660db34a773a7093b7a3df09e6ab7500

Sharing

Copy URL Twitter E-mail

General

Target

660db34a773a7093b7a3df09e6ab7500
Size

972KB
MD5

660db34a773a7093b7a3df09e6ab7500
SHA1

efa4f6559b3c00e03addeca4fbdc67b57c002238
SHA256

818c95ee7eae181e9ca936911793c45a3783e80b15c58af9da15d11d6edf36ea
SHA512

55fff4f3d13b458d810606eebd15de42586e372d164e195dcedee34c41a9e81f2c15ef925f9cab80d7133e260f2879d11344ca1f347a1f042eeb1584e4561b09
SSDEEP

6144:oR6aaEEMtYS13BO1XfBKApLkYC9a/j/Go5EK12mS6hDdX1VXtPSR6Z0ixleep+gH:RVE3N1k1p5hnqw1v4al7atMX4Wxcgx5D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
660db34a773a7093b7a3df09e6ab7500

Files

660db34a773a7093b7a3df09e6ab7500
.exe windows:4 windows x86 arch:x86

de606c0675944d289be7b41f40022f63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetTickCount
GetModuleFileNameW
EnterCriticalSection
GetLastError
CloseHandle
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InterlockedIncrement
FreeLibrary
VirtualAlloc
CreateThread
LocalAlloc
lstrcmpiW
LocalAlloc
GetCurrentThreadId
UnhandledExceptionFilter
InterlockedDecrement
GetModuleFileNameW
VirtualProtect
CloseHandle
LocalFree
LocalAlloc
CreateFileW
lstrcmpiW
LocalAlloc
GetModuleHandleW
GetSystemTimeAsFileTime
InterlockedDecrement
LoadLibraryW
FreeLibrary
InitializeCriticalSection
SetLastError
EnterCriticalSection
VirtualAlloc
GetModuleFileNameW
HeapFree
GetCurrentProcessId
DeleteCriticalSection
GetSystemTimeAsFileTime
CloseHandle
HeapFree
Sleep
DeleteCriticalSection
GetModuleFileNameA
lstrlenA
GetProcAddress
FreeLibrary
HeapDestroy
GetCurrentThreadId
CreateFileW
DisableThreadLibraryCalls
GetLastError
GetCurrentProcess
CloseHandle
EnterCriticalSection
VirtualProtect
Sleep
ReadFile
DisableThreadLibraryCalls
GetVersionExA
CreateEventW
VirtualAlloc
CreateFileW
GetModuleFileNameW
lstrlenA
InterlockedExchange

user32

ReleaseDC
BeginPaint
BeginPaint
DispatchMessageW
SendMessageW
SetDlgItemTextW
EndPaint
PostQuitMessage
EndDialog
DefWindowProcW
InvalidateRect
SetTimer
SetForegroundWindow
GetParent
LoadIconW
SetFocus
IsDlgButtonChecked
TranslateMessage
SetForegroundWindow
ShowWindow
ReleaseDC
ReleaseDC
GetSysColor
PostMessageW
LoadIconW
SetFocus
GetClientRect
SetForegroundWindow
DefWindowProcW
GetDC
DestroyWindow
BeginPaint
BeginPaint
KillTimer
SetWindowTextW
GetDC
SetTimer
PostQuitMessage
LoadStringW
ShowWindow
EndDialog
BeginPaint
SetWindowLongW
ReleaseDC
SetWindowTextW
TranslateMessage
IsWindow
EndPaint
SetDlgItemTextW
SetFocus
SendDlgItemMessageW
BeginPaint
SendMessageW
wsprintfA
PostMessageW
TranslateMessage
GetWindowLongW
DestroyWindow
BeginPaint
CharNextW
SendDlgItemMessageW
SetForegroundWindow
SetDlgItemTextW
GetWindowRect
GetDesktopWindow
SetTimer
SendMessageW
GetSystemMetrics

gdi32

GetBkColor
Polygon
Polygon
SetBkColor
CreateSolidBrush
GetBrushOrgEx
SetBkMode
Polygon
SetBrushOrgEx
BitBlt
SetTextColor
CreateSolidBrush
GetWindowExtEx
GetWindowOrgEx
CreateCompatibleDC
CreateSolidBrush
GetBkColor
LineTo
CreateFontA
GetCurrentObject
CreateDIBSection
GetWindowExtEx
RoundRect
CreateSolidBrush
CreateRectRgn
CreateDIBitmap
CreateSolidBrush
CreateCompatibleDC
Ellipse
BitBlt
Ellipse
CreatePen
GetBkMode
GetPixel
SetWindowOrgEx
LineTo
CreateFontIndirectA
PatBlt
GetWindowExtEx
CombineRgn
CreateDIBitmap
GetWindowExtEx
CreateFontA
CreateFontIndirectA
LineTo
GetCurrentObject
SetTextColor
MoveToEx
CreateBitmapIndirect
SetTextColor
BitBlt
GetBrushOrgEx
Polygon
CreateDIBitmap
GetBkColor
CreateRectRgn
GetBrushOrgEx
Rectangle
CreateDIBSection
CreateBitmapIndirect

Sections

.text
Size: 884KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de606c0675944d289be7b41f40022f63

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 884KB - Virtual size: 968KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 884KB - Virtual size: 968KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB