64521e07666d08eeef5476ab7fecff1c

Sharing

Copy URL

Twitter E-mail

General

Target

64521e07666d08eeef5476ab7fecff1c
Size

471KB
MD5

64521e07666d08eeef5476ab7fecff1c
SHA1

2e4a7b7fe962e245a88099ce237facdf4885d62e
SHA256

0f7c2a2caf97d6fb6d388b4c11ae8630cbef9d8be29069fd3632fdda39e52304
SHA512

9778a9368b7adc162c56dacd26ca570fdb97d2e66cf388b874c1b9224fa25d15e9fa7d7be1b9e73f5784302df3fd8fcc189b3b85c94098e45db1b0726d93bd59
SSDEEP

6144:/AaPrgWtYvMOS/VjKkfFrVL9yQx4MTNB1Nj++DEFChuyvh7tYp0/AUUuwr6h6yXh:YaPKXOV+kfFrVRyoT7BuyvUWXsHY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64521e07666d08eeef5476ab7fecff1c

Files

64521e07666d08eeef5476ab7fecff1c
.exe windows:4 windows x86 arch:x86

2b35fc133537b084f42ca8bdbb69f9dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnionRect
IsDlgButtonChecked
EditWndProc
TrackPopupMenu
DialogBoxParamA
EnumPropsW
CreateCaret
SystemParametersInfoA
ClipCursor
EnumPropsA
IsCharLowerA
OemToCharA
GetClassInfoExW
PostQuitMessage
SetActiveWindow

comdlg32

ChooseColorA

kernel32

PulseEvent
MultiByteToWideChar
GetStartupInfoA
GetTimeZoneInformation
GetFileAttributesExA
EnumSystemLocalesA
EnumDateFormatsW
EnterCriticalSection
GetStdHandle
SetUnhandledExceptionFilter
GetModuleHandleW
GetThreadPriorityBoost
WriteProfileSectionW
QueryPerformanceCounter
UnhandledExceptionFilter
TlsAlloc
WriteConsoleA
CreateThread
HeapAlloc
GetProfileSectionW
GetVersion
VirtualFree
InterlockedIncrement
FreeEnvironmentStringsA
InitializeCriticalSection
SetLastError
Sleep
GetOEMCP
HeapCreate
SetConsoleTitleA
GetStartupInfoW
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
GetModuleHandleA
CompareStringW
GetLocaleInfoW
InitializeCriticalSectionAndSpinCount
WriteFile
VirtualAlloc
LoadLibraryA
GetCPInfo
SetConsoleCtrlHandler
FreeLibrary
TerminateProcess
TlsGetValue
GetDriveTypeA
RtlUnwind
GetStringTypeW
GetTimeFormatA
FreeEnvironmentStringsW
GetDateFormatA
GetUserDefaultLCID
SetEnvironmentVariableA
CreateFileMappingW
ExitProcess
GetEnvironmentStrings
CommConfigDialogA
CompareStringA
GetFileType
GetWindowsDirectoryA
FindAtomW
VirtualQuery
GetCommandLineA
IsValidLocale
WideCharToMultiByte
LCMapStringA
TlsSetValue
GetTickCount
TlsFree
WaitForMultipleObjects
SetHandleCount
HeapFree
GetCurrentThreadId
GetACP
GetLocaleInfoA
GetLastError
GetCurrentProcess
GetSystemTimeAsFileTime
IsValidCodePage
HeapSize
InterlockedDecrement
GetStringTypeA
HeapDestroy
GlobalGetAtomNameW
GetEnvironmentStringsW
GetCurrentProcessId
InterlockedExchange
LCMapStringW
GetModuleFileNameA
HeapReAlloc
GetCurrentThread
SetComputerNameW
GetProcAddress

Sections

.text
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 283KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b35fc133537b084f42ca8bdbb69f9dc

Headers

File Characteristics

Imports

user32

comdlg32

kernel32

Sections

.text Size: 171KB - Virtual size: 170KB

.rdata Size: 8KB - Virtual size: 14KB

.data Size: 283KB - Virtual size: 282KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 171KB - Virtual size: 170KB

.rdata
Size: 8KB - Virtual size: 14KB

.data
Size: 283KB - Virtual size: 282KB

.rsrc
Size: 7KB - Virtual size: 7KB