06bb73cacdd8bfcc8c4000daace64be4

General

Target

06bb73cacdd8bfcc8c4000daace64be4
Size

180KB
MD5

06bb73cacdd8bfcc8c4000daace64be4
SHA1

7259b7e0557e1d83a64386d9f20c1128619b5196
SHA256

2a780a02e63d86bb951df7dc350187622707417f137acb654925e9d2ce2077cf
SHA512

c21938967b6659ede9db90e30739e9cad4286f40e97cc4ef4a27948cc5e5a5a5091ed9e7125611690eb7192bf8f0a34c06a2aa8e3233d53106a833d6e4632928
SSDEEP

3072:8YtEArjCPkKBJFnP1oGs+bmGZ0CEF47urETgWDAD6nkhvooK6meK:8OEAfCPkKBnnNoGs+bZJEF4DUD6khDKm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06bb73cacdd8bfcc8c4000daace64be4

Files

06bb73cacdd8bfcc8c4000daace64be4
.exe windows:4 windows x86 arch:x86

e55943122702452ea480fe25f54dfbdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

UuidToStringA

advapi32

RegOpenKeyExA
OpenSCManagerA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
CloseServiceHandle
CreateServiceA
StartServiceA
OpenServiceA
DeleteService

user32

wsprintfA

shlwapi

StrStrIA
SHSetValueA
SHEnumKeyExA
SHGetValueA
SHEnumValueA

ole32

CoCreateInstance
CoInitialize
CoCreateGuid

shell32

SHGetSpecialFolderPathA

msvcrt

fwrite
fclose
fopen
strlen
sprintf
tolower
ispunct
rand
isxdigit
wctomb
__mb_cur_max
strerror
isspace
isgraph
isupper
islower
??2@YAPAXI@Z
printf
isalpha
isdigit
atoi
strncpy
wcscpy
mbstowcs
srand
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
strcpy
strcat
time
malloc
memcmp
free
memset
memcpy
isalnum

imagehlp

ImageNtHeader

kernel32

GetModuleHandleA
SleepEx
GetStartupInfoA
GetVersionExA
ExitProcess
GetLastError
FindFirstFileA
GetFileAttributesA
GetPrivateProfileStringA
FindNextFileA
WideCharToMultiByte
lstrlenA
GetSystemDirectoryA
GetFileAttributesExA
CreateFileA
SetFileTime
CloseHandle
GetLocalTime

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e55943122702452ea480fe25f54dfbdb

Headers

File Characteristics

Imports

rpcrt4

advapi32

user32

shlwapi

ole32

shell32

msvcrt

imagehlp

kernel32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 104KB - Virtual size: 103KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 104KB - Virtual size: 103KB