6680a05e8872f2b6e74fdbf94c81e6fa

Sharing

Copy URL Twitter E-mail

General

Target

6680a05e8872f2b6e74fdbf94c81e6fa
Size

280KB
MD5

6680a05e8872f2b6e74fdbf94c81e6fa
SHA1

0939fc8e65b098197afb2d021a552f11b1640fab
SHA256

e04defa09fd0737d5bf9ade7227becc4175872f975f4521e06727b51e3b5bf66
SHA512

cfb01e8a42ac319f154c463dcc4056318e69e2d699d7e636d3ca99eeed0042571967bb23c5721960ef7a27fe8e5f2b878a8e8af18d2f56b72ca9302886c4482d
SSDEEP

6144:hghHR9FeIwM+PTYHF+4T48ABzzSGg+Lea/D0j0kae+cYX:hgj9FeFMsY7Ev/quD7rc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6680a05e8872f2b6e74fdbf94c81e6fa

Files

6680a05e8872f2b6e74fdbf94c81e6fa
.exe windows:4 windows x86 arch:x86

ab63f9c0616552eeeda9cd8c087c7e41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SuspendThread
InterlockedExchange
GetCPInfo
CompareStringW
InitializeCriticalSection
FlushFileBuffers
WriteFile
GetFileType
VirtualAlloc
TlsFree
GetTimeFormatA
LCMapStringW
GetModuleFileNameA
GetCurrentThreadId
GetEnvironmentStrings
GetLocaleInfoA
ExitProcess
GetCommandLineA
MultiByteToWideChar
LCMapStringA
CreateMutexA
LoadLibraryA
QueryPerformanceCounter
SetStdHandle
VirtualFree
HeapDestroy
GetStringTypeW
ReadFile
IsBadCodePtr
lstrcpynW
SetLastError
GetStringTypeA
TlsSetValue
GlobalHandle
GlobalLock
EnterCriticalSection
GetDateFormatA
RtlUnwind
SetHandleCount
TerminateProcess
GetTimeZoneInformation
GetSystemTimeAsFileTime
CloseHandle
HeapSize
VirtualProtect
WideCharToMultiByte
SetEnvironmentVariableA
GetEnvironmentStringsW
GetTickCount
LoadResource
GetSystemInfo
GetStartupInfoA
FreeEnvironmentStringsW
FreeLibrary
SetFilePointer
lstrcmpA
TlsGetValue
LeaveCriticalSection
GetOEMCP
HeapReAlloc
GetCurrentProcessId
GetProcAddress
TlsAlloc
HeapCreate
DeleteCriticalSection
UnhandledExceptionFilter
HeapAlloc
GlobalReAlloc
GetStdHandle
GlobalAlloc
GetVersionExA
GetLastError
GetACP
GetModuleHandleA
RaiseException
FreeEnvironmentStringsA
VirtualQuery
SetUnhandledExceptionFilter
CompareStringA
FileTimeToLocalFileTime
GetCurrentProcess
GetUserDefaultLCID
HeapFree

winmm

mmioClose
mmioWrite
mmioAscend
mmioCreateChunk
timeKillEvent
mixerClose
mmioOpenA
timeBeginPeriod
waveOutGetDevCapsA
mixerGetDevCapsA
timeSetEvent
mixerSetControlDetails
mixerOpen

advapi32

RegEnumValueA
RegEnumKeyA
CreateServiceA
RegDeleteValueA
GetUserNameA
RegOpenKeyA
RegCreateKeyA
ChangeServiceConfigA
FreeSid
RegOpenKeyExA
QueryServiceConfigA
DeleteService
RegEnumKeyExA
CloseServiceHandle
StartServiceA
RegSetValueExA
OpenProcessToken
ControlService
RegCloseKey
LookupPrivilegeValueA
OpenServiceA
RegDeleteKeyA
RegQueryValueExA
OpenThreadToken
OpenSCManagerA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
QueryServiceStatus
AdjustTokenPrivileges
RegQueryValueA
AllocateAndInitializeSid
RegCreateKeyExA

winspool.drv

ClosePrinter
OpenPrinterA
ord204

user32

UnionRect
GetDC
RemovePropA
ShowScrollBar
GetPropA
GetScrollRange
TranslateMessage
GetSysColorBrush
GetWindowRect
InvalidateRgn
KillTimer
PostThreadMessageA
RegisterClassA
UnhookWindowsHookEx
DrawMenuBar
CharUpperA
GetDesktopWindow
TrackPopupMenu
TrackPopupMenuEx
DestroyMenu
GetMenu
SetTimer
GetTopWindow
TabbedTextOutA
IsRectEmpty
ReleaseCapture
CharNextA
SetWindowLongA
IsChild
GetClassNameA
RedrawWindow
ClientToScreen
EndDialog
GetMessagePos
ModifyMenuA
LoadBitmapA
EndPaint
LoadAcceleratorsA
SetWindowRgn
GetMenuItemID
IsWindowEnabled
ValidateRect
GetDCEx
CreateIconIndirect
GetMessageA
UnpackDDElParam
MapDialogRect
ReleaseDC
GetCursorPos
ShowWindow
GetScrollPos
SetWindowPos
LockWindowUpdate
CreatePopupMenu
GetMenuStringA
GetClientRect
FindWindowA
IsWindow
EnableWindow
DispatchMessageA
wsprintfA
GetWindowTextA
FrameRect
AppendMenuA
GetSubMenu
GetParent
IntersectRect
PostMessageA
CallNextHookEx
MessageBeep
DefDlgProcA
OpenClipboard
GetScrollInfo
DrawEdge
EnableMenuItem
TranslateAcceleratorA
LoadCursorA
DrawFrameControl
MapWindowPoints
SetCapture
OffsetRect
ShowCaret
IsIconic
SetRectEmpty
GetNextDlgTabItem
DestroyCursor
MessageBoxA
MoveWindow
SetCursor
DrawFocusRect
GetWindowLongA
GetMenuState
FillRect
GetWindowPlacement
GetClassInfoExA
ScrollWindow
GetSystemMetrics
GetCursor
CheckMenuItem
CopyRect
GetSysColor
GetWindow
SetScrollRange
RegisterClassExA
UpdateWindow
IsZoomed
SetFocus
InflateRect
SetDlgItemTextA
SetWindowsHookExA
SystemParametersInfoA
IsMenu
GetNextDlgGroupItem
SetForegroundWindow
GetForegroundWindow
DestroyAcceleratorTable
GetActiveWindow
GetWindowTextLengthA
InsertMenuA
UnregisterClassA
CreateWindowExA
DeferWindowPos
ScreenToClient
GetClassLongA
CreateDialogIndirectParamA
GetIconInfo
GetWindowThreadProcessId
DrawTextA
GetCapture
SetPropA
GetMenuItemCount
SetActiveWindow
InvalidateRect
GetKeyState
LoadStringA
GetKeyboardState
GetDlgCtrlID
BeginPaint
EmptyClipboard
SetScrollInfo
LoadIconA
CallWindowProcA
GetDlgItem
SetMenuItemBitmaps
WinHelpA
SendMessageA
GrayStringA
RegisterWindowMessageA
SetRect
CreateMenu
GetSystemMenu
IsWindowVisible

urlmon

IsValidURL

gdi32

SetPaletteEntries
EndPath
GetWindowExtEx
StrokePath
SelectObject
GetViewportOrgEx
GetCharWidthA
Pie
Polygon
GetDCOrgEx
SetBrushOrgEx
SetStretchBltMode
CreateHalftonePalette
CreateCompatibleBitmap
DeleteObject
DeleteMetaFile
BeginPath
GetBkMode
SelectClipPath
EqualRgn
CreateBitmap
IntersectClipRect
CopyMetaFileA
GetOutlineTextMetricsA
SetWindowOrgEx
GetROP2
StretchDIBits
GetTextMetricsA
GetPaletteEntries

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab63f9c0616552eeeda9cd8c087c7e41

Headers

File Characteristics

Imports

kernel32

winmm

advapi32

winspool.drv

user32

urlmon

gdi32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 104KB - Virtual size: 102KB

.data Size: 60KB - Virtual size: 68KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 104KB - Virtual size: 102KB

.data
Size: 60KB - Virtual size: 68KB

.rsrc
Size: 36KB - Virtual size: 34KB