660cec23361e8a73d3577cacaa78d066

Sharing

Copy URL Twitter E-mail

General

Target

660cec23361e8a73d3577cacaa78d066
Size

152KB
MD5

660cec23361e8a73d3577cacaa78d066
SHA1

b6038eb7ba10092cdff7755753a0911c69db23cc
SHA256

f4a6ede6731f7df91992b059f550b767f1ffe81869eaffba276d7cf2cda78d46
SHA512

70ba6685a87cc9002e1e25c0f89ffa023c3d34662a7caaaca8e03195b8090fefc4120bd994022a4dc23c10d7b949009e28cec73ef5df16740f388076998fe45b
SSDEEP

3072:Ip5qtymFH5qLAi7C2Ute6899Xu7Ntef0rk+lak:Ibm15qLx7C5BC9XupdI7k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
660cec23361e8a73d3577cacaa78d066

Files

660cec23361e8a73d3577cacaa78d066
.exe windows:4 windows x86 arch:x86

07c43d314381ab72bb1850e84fb2c952

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileA
HeapAlloc
GetProcessHeap
HeapFree
lstrcatA
GetLastError
MapViewOfFile
CreateFileMappingA
GetFileInformationByHandle
ResetEvent
MoveFileA
SetFileAttributesA
DeleteFileA
SetFileTime
FlushFileBuffers
WriteFile
GetFileAttributesA
CreateDirectoryA
GlobalFree
GlobalUnlock
GlobalLock
SetThreadPriority
CreateThread
GlobalAlloc
MoveFileExA
LocalAlloc
RemoveDirectoryA
GetTickCount
CreateProcessA
Sleep
GetTempPathA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetLocalTime
ReadFile
DeleteCriticalSection
FileTimeToSystemTime
SizeofResource
FindResourceA
GetProcAddress
LoadLibraryA
GetVersionExA
FreeLibrary
lstrcpynA
ReleaseMutex
CreateMutexA
CopyFileA
GetTempFileNameA
ResumeThread
SetStdHandle
SetFilePointer
IsBadCodePtr
IsBadReadPtr
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
FindFirstFileA
FindClose
MultiByteToWideChar
GetSystemTime
SystemTimeToFileTime
WaitForSingleObject
TerminateThread
SetEvent
GetComputerNameA
CloseHandle
lstrcmpiA
CreateEventA
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
lstrlenA
LocalFree
InterlockedDecrement
lstrcpyA
WideCharToMultiByte
InitializeCriticalSection
HeapSize
GetCurrentProcess
TerminateProcess
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
RaiseException
HeapReAlloc
RtlUnwind

user32

wsprintfA
TranslateMessage
SendMessageA
PostMessageA
IsWindow
RegisterWindowMessageA
SetTimer
KillTimer
GetMessageA
FindWindowA
PostQuitMessage
DestroyWindow
DefWindowProcA
RegisterClassExA
CreateWindowExA
PostThreadMessageA
DispatchMessageA
LoadStringA
PeekMessageA

advapi32

RegCloseKey
RegEnumKeyExA
RegEnumValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueA
RegQueryValueExA

shell32

SHGetSpecialFolderPathA
ShellExecuteExA

ole32

CoInitialize
CoCreateInstance

oleaut32

SysStringByteLen
GetErrorInfo
SysAllocString
SysFreeString
VariantInit
VariantClear

wininet

InternetConnectA
InternetSetOptionA
InternetSetStatusCallback
InternetWriteFile
InternetOpenA
FtpGetCurrentDirectoryA
HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
HttpEndRequestA
InternetCanonicalizeUrlA
InternetCrackUrlA
FtpRemoveDirectoryA
FtpCreateDirectoryA
InternetGetLastResponseInfoA
FtpFindFirstFileA
FtpDeleteFileA
FtpRenameFileA
FtpOpenFileA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
HttpSendRequestExA
InternetCloseHandle
InternetSetCookieA

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

07c43d314381ab72bb1850e84fb2c952

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

wininet

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 20KB - Virtual size: 40KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 20KB - Virtual size: 40KB