98a1d0ae6742286415c81df58fcfc1214a5da7607da5e7070fb87b0779d1e0ec189ff6e873d2cb3f83e6cfa32674
SSDEEP

3072:DVjUv4hWXu3DTdk6gDDXpAdE/NhS7QV84gO+7t11VLbXva9nzR87MfWMtbJ:vh933hkVAdKM7Qi4gdrHv898Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d2cb861a4ae7a6d546aed898ae98fee

Files

6d2cb861a4ae7a6d546aed898ae98fee
.exe windows:4 windows x86 arch:x86

5b5935f2ece84b469961bfd30a9aff09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetStockObject
SetTextColor
CreateCompatibleDC
GetDeviceCaps

oleaut32

VariantClear
SysStringLen
SysFreeString
SysAllocString

advapi32

RegQueryValueExW
RegSetValueExA
RegCloseKey
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExW
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExA

kernel32

GetConsoleOutputCP
GetStdHandle
FileTimeToSystemTime
lstrlenW
VirtualAlloc
GetCommandLineA
ResetEvent
Sleep
VirtualFree
HeapCreate
IsValidCodePage
SizeofResource
SetStdHandle
GetVersion
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
WritePrivateProfileStringA
GetEnvironmentStrings
FileTimeToLocalFileTime
CreateProcessW
RemoveDirectoryA
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
HeapReAlloc
LCMapStringA
FindResourceW
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
CreateProcessA
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindNextFileA
CompareStringA
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetEvent
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
GetVersionExW
LoadLibraryW
SetHandleCount
GetSystemTime
EnterCriticalSection
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
SetEndOfFile
CreateEventW
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
GetLocalTime
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
GetCurrentThread
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
GetOEMCP
GetStringTypeW
GetDiskFreeSpaceA
GetExitCodeProcess
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
GetTempPathA
FreeEnvironmentStringsW
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentDirectoryA
GetStartupInfoW
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapFree
HeapDestroy
FindFirstFileW
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA

user32

DrawTextA
SendMessageA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
GetKeyState
GetSysColor
MessageBoxA
GetFocus
GetDesktopWindow
LoadCursorA
ScreenToClient
GetDlgItem
PtInRect
DispatchMessageA
SetWindowTextA
SetWindowLongA
ReleaseCapture
SetCapture
GetWindowRect
GetSystemMetrics
BeginPaint
SetFocus
GetClientRect
GetSubMenu
RegisterClassA
LoadStringA
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
DefWindowProcA
GetParent
GetMessageA
DestroyWindow
ClientToScreen
MoveWindow
UnregisterClassA
ReleaseDC
GetDC
PeekMessageA
IsWindow
SetWindowPos
LoadBitmapA
PostQuitMessage
DestroyMenu
SetForegroundWindow
SetCursor
CallWindowProcA
SetTimer

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

msvcrt

_controlfp
_cexit

Sections

uwuem
Size: 200KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b5935f2ece84b469961bfd30a9aff09

Headers

File Characteristics

Imports

gdi32

oleaut32

advapi32

kernel32

user32

version

msvcrt

Sections

uwuem Size: 200KB - Virtual size: 198KB

.rdata Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 680B

uwuem
Size: 200KB - Virtual size: 198KB

.rdata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 680B