6462b7bab58d8fd5ba55de2dc66a00f1

Sharing

Copy URL Twitter E-mail

General

Target

6462b7bab58d8fd5ba55de2dc66a00f1
Size

158KB
MD5

6462b7bab58d8fd5ba55de2dc66a00f1
SHA1

33ae2261cc30f2301c4661a19ef5e6da05c0baac
SHA256

fd6825fbf9491ba4372834fb548926d110c009dd23c884670fba79fe6f5ee16e
SHA512

da21e90f639a3acfb335a1228d2ef883e26f9ae0d7a366f70ac441c541915c3723c6a5eb81dc1964025ec2d9472d0548a01cc34bbd599ddef9546b724a396088
SSDEEP

3072:vJOzAybEkuPe2fYqiezSP6eOPUe91Jlk5C7lSJlLGDotKrGakFQzo1nEB:OEku22fWPKPD9Llk07QleNGDQzo14

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6462b7bab58d8fd5ba55de2dc66a00f1

Files

6462b7bab58d8fd5ba55de2dc66a00f1
.exe windows:4 windows x86 arch:x86

ba3af27e16692aa4587076fe84afd6cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLastError
VirtualProtect
NlsGetCacheUpdateCount
LockResource
GlobalFix
FindNextFileA
CreateProcessW
UnlockFileEx
GetVolumeNameForVolumeMountPointW
_lclose
SetVolumeMountPointA
RemoveDirectoryA
GetConsoleCommandHistoryLengthW
TerminateThread
FileTimeToSystemTime
SetConsoleOS2OemFormat
SetThreadAffinityMask
DefineDosDeviceW
SetEvent
GetExitCodeThread
LoadModule
WriteConsoleOutputAttribute
FormatMessageW
GetTempFileNameA
GetStringTypeW
CloseProfileUserMapping
RaiseException
WaitForSingleObject
FoldStringW
GetPrivateProfileIntW
GetSystemPowerStatus
VirtualFree
GetHandleInformation
WriteConsoleOutputCharacterA
GetConsoleHardwareState
RequestWakeupLatency

user32

SetCursor
DestroyCaret
mouse_event
LoadStringA
BeginPaint
AttachThreadInput
GetWindowTextA
EnableScrollBar
OpenWindowStationA
Win32PoolAllocationStats
IMPQueryIMEA
GetKeyState
CloseWindow
SendDlgItemMessageA
IsCharLowerW
CreateIconFromResourceEx
EnumDisplayDevicesA
SetConsoleReserveKeys
LookupIconIdFromDirectory
LoadCursorW
SetPropW
EnumDisplayDevicesW
ReleaseCapture
GetForegroundWindow
DestroyIcon
GetMessageExtraInfo
SetMenuInfo
ChangeDisplaySettingsExA
GetInputState
SetWindowPos
DlgDirListComboBoxW
EnumWindowStationsA
SendNotifyMessageW
UnhookWinEvent
DrawTextW
LoadImageA

gdi32

StretchDIBits
CreateFontA
STROBJ_bEnumPositionsOnly
RemoveFontResourceExW
GdiRealizationInfo
DescribePixelFormat
GdiGetCharDimensions
PlayMetaFile
ModifyWorldTransform
GetBkColor
CreateFontIndirectExW
EndPath
SetFontEnumeration
GetCharacterPlacementW
GetGlyphIndicesA
CreateEllipticRgnIndirect
HT_Get8BPPFormatPalette
SetMiterLimit
SwapBuffers
SetLayoutWidth
SetWorldTransform

comdlg32

FindTextA
PrintDlgExA
PageSetupDlgW
PrintDlgW
dwOKSubclass
GetFileTitleA

Sections

.text
Size: 4KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ba3af27e16692aa4587076fe84afd6cc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 192KB

.data Size: 149KB - Virtual size: 152KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 192KB

.data
Size: 149KB - Virtual size: 152KB

.idata
Size: 3KB - Virtual size: 4KB