75d06f7d551ac6541c6a0ba2ee0c89dd

General

Target

75d06f7d551ac6541c6a0ba2ee0c89dd
Size

69KB
MD5

75d06f7d551ac6541c6a0ba2ee0c89dd
SHA1

86a5d20c1c3e1ad207f80019e90a19b3a80d93cd
SHA256

df84c7229e757850ead8857c51bf29f977193a4faf971d0e23c9cfb5242bcbe2
SHA512

740e243bdd909ef16bcf3aa1b3feab7b883b9ef6008d3a47f364190664be3ba11ee85daac52ed3f7e84fd43d7b084dccc0762f0093b2b6e65666c06a29f5fbc9
SSDEEP

1536:hPywNb/FnToIfZtvv9UcoeB3HQeBvycnYtqr7oLyq:hPywNb/tTBfZtvOQBYtqr7oLyq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75d06f7d551ac6541c6a0ba2ee0c89dd

Files

75d06f7d551ac6541c6a0ba2ee0c89dd
.dll windows:4 windows x86 arch:x86

6e54f68b74a19c1253d89739c4d4a6f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
ReadFile
CreateProcessA
GetSystemDirectoryA
GetStartupInfoA
CloseHandle
CreatePipe
FreeLibrary
GetProcAddress
LoadLibraryA
FindClose
FindNextFileA
GetLastError
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
DeleteFileA
MoveFileA
GetCurrentProcess
SetLastError
lstrlenA
Process32Next
GetPriorityClass
OpenProcess
Module32First
lstrcpyA
WaitForSingleObject
CreateThread
WinExec
MoveFileExA
GetModuleFileNameA
GetTickCount
SetThreadPriority
GetCurrentThread
GetFileSize
CreateFileA
WriteFile
FreeConsole
lstrcmpiA
Process32First
CreateToolhelp32Snapshot
lstrcatA
GetTempPathA
GlobalMemoryStatus
GetVersionExA
GetComputerNameA
InterlockedExchange
HeapAlloc
GetProcessHeap
GetCurrentProcessId
GetCurrentThreadId
RaiseException
LocalAlloc

msvcrt

??2@YAPAXI@Z
__CxxFrameHandler
_CxxThrowException
_except_handler3
atoi
strcspn
strstr
??3@YAXPAX@Z
_ftol
wcstombs
rand
srand
malloc
??1type_info@@UAE@XZ
__dllonexit
_onexit
free
_initterm
_adjust_fdiv
strncpy
sprintf
strncat
_strlwr
_strcmpi

Exports

Exports

FuckUninstall
Install
RunInstall
ServiceMain

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e54f68b74a19c1253d89739c4d4a6f0

Headers

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 63KB

.rsrc Size: 1024B - Virtual size: 728B

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 1024B - Virtual size: 728B

.reloc
Size: 3KB - Virtual size: 2KB