060ecbbd8923bf3a086d5b90ee0b2622

Sharing

Copy URL Twitter E-mail

General

Target

060ecbbd8923bf3a086d5b90ee0b2622
Size

42KB
MD5

060ecbbd8923bf3a086d5b90ee0b2622
SHA1

7cbfa4c2567fac88df2fa6af02c644e38645be1d
SHA256

88edbb17cd27f837f617353c509e5c99b2f348adb188f8c35f776dd5787979ce
SHA512

7077f71cbac744e03da539b40213f137dbaffdf184891816bf60aff6531a359e0d2968ebcb008a4bbf60623f3040f07c8ac0ca77c97cdf8e1667e75d151ab5a4
SSDEEP

768:fWBjoKG6SBFiHERLM2DCxkufVGd/u5fkkxdpfrT3NbXgs4QtmmVrOy:+B6ryERQOCeufGm5/ZPBOsmm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
060ecbbd8923bf3a086d5b90ee0b2622

Files

060ecbbd8923bf3a086d5b90ee0b2622
.exe windows:4 windows x86 arch:x86

126ec6f7c3d603960c3575f70b7fec51

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesA
PrepareTape
SetConsoleScreenBufferSize
SetMailslotInfo
VirtualProtect
ReleaseMutex
GetLastError
GetFileSizeEx
CreateFileW
GetCurrentConsoleFont
CreateHardLinkW
OpenEventW
FindVolumeClose
SetLastError
SetComputerNameExW
FindResourceW
CreateProcessA
GetConsoleCommandHistoryLengthW
ProcessIdToSessionId
LockFileEx
GetConsoleDisplayMode
ExpungeConsoleCommandHistoryA
ScrollConsoleScreenBufferW

user32

GetWindowRgn
GetMenuInfo
MoveWindow
GetKeyboardLayout
DrawIcon
MonitorFromPoint
MapVirtualKeyExA
LookupIconIdFromDirectory
CharLowerBuffW
EndDeferWindowPos
GetWindowInfo
CreateMenu
DeviceEventWorker
IsDialogMessageA
SetConsoleReserveKeys
DrawMenuBar
OpenDesktopW
GetAppCompatFlags
SetDlgItemInt
DrawMenuBarTemp
BeginDeferWindowPos
GetCapture
IntersectRect
DefMDIChildProcA
GetFocus
MBToWCSEx
CreateWindowStationA
LockWindowUpdate
OpenIcon

gdi32

CreateBitmapIndirect
CombineTransform
CreateRectRgnIndirect
CreateDiscardableBitmap
GetDIBColorTable
PolylineTo
GdiReleaseDC
GdiDeleteLocalDC
GetEnhMetaFileDescriptionA
GdiIsPlayMetafileDC
SetPaletteEntries
GdiValidateHandle

comdlg32

ReplaceTextA
PrintDlgExW
GetFileTitleW
GetOpenFileNameW
FindTextW
CommDlgExtendedError
ChooseFontA
PrintDlgA
GetSaveFileNameW
Ssync_ANSI_UNICODE_Struct_For_WOW

psapi

GetMappedFileNameA
InitializeProcessForWsWatch
GetProcessMemoryInfo
GetDeviceDriverBaseNameA
EnumDeviceDrivers
GetDeviceDriverFileNameA
GetModuleBaseNameW
GetModuleFileNameExW
GetModuleFileNameExA
GetModuleInformation
EnumProcesses
GetMappedFileNameW
EmptyWorkingSet
GetDeviceDriverBaseNameW

comctl32

ImageList_GetImageRect
ImageList_GetImageCount
FlatSB_SetScrollInfo
ImageList_GetIcon
PropertySheet
CreateMappedBitmap
CreatePropertySheetPageA
ImageList_AddIcon
ImageList_BeginDrag
ImageList_DragMove
ImageList_DragEnter
ImageList_EndDrag
FlatSB_SetScrollProp
ImageList_Draw
FlatSB_GetScrollProp
ImageList_Create
ImageList_Merge
CreateStatusWindowW
InitializeFlatSB
MakeDragList

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

126ec6f7c3d603960c3575f70b7fec51

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

psapi

comctl32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB