6f227d092df2688017777f27e8c4016c | Triage

Sharing

General

Target

6f227d092df2688017777f27e8c4016c
Size

2.4MB
MD5

6f227d092df2688017777f27e8c4016c
SHA1

51672ae7db84ef87a5088c3e3649510a533779b5
SHA256

e949e196060a4a2365b2d50c96671ce71503e23e3df2b10ccb6261845df52410
SHA512

dcb324755f5f15a6ce80acdb30f93a291a1d146fbae21023a857ff611a1d8576dfdef40e917ded9abf9c4a5040c80e257cc8d67da7f78b1dd25239d2e9940eda
SSDEEP

49152:rUqdd6n366brULkWvXGrYajYom5hNsgRd47/GHDn6:rUq36366bQLkeG0om1sgRd47/GHD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f227d092df2688017777f27e8c4016c

Files

6f227d092df2688017777f27e8c4016c
.exe windows:5 windows x86 arch:x86

0d18bfd0b7e542bab0a8f4bb3a2e62c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
OpenEventW
IsSystemResumeAutomatic
GetQueuedCompletionStatus
WritePrivateProfileSectionA
GetLastError
SetPriorityClass
GetFileTime
GlobalReAlloc
lstrcpyn
Heap32Next
GetProcessHandleCount
GetStartupInfoA
SetConsoleLocalEUDC
SetConsoleCursorInfo
GetPrivateProfileSectionNamesW
GetProcessTimes
VirtualAlloc
SearchPathA
GlobalSize

user32

CloseWindow
DrawFocusRect
CheckDlgButton
LoadCursorFromFileA
DefDlgProcA
DialogBoxParamA
GetUserObjectInformationW
DeviceEventWorker
DestroyAcceleratorTable
GetDC
InvertRect
SetMenu
ClipCursor
GetWindowTextW
IsCharUpperA

Exports

Exports

Pfykjpd
Ivarnorg
Ldeixypy
Nafsohvcxcc
ClosePbmvdhcqufs
Jaakurmxbp
Sphpgof
CloseRrawmtfwbj
ReadDxdlwghg
InitPpdhntm
SetCbfidmmd
Wwxgjdonntb
EndGgyuoop
IsXkeqfunmo
Epvwrxmhv
Tymvpcwka
CreateKjbusvyy
Qhcjdywwsx
IsRodjsbxkw
Fnnfupoy

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ