06eeaa623759162705b847d39aca3d4a

Sharing

Copy URL

Twitter E-mail

General

Target

06eeaa623759162705b847d39aca3d4a
Size

192KB
MD5

06eeaa623759162705b847d39aca3d4a
SHA1

4107a489506bdd264d66865186d3ba8a1f1c7268
SHA256

e619df9f4c8ce55899960027520c4feac3a1878adc09a38e8be5a2d01e196c5d
SHA512

500e6aa5b918e0c0352b39e712bbb1de324b581e2d978e4558ed86ca95871b9ddb984dfcba7a30a1cbc169ba2a4f6e70e0e5346c27e6669aa32c90b27bcc72c0
SSDEEP

6144:tp2xx+vd/CAZRg87M5oZGOovHZMJMv8P:tgD0d/88IK+BFv8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06eeaa623759162705b847d39aca3d4a

Files

06eeaa623759162705b847d39aca3d4a
.exe windows:4 windows x86 arch:x86

37259ed516ed243a4b06ff1897eae310

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVIStreamRelease
AVIFileInit
AVIStreamGetFrameOpen
AVIStreamGetFrameClose
AVIStreamGetFrame
AVIStreamWrite
AVISaveOptions
AVIFileGetStream
AVIStreamSetFormat
AVIFileCreateStreamA
AVIStreamInfoA
AVIFileOpenA
AVIFileRelease
AVIMakeCompressedStream

user32

SetWindowLongA
IsWindow
TranslateMessage
GetMessageA
UpdateWindow
GetWindowRect
ReleaseCapture
DispatchMessageA
SetFocus
SetWindowTextA
SendMessageA
GetClientRect
LoadCursorA
LoadIconA
DefWindowProcA
CallWindowProcA
ScreenToClient
DestroyWindow
ShowWindow
OffsetRect
SubtractRect
CreateWindowExA
PeekMessageA
wsprintfA
GetKeyState
MoveWindow
GetClassLongA
BeginPaint
MessageBoxA
InvalidateRect
wvsprintfA
GetWindowLongA
EndPaint
GetFocus
SetCursor
RegisterClassA
SetCapture

msvfw32

ICOpen
ICDecompress
ICSendMessage
ICClose

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

kernel32

WriteFile
GetFileSize
QueryDosDeviceW
SetFilePointer
ProcessIdToSessionId
DisableThreadLibraryCalls
GetProcessId
CreateFileA
CreateFileMappingA
CloseHandle
ReadFile
EnumResourceTypesA
lstrlenA
GlobalSize
GlobalAlloc
LocalAlloc
ExitProcess
UnmapViewOfFile
MapViewOfFile
LocalFree
Sleep
GlobalFree

gdi32

BitBlt
SetDIBColorTable
SetStretchBltMode
CombineRgn
FillRgn
SelectObject
DeleteObject
GetCurrentObject
GetObjectA
GetStockObject
CreateCompatibleDC
StretchDIBits
DeleteDC
SetDIBitsToDevice
CreateRectRgn
CreateDIBSection
StretchBlt

comctl32

CreateToolbarEx

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37259ed516ed243a4b06ff1897eae310

Headers

File Characteristics

Imports

avifil32

user32

msvfw32

avicap32

kernel32

gdi32

comctl32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 73KB - Virtual size: 73KB

.tls Size: 1024B - Virtual size: 344KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 73KB - Virtual size: 73KB

.tls
Size: 1024B - Virtual size: 344KB