a06eedb881321a914b49a3cffdad4f3f

Sharing

Copy URL

Twitter E-mail

General

Target

a06eedb881321a914b49a3cffdad4f3f
Size

143KB
MD5

a06eedb881321a914b49a3cffdad4f3f
SHA1

d001132d06309da0b67368517585c3c6e73d4407
SHA256

196685ecdf49131115e8fb35ab68c2e25f3267e1ecc27b5f11a323f5c8feed13
SHA512

1c6c8779c78d1c53fa77384fd00553c63641ada075be0f2443a87a9f339652dd45bb4b8c77ff3100e6e65063a98d1108c6cb409dc52672df537d1f26ab14ee06
SSDEEP

3072:/7HWLbWfmGuY+EWn2tA1DvxKeUWR3ui6A1ba/wf+S9NZ2UHHm:zYgxzW2k0ebuNQ/P/Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a06eedb881321a914b49a3cffdad4f3f

Files

a06eedb881321a914b49a3cffdad4f3f
.exe windows:5 windows x86 arch:x86

a6ab2a5aa956159f9dd328d1580e1a50

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EmptyClipboard
GetScrollInfo
FillRect
GetClipboardData
GetDesktopWindow
IsCharAlphaNumericA
TranslateMDISysAccel
IsIconic
DrawIcon
ShowCaret
RemoveMenu
GetMenuStringA
TranslateMessage
DestroyCaret
UnregisterClassW
GetWindowTextLengthA
DestroyMenu
GetKeyboardState
BeginPaint
GetWindowTextA
DestroyIcon
CreateCaret
OpenClipboard
NotifyWinEvent
SetCaretPos
PostMessageA
RegisterClassA
CharUpperBuffA
GetLastActivePopup
PeekMessageA

shell32

ShellExecuteExA
SHGetSpecialFolderPathA

desklmon

_Sinh
_FInf
_Stof
_LDtest
_Strxfrm
_LDscale
_Tolower
_Strcoll
_FXbig
_Getcoll
_Poly
_Cosh
_FDenorm
_Nan

comctl32

ImageList_DragEnter
ImageList_DrawEx

kernel32

GlobalHandle
FindResourceA
VirtualAlloc
GetWindowsDirectoryA
EnterCriticalSection
CreateFileMappingA
GetFileAttributesW
FreeLibrary
TryEnterCriticalSection
GlobalGetAtomNameA
VirtualQuery
GetTimeZoneInformation
GlobalAlloc
GetCurrentProcessId
SizeofResource
LeaveCriticalSection
CloseHandle
GlobalAlloc
GetModuleHandleA
UnmapViewOfFile
GlobalReAlloc
GetExitCodeThread
DeleteCriticalSection
GlobalLock
WaitForMultipleObjects
TerminateProcess
OpenProcess
FindNextFileA
GetStdHandle
MapViewOfFileEx
lstrlenW

gdi32

FrameRgn
ExtCreatePen
SetPixelV
StartPage
GetWindowOrgEx
SetMapMode
IntersectClipRect
CreateDCA
SaveDC
SetROP2
CopyEnhMetaFileA
LPtoDP
GetTextExtentPoint32W
StretchBlt
SetWinMetaFileBits

oleaut32

GetErrorInfo
SetErrorInfo
VariantInit
VariantClear

imm32

ImmGetContext
ImmGetCompositionStringA

wininet

InternetErrorDlg
HttpQueryInfoA
HttpSendRequestA
InternetQueryOptionA

ole32

CoUninitialize
OleInitialize
CreateDataAdviseHolder
CoDisconnectObject
OleDraw

advapi32

InitializeSecurityDescriptor

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

timeEndPeriod

Sections

.text
Size: 136KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6ab2a5aa956159f9dd328d1580e1a50

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

desklmon

comctl32

kernel32

gdi32

oleaut32

imm32

wininet

ole32

advapi32

version

winmm

Sections

.text Size: 136KB - Virtual size: 140KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 136KB - Virtual size: 140KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB