06c6992000e2e2e5be0cb7718412e13e

Sharing

Copy URL Twitter E-mail

General

Target

06c6992000e2e2e5be0cb7718412e13e
Size

186KB
MD5

06c6992000e2e2e5be0cb7718412e13e
SHA1

0955cd03eca7267239e459cebeb25419c3ba2418
SHA256

32aee7fb58db794ed85a77cd4636b593702e1794d520a5776b32f6a293644481
SHA512

2ece145b49671917e8ca27e2374acdfa53aaad619edbab321d0f44b916e5fe37f3cfbe63ee3047446ba93de3b6e66c0ba14062a3c92669cb34b14a142d4ce4ab
SSDEEP

3072:Rn1MDVy3/dTZNyyN18Kb00W8Hd6MzaA3AhboCLe/EulxezW2Jzm32XDF1bMV7C:kDVmNy5Kb00We4eQhb5OiF0MPQV7C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06c6992000e2e2e5be0cb7718412e13e

Files

06c6992000e2e2e5be0cb7718412e13e
.exe windows:5 windows x86 arch:x86

1a1472e2d0932de0a9c1003e28cf333b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atol
_controlfp
strchr
__set_app_type
printf
__p__fmode
wcsrchr
__p__commode
toupper
clock
system
tolower
islower
vsprintf
_amsg_exit
getc
setvbuf
fflush
iswxdigit
strstr
_initterm
isxdigit
wcstok
rand
wcsstr
_ismbblead
towupper
_XcptFilter
clearerr
strcspn
fclose
wcspbrk
iswspace
vswprintf
mbstowcs
fputc
_exit
bsearch
iswctype
_cexit
fread
__setusermatherr
iswalpha
sprintf
__getmainargs
gets
putchar

kernel32

GetCommandLineA
WinExec
AddAtomA
FormatMessageW
FlushFileBuffers
MapViewOfFile
FindFirstChangeNotificationW
FindNextChangeNotification
GetStartupInfoW
TlsFree
lstrcpyW
lstrcmpiA
GetVersionExW
HeapSize
GlobalCompact
TerminateThread
lstrcpyA
GlobalUnlock
GetModuleHandleA
GetShortPathNameW
GetAtomNameW
DisconnectNamedPipe
FindResourceA
RaiseException
FindCloseChangeNotification
VerSetConditionMask
LockFile
CreateNamedPipeW
GetWindowsDirectoryW
LoadResource
GetThreadLocale
CompareStringA
VirtualAlloc
FormatMessageA
GetSystemDefaultLangID
GetVersion
HeapWalk
GlobalReAlloc
GetFileSize
VerifyVersionInfoW
LeaveCriticalSection
lstrlenA
FoldStringW
AreFileApisANSI
LocalUnlock
GetModuleFileNameA
SetHandleCount
GlobalMemoryStatus
SuspendThread
ReadFile
DeleteCriticalSection
CreateFileW
FreeLibrary
lstrcpynW
CopyFileW
MoveFileW
GetSystemDefaultUILanguage
CreateEventA

user32

GetForegroundWindow
RegisterWindowMessageW
TileWindows
GetKeyState
CharNextA
RegisterClassW
EqualRect
GetKeyNameTextW
AllowSetForegroundWindow
GetMenuCheckMarkDimensions
LoadAcceleratorsA
CharNextW
LoadAcceleratorsW
GetWindowLongW
SetDlgItemTextA
keybd_event
ChildWindowFromPointEx
InvalidateRect
LoadCursorW
SendMessageW
SetMenuItemInfoW
GetMenuStringA
SystemParametersInfoA
DestroyMenu
GetMessageW
UnionRect
UpdateWindow
SetRect
FindWindowExW
GetParent
GetMessageTime
CheckRadioButton
RedrawWindow
PostThreadMessageW
CreateIconIndirect
SendDlgItemMessageW
MapDialogRect
TranslateMessage
CreateDialogParamA
GetNextDlgGroupItem
PostMessageA
IsWindowEnabled
DrawMenuBar
wsprintfW
GetSysColorBrush
SendMessageTimeoutW
GetWindowRect
GetDlgItemTextW
PostQuitMessage
CharLowerBuffW
CharPrevW
ShowCaret
CreateCaret
TrackPopupMenu
CopyRect
InSendMessageEx
EnumThreadWindows
CreateCursor
VkKeyScanA
SetCursorPos
ShowScrollBar
SetMenu
wvsprintfW
ShowWindowAsync
DestroyCaret
IsCharUpperA
CheckMenuRadioItem
FillRect
SendDlgItemMessageA
VkKeyScanW
IsChild
EnableMenuItem
GetKeyboardLayout
DefFrameProcW
DrawStateW
CharNextExA
ChildWindowFromPoint
IsCharAlphaA
ExitWindowsEx
GetWindowTextA
DefWindowProcA
GetMonitorInfoW
GetClipCursor
HideCaret
MonitorFromRect
CharLowerA
IsDialogMessageA
DeleteMenu
CopyAcceleratorTableW
GetIconInfo
ScreenToClient
CreateAcceleratorTableW
ModifyMenuW
InsertMenuW
ArrangeIconicWindows
CascadeWindows
GetUpdateRect
RegisterClassExW
CallWindowProcA
EnableWindow
GetSystemMenu
TranslateAcceleratorA
GrayStringW
GetClassInfoExA
WaitMessage
SetDlgItemInt
EnableScrollBar
DestroyWindow
AppendMenuW
GetCursorPos
GetAsyncKeyState
SetForegroundWindow
CharLowerW
ScrollWindowEx
LoadIconW
LockWindowUpdate
GetMenuState
ClientToScreen
GetClassNameW
LoadBitmapA
GetDlgCtrlID
SetMenuItemBitmaps
LoadCursorA

gdi32

CreateRectRgnIndirect
TextOutA
RealizePalette
GetObjectA
RoundRect
CreateSolidBrush
GetPixel
SetAbortProc
GetMapMode
StartPage
CreateFontW
CreatePen
GetObjectW
GetBitmapBits
RectInRegion
WidenPath
GetSystemPaletteUse
ExcludeClipRect
MoveToEx
CreateDiscardableBitmap
Polygon
CreateDCW
EnumFontFamiliesExW
StretchDIBits
CreatePolygonRgn
SetBitmapDimensionEx
CreatePalette
CreateBitmapIndirect
GetFontData
OffsetRgn
GetLayout
GetPaletteEntries
SetROP2
FillRgn
GetNearestColor
LineTo
BeginPath
GetStockObject
StartDocW
SetBkColor
GetNearestPaletteIndex
AddFontResourceW
GetTextFaceW
GetWindowOrgEx
CreateFontIndirectW
SetViewportOrgEx
SetTextAlign
GetTextExtentPointW
CreateCompatibleDC
GetTextColor
DPtoLP

Exports

Exports

?RegenerateMainValues@@YGKPBDDPAX:O

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.emnar
Size: 512B - Virtual size: 126B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fire
Size: 1KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imper
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wchar
Size: 512B - Virtual size: 489B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a1472e2d0932de0a9c1003e28cf333b

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 22KB

.emnar Size: 512B - Virtual size: 126B

.fire Size: 1KB - Virtual size: 184KB

.data Size: 2KB - Virtual size: 1KB

.imper Size: 6KB - Virtual size: 5KB

.wchar Size: 512B - Virtual size: 489B

.wdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 151KB - Virtual size: 150KB

.text
Size: 22KB - Virtual size: 22KB

.emnar
Size: 512B - Virtual size: 126B

.fire
Size: 1KB - Virtual size: 184KB

.data
Size: 2KB - Virtual size: 1KB

.imper
Size: 6KB - Virtual size: 5KB

.wchar
Size: 512B - Virtual size: 489B

.wdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 151KB - Virtual size: 150KB