6841bb08e767d0246aee2c0243fd2809

General

Target

6841bb08e767d0246aee2c0243fd2809
Size

49KB
MD5

6841bb08e767d0246aee2c0243fd2809
SHA1

f3d26c29a117563b3d0d643725ce84dc0ead66f7
SHA256

ca738d753568eeb77ef16e886260d913b5542730989a25c168008da9293612ba
SHA512

f72edf14d12e1be09d016219c5df283d3481e2e6c3e5e50aa770768847c67ca6856c8dc4e76fb1eefa3e4e445c79203c8a6cf3803a15d19b9549d63409a53251
SSDEEP

768:keeGtL/Si+ObcexOKdgcCIfC27FSPoZZE4TwYu0MgfIHFU1SdyLf9FOSw:9tmwYydgnmCXU1z+HFwr9QS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6841bb08e767d0246aee2c0243fd2809

Files

6841bb08e767d0246aee2c0243fd2809
.exe windows:5 windows x86 arch:x86

2c1e8b3142abda48f890c2aaee0be94f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseWindowStation
LoadCursorW
FindWindowExW
DrawIcon
SendMessageW
PeekMessageA
PeekMessageW
OpenWindowStationA
GetClassNameW
GetMessageA
SetProcessWindowStation
EndDialog
GetMessageW
GetCursorPos
MsgWaitForMultipleObjects
ExitWindowsEx
GetClipboardData
OpenDesktopA
ToUnicode
CharLowerBuffA
GetKeyboardState
GetDlgItemTextA
GetDlgItemTextW
SetThreadDesktop
GetWindowTextW
GetIconInfo
GetWindowThreadProcessId
GetKeyState
GetWindowLongW
GetForegroundWindow
DispatchMessageW
GetDlgItem
CloseDesktop

kernel32

GetExitCodeProcess
ReleaseMutex
DeleteFileW
HeapFree
GlobalLock
FlushFileBuffers
GetTickCount
ExpandEnvironmentStringsW
lstrlenA
GetVersionExW
lstrlenW
lstrcatA
GetSystemTime
HeapReAlloc
CopyFileW
FindClose
EnterCriticalSection
CloseHandle
GetTimeZoneInformation
WriteProcessMemory
lstrcmpiW
GetLastError
lstrcpyA
GetCommandLineA
lstrcpynW
GetTempFileNameW
IsBadReadPtr
GetComputerNameW
GetThreadPriority
WideCharToMultiByte
MapViewOfFile
HeapAlloc
FindNextFileW
GetLocalTime
GetCurrentProcessId
SetEndOfFile
ReadFile
CreateFileMappingW
GetCurrentThreadId
GetDriveTypeW
CreateFileW
SetThreadPriority
lstrcpyW
GetSystemTimeAsFileTime
SetEvent
GetModuleHandleA
Sleep
CreateDirectoryW
UnmapViewOfFile
GetUserDefaultUILanguage
OpenProcess
GetTempPathW
ResetEvent
GlobalUnlock
DisconnectNamedPipe
SetFileTime
MultiByteToWideChar

Sections

.argd
Size: 39KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bop
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jynmn
Size: 7KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c1e8b3142abda48f890c2aaee0be94f

Headers

File Characteristics

Imports

user32

kernel32

Sections

.argd Size: 39KB - Virtual size: 61KB

.bop Size: 2KB - Virtual size: 5KB

.jynmn Size: 7KB - Virtual size: 80KB

.argd
Size: 39KB - Virtual size: 61KB

.bop
Size: 2KB - Virtual size: 5KB

.jynmn
Size: 7KB - Virtual size: 80KB