6fb2404427c7f4a360daec47bdf8756c

Sharing

Copy URL Twitter E-mail

General

Target

6fb2404427c7f4a360daec47bdf8756c
Size

157KB
MD5

6fb2404427c7f4a360daec47bdf8756c
SHA1

61ae4baa610d743dd4a8dcb4b4b71dafbc3cc84d
SHA256

c6791cef57cea93c2a81c434b453f0e2f12c693a28f8bea65e50d8df5b50f84d
SHA512

be18d071a5a31600c04aaa8bafd07f7ae594e185f8dd3617b4b1209828b9e00b21f1a5def2d43701ed33156e7a1f93d659162957af67bfb8d462bca4d922c70d
SSDEEP

3072:nUy/P2zArgfSgnaLk6zx+k+lT3xIKcj2V+2OE0tcV9CG16TtVi8b9m:njPyAEVa71+TlT3Vk2VDdV9C7Tt2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fb2404427c7f4a360daec47bdf8756c

Files

6fb2404427c7f4a360daec47bdf8756c
.exe windows:4 windows x86 arch:x86

7d2886a9f0df657f0c04a22b058b7de9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
CreateSolidBrush
SetBkColor
DeleteObject
GetObjectW
CreateFontIndirectW
SetBkMode

comctl32

DestroyPropertySheetPage
PropertySheetW
CreatePropertySheetPageW

user32

GetDlgItem
SendMessageW
GetSystemMetrics
GetClientRect
AdjustWindowRect
MessageBoxW
ReleaseDC
MoveWindow
BeginPaint
GetWindowDC
SetWindowPos
LoadStringW
LoadBitmapW
PostMessageW
SetWindowLongW
EndPaint
GetWindowRect
ScreenToClient
CallWindowProcW
LoadIconW
SetDlgItemTextW
GetParent
DefWindowProcW
DestroyWindow
GetDlgItemTextW
GetWindowLongW
CreateWindowExW

ole32

CoCreateInstance
CoUninitialize
CoInitialize

kernel32

GetFileAttributesW
GetCPInfo
GetProcAddress
GetEnvironmentStringsW
Sleep
MultiByteToWideChar
WaitForMultipleObjects
IsDebuggerPresent
RaiseException
LoadLibraryExW
HeapAlloc
GetSystemTimeAsFileTime
CreateFileW
SetFilePointer
ReadFile
GetACP
UpdateResourceW
HeapSize
FreeLibrary
WideCharToMultiByte
GetEnvironmentStrings
GetVersionExA
GetFileType
GetStdHandle
SetStdHandle
HeapReAlloc
EndUpdateResourceW
VirtualFree
LCMapStringW
SetUnhandledExceptionFilter
GetCurrentProcess
CreateDirectoryW
IsValidCodePage
SetLastError
GetPriorityClass
GetStringTypeW
WriteConsoleA
EnumResourceTypesW
GetUserDefaultUILanguage
GetCurrentThreadId
VirtualAlloc
GetLocaleInfoA
GetModuleFileNameW
FreeEnvironmentStringsW
HeapFree
LCMapStringA
LoadLibraryW
QueryPerformanceCounter
GetConsoleCP
TlsAlloc
TerminateProcess
FlushFileBuffers
LoadLibraryA
GetModuleFileNameA
ExitProcess
InitializeCriticalSection
WriteFile
LeaveCriticalSection
InterlockedIncrement
TlsSetValue
GetProcessHeap
CloseHandle
EnterCriticalSection
InterlockedDecrement
HeapDestroy
GetTickCount
UnhandledExceptionFilter
GetStartupInfoA
SetHandleCount
GetFileSize
GetModuleHandleA
DeleteCriticalSection
GetStringTypeA
WriteConsoleW
GetOEMCP
GetSystemDirectoryW
RtlUnwind
CreateFileA
GetConsoleMode
TlsFree
HeapCreate
FreeEnvironmentStringsA
GetCommandLineA
TlsGetValue
GetConsoleOutputCP
BeginUpdateResourceW
GetCurrentProcessId
GetLastError

avifil32

AVISaveOptions
AVIMakeCompressedStream

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetSpecialFolderPathW
SHGetPathFromIDListW

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d2886a9f0df657f0c04a22b058b7de9

Headers

File Characteristics

Imports

gdi32

comctl32

user32

ole32

kernel32

avifil32

shell32

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 4KB - Virtual size: 3KB

.bss Size: 66KB - Virtual size: 66KB

.tls Size: 1024B - Virtual size: 104KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 4KB - Virtual size: 3KB

.bss
Size: 66KB - Virtual size: 66KB

.tls
Size: 1024B - Virtual size: 104KB