6e3fba1ec54fbef39fdbad72cdfdbf40

Sharing

Copy URL Twitter E-mail

General

Target

6e3fba1ec54fbef39fdbad72cdfdbf40
Size

970KB
MD5

6e3fba1ec54fbef39fdbad72cdfdbf40
SHA1

cfca7f2e14c230ab8482de6a99d4c7ba3aad58a3
SHA256

bd16fb398010aa57ee3fe2ca89f2b660b74f01db7559a717d43274b4e8857edb
SHA512

02fd09414d76786368df7f9250667dc5612c9f5dc98bbe7e060746873f9f47d45708d36660f320a488baa36bd89ea859d1e9b799b1884b792710ead2576dc6e1
SSDEEP

12288:7KbUXjXZNqZaRPGqYs6oCBYyfO09gv2+Zb1fSIgo8/vW9G5HAGwdE1mG/0pHpdEO:7IUSyJofW+a16W8W9GFAG3JIn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6e3fba1ec54fbef39fdbad72cdfdbf40

Files

6e3fba1ec54fbef39fdbad72cdfdbf40
.exe windows:4 windows x86 arch:x86

c4c19ed803f759b8b28f09ae8e5017f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyW
RegDeleteKeyW

comdlg32

GetOpenFileNameA
GetSaveFileNameA

winmm

midiInAddBuffer
SendDriverMessage
midiOutReset

imagehlp

CheckSumMappedFile

kernel32

GlobalUnlock
FreeLibrary
FindClose
GetProcAddress
LoadLibraryA
ExitThread
GetTempPathA
GetTempFileNameA
GetExitCodeProcess
TerminateProcess
CreateThread
GetCommandLineA
GetSystemTimeAsFileTime
lstrlenA
MultiByteToWideChar
LocalUnlock
MulDiv
LocalLock
LocalAlloc
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCurrentProcess
SetHandleCount
GetEnvironmentStringsW
GlobalLock
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
VirtualAlloc
VirtualFree
HeapCreate
Sleep
LCMapStringW
LCMapStringA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
RtlUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
ExitProcess
HeapDestroy
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetEndOfFile
SetFilePointer
SetFileTime
GetFileTime
GlobalAlloc
WaitForSingleObject
CopyFileA
DeleteFileA
CreateProcessA
GetStartupInfoA
FindNextFileA
FindFirstFileA
WriteFile
ReadFile
GetFileAttributesA
FreeEnvironmentStringsW
GetCurrentDirectoryA
CloseHandle
GetFileSize
CreateFileA
GetModuleFileNameA
LocalFree
GetLastError
GetVersionExA
WideCharToMultiByte
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
GetModuleHandleA
GetFileType

user32

SendMessageA
GetDlgItem
DialogBoxParamA
DefWindowProcA
LoadStringA
PostMessageA
EndDialog
EndPaint
GetClassNameA
GetSystemMenu
PostQuitMessage
GetLastActivePopup
DrawTextA
GetParent
MessageBeep
DrawIcon
SetFocus
BeginPaint
WaitMessage
WinHelpA
IsDialogMessageA
TranslateMessage
CreateDialogIndirectParamA
GetWindowTextA
GetAsyncKeyState
SetRect
PeekMessageA
EnableMenuItem
EmptyClipboard
RedrawWindow
GetSysColor
GetActiveWindow
IsWindow
DispatchMessageA
SystemParametersInfoA
DestroyIcon
GetDialogBaseUnits
GetWindow
MoveWindow
GetClientRect
GetSystemMetrics
InvalidateRect
LoadIconA
GetDlgItemInt
KillTimer
SetTimer
IsDlgButtonChecked
CheckDlgButton
SetDlgItemInt
SetDlgItemTextW
SetDlgItemTextA
GetWindowLongA
SetWindowLongA
CallWindowProcA
GetKeyState
CloseClipboard
SetClipboardData
OpenClipboard
DestroyMenu
TrackPopupMenu
GetCursorPos
SetForegroundWindow
GetSubMenu
LoadMenuA
MessageBoxA
EnableWindow
DestroyWindow
SetWindowTextA
SetWindowPos
GetWindowDC
GetWindowRect
GetDesktopWindow
CreateWindowExA
FillRect

comctl32

ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Create

Sections

.text
Size: 453KB - Virtual size: 453KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4c19ed803f759b8b28f09ae8e5017f5

Headers

File Characteristics

Imports

advapi32

comdlg32

winmm

imagehlp

kernel32

user32

comctl32

Sections

.text Size: 453KB - Virtual size: 453KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 474KB - Virtual size: 474KB

.rsrc Size: 36KB - Virtual size: 3.3MB

Size: - Virtual size: 7KB

.text
Size: 453KB - Virtual size: 453KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 474KB - Virtual size: 474KB

.rsrc
Size: 36KB - Virtual size: 3.3MB