069b1d855af24a8d446d93ed300db3af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

069b1d855af24a8d446d93ed300db3af
Size

16KB
MD5

069b1d855af24a8d446d93ed300db3af
SHA1

7c731b0d17d16c44854c3e0405b0d6e53a72106a
SHA256

7567fdd44cc7bdbdbcfeaa5f539d9b0421d8197d9eee0446c5aed9d488876c97
SHA512

979c2fcd43b1567dcb97a037c0eb27280c295e15012c355b4af9690f89a21709b12e960182d80c9b57cb21b5b4221adda1a338364a80e2aa5d4d9ba5d69c3b9a
SSDEEP

192:JwYwNETRI/wsAtCd9EruxzQ9B+Spnszsu8VsR9c6GO1KuRJUc:JbwNVA4uruu/+SSp8XevJUc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
069b1d855af24a8d446d93ed300db3af

Files

069b1d855af24a8d446d93ed300db3af
.exe windows:4 windows x86 arch:x86

1072ff0656b097152417c4a102090008

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
GetProcessVersion
AreFileApisANSI
GetExitCodeThread
GetNumberOfConsoleMouseButtons
ResetEvent
GetModuleHandleA
EnumCalendarInfoA
GetOEMCP
GetThreadLocale
IsDBCSLeadByte
PulseEvent
OutputDebugStringA
VirtualAlloc
TlsGetValue
TlsFree
GetConsoleInputWaitHandle
GetUserDefaultLangID
lstrcpyA
GetProcessTimes
lstrcatA

user32

ReleaseDC
ShowWindow
InvalidateRect
GetActiveWindow
ReleaseDC
GetWindowTextA
GetForegroundWindow
GetWindow
ValidateRect
CloseWindow
GetSystemMetrics
GetClassInfoExA
RegisterClassA
IsIconic
GetClassNameA
GetWindowTextLengthA
IsWindowVisible
GetFocus
GetDC

tapi32

MMCSetServerConfig
MMCShutdown
MMCSetLineInfo
MMCSetPhoneInfo
MMCInitialize

mlang

DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ