0c6d458e643afe6d9cb8821f3e8e5233

Sharing

Copy URL Twitter E-mail

General

Target

0c6d458e643afe6d9cb8821f3e8e5233
Size

76KB
MD5

0c6d458e643afe6d9cb8821f3e8e5233
SHA1

dcf8d030b583003037aaa81c51083f661670179a
SHA256

c4ac72310b394840f0a1a5a5c10cd2b45930460b8aade711538a0e1b64ebe55d
SHA512

9d352d2bc1f088ae9dc22cc6178676f7b55bf3b3d64b581cc47674b55f3c94df579fa78d401f66552a1fbfd4bf45eb66397b9c376be646a4c64bf3e93d164570
SSDEEP

768:yJpy5VaMVqoNEnrlQZlm8LpDecOg+mRO9MOQ9cCZfd5GGmRhfkzZHEaNdydnq6L0:yJu1k9lJIpD0mROXid5sRhfE3y8sDfQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c6d458e643afe6d9cb8821f3e8e5233

Files

0c6d458e643afe6d9cb8821f3e8e5233
.exe windows:4 windows x86 arch:x86

e75d35a8fdce8a9ac8bec3a9654d57b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyImage
IsWindow
GetCursor
CloseWindow
GetFocus
EndDialog
CalcMenuBar
CopyRect
CreateIcon
DrawTextA
LoadCursorA
DrawIconEx
InsertMenuA
AlignRects
AppendMenuW
DialogBoxParamW
DialogBoxParamA
GetWindowTextLengthA
DrawTextW

comctl32

ImageList_GetImageRect
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_AddIcon
ImageList_GetIcon
ImageList_EndDrag
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_Destroy
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_DragLeave
ImageList_BeginDrag
ImageList_Merge
ImageList_Copy
ImageList_DragMove
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_DragEnter

advapi32

RegCreateKeyW
RegEnumValueA
RegOpenKeyA
RegReplaceKeyW
RegLoadKeyA
RegOpenKeyExA
RegEnumValueW
RegReplaceKeyA
RegOpenKeyExW
RegCreateKeyExA
RegEnumKeyW
RegDeleteKeyW
RegQueryInfoKeyW
RegDeleteValueA
RegEnumKeyExA
RegDeleteKeyA
RegFlushKey

kernel32

GlobalFree
GetCPInfo
OpenFileMappingA
CopyFileA
CopyFileW
OpenFile
GetStdHandle
GetComputerNameA
GetLastError
GetCommandLineA
CopyFileExW
ReadFile
CreateDirectoryA
DeleteAtom
GetFileTime
CreateThread
GetFileSize
DeleteFileA
Sleep
FindFirstFileA

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 933B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e75d35a8fdce8a9ac8bec3a9654d57b1

Headers

File Characteristics

Imports

user32

comctl32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 56KB - Virtual size: 117KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: - Virtual size: 933B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 56KB - Virtual size: 117KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: - Virtual size: 933B