06a2abfee6098f0358216aa2ba2fb792

Sharing

Copy URL Twitter E-mail

General

Target

06a2abfee6098f0358216aa2ba2fb792
Size

566KB
MD5

06a2abfee6098f0358216aa2ba2fb792
SHA1

ec25aa199525116a18ea01b37ea74de716283859
SHA256

320f87be119183776ab7f9de9e7785d27e1dbcc1ef9aafbe46687c7482a66521
SHA512

e08044872d63f63eafaf5c747e61dddbc602a86261a7b21577d911264df716357ece56f9dbe8be6ffbc2b14e67ed61b0293512b7462979e986895be3a11ee76f
SSDEEP

12288:bzL/w3hGe7XnAUqXCSt+Ls75812aDbQTc:XLzEnMXbuzYc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06a2abfee6098f0358216aa2ba2fb792

Files

06a2abfee6098f0358216aa2ba2fb792
.exe windows:4 windows x86 arch:x86

c94440fbdc59eb4e79e35057ab9b6dc5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextExtentPoint32W
CreateDIBSection
EnumICMProfilesA
GetTextCharset
CreateDCA
ModifyWorldTransform
DrawEscape
GetSystemPaletteUse
CreateDCW
EqualRgn
GetClipBox
DeleteDC
IntersectClipRect
SetTextColor
CreateDIBPatternBrush
SetWindowExtEx
GetMetaFileBitsEx
GetCharWidthFloatA
RemoveFontResourceA
GetTextExtentPoint32A
SetDeviceGammaRamp
SetAbortProc
OffsetViewportOrgEx
DeleteEnhMetaFile
GetPath

comdlg32

FindTextA

kernel32

GetStartupInfoA
GetLocaleInfoA
GetEnvironmentStrings
IsValidCodePage
CreateWaitableTimerW
ReadConsoleA
HeapFree
TlsAlloc
HeapCreate
FlushFileBuffers
GetSystemInfo
VirtualFree
GetLastError
HeapAlloc
QueryPerformanceCounter
ReadFile
RtlUnwind
CloseHandle
SetLastError
SetStdHandle
DeleteCriticalSection
SetEndOfFile
UnhandledExceptionFilter
HeapDestroy
GetCurrentProcessId
EnumSystemLocalesA
GetCommandLineA
ExitProcess
WideCharToMultiByte
WriteFile
GetCPInfo
GetStdHandle
CompareStringW
FlushInstructionCache
SetLocalTime
VirtualAlloc
LCMapStringA
OpenFileMappingA
InterlockedExchange
FreeEnvironmentStringsW
GetVersionExA
GetStringTypeW
GetCurrentThreadId
DeleteFileW
IsBadWritePtr
HeapReAlloc
GetSystemDefaultLangID
HeapSize
GetCurrentProcess
GetStringTypeA
VirtualQuery
GetModuleFileNameA
CompareStringA
GetModuleHandleA
MultiByteToWideChar
TlsFree
TerminateProcess
lstrlenA
GlobalSize
DebugActiveProcess
GetProcAddress
GetDateFormatA
CreateMutexA
EnterCriticalSection
TlsSetValue
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
GetFileType
EnumCalendarInfoA
SetEnvironmentVariableA
LoadLibraryA
SetHandleCount
GetAtomNameW
GetEnvironmentStringsW
GetCurrentDirectoryA
GetCurrentThread
TlsGetValue
GetACP
LeaveCriticalSection
GetStartupInfoW
GetLogicalDriveStringsA
LCMapStringW
GetOEMCP
SetThreadPriority
InitializeCriticalSection
SetFilePointer
CompareFileTime
OpenMutexA
VirtualProtect
GetTimeFormatA
GetTimeZoneInformation
WritePrivateProfileStructA
GetTickCount

comctl32

InitCommonControlsEx

shell32

ShellAboutW
DuplicateIcon
DragQueryFile
RealShellExecuteW

user32

OpenWindowStationA
IsWindowUnicode
GetMenuDefaultItem
IsDialogMessageA
CharPrevExA
RegisterClassExA
RegisterClassA
VkKeyScanW
GetMenuItemCount
MessageBoxExW
EnumPropsExA
DdeSetUserHandle
SendDlgItemMessageA
SetWinEventHook
EnumThreadWindows
ClientToScreen

Sections

.text
Size: 238KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c94440fbdc59eb4e79e35057ab9b6dc5

Headers

File Characteristics

Imports

gdi32

comdlg32

kernel32

comctl32

shell32

user32

Sections

.text Size: 238KB - Virtual size: 238KB

.rdata Size: 9KB - Virtual size: 28KB

.data Size: 315KB - Virtual size: 314KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 238KB - Virtual size: 238KB

.rdata
Size: 9KB - Virtual size: 28KB

.data
Size: 315KB - Virtual size: 314KB

.rsrc
Size: 3KB - Virtual size: 2KB