b6797da7d736ab4ebfab7329285ea5a2

General

Target

b6797da7d736ab4ebfab7329285ea5a2
Size

195KB
MD5

b6797da7d736ab4ebfab7329285ea5a2
SHA1

93336855f2f2283ccd37557a75a25e9687403e4e
SHA256

4d4a539d0133e6edd8b4e713f474f65065375cfe971f146bd753b4cd0648763b
SHA512

c2432e3e14c463f1a795c4684d9c2fadea4b5ea2fab694f044dcb0624a91efaaac609dcb24d00cf3ae42f2674c3dad3975c5b05e18c9f627fc35e0f77e96dbd7
SSDEEP

3072:82aqyxM7GgWfwLs0DJAPaWQuyfMBH24PxZxPGT6HbHklbNX7Bz8jDtZ:82aqyxMalfw8SwyYHDPTxbburz8jb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6797da7d736ab4ebfab7329285ea5a2

Files

b6797da7d736ab4ebfab7329285ea5a2
.exe windows:5 windows x86 arch:x86

23f6069cb803db01a11935c2f54082db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DefineDosDeviceA
RemoveDirectoryA
GlobalDeleteAtom
SetWaitableTimer
GetDevicePowerState
GetComputerNameA
EndUpdateResourceA
OpenProcess
SystemTimeToTzSpecificLocalTime
GetConsoleKeyboardLayoutNameA
SetProcessWorkingSetSize
WriteFile
SetUserGeoID
FlushViewOfFile
OutputDebugStringA
WriteConsoleOutputCharacterW
GetCPInfoExA
DuplicateHandle
SetFilePointerEx
GetVersionExA
GetConsoleAliasExesLengthW
GlobalDeleteAtom
UpdateResourceA
LZRead
ReadConsoleOutputCharacterA
GetLogicalDriveStringsA
ClearCommError
AddAtomA
GetCommMask
FillConsoleOutputAttribute
ExitThread
GetConsoleScreenBufferInfo
GetFileAttributesExA
SetEndOfFile
VirtualAlloc
GetVolumePathNameA
ReleaseSemaphore
GetThreadContext
lstrcat
GlobalHandle
LoadLibraryExW
LZClose
GetVolumePathNamesForVolumeNameA
SetConsoleDisplayMode

user32

DeleteMenu
SetWindowsHookExA
GetClassInfoA
GetSystemMenu
CreateSystemThreads
RegisterClassA
SetMenuDefaultItem
SetWindowTextA
ChangeClipboardChain
LockSetForegroundWindow
GetMessageTime
GetDesktopWindow
EnterReaderModeHelper
GetReasonTitleFromReasonCode
GetCaretBlinkTime
RealChildWindowFromPoint
GetMenuItemCount
DrawFrame
LoadMenuA
CascadeWindows
DrawTextA
CallMsgFilterA
RegisterDeviceNotificationA
SetSysColors
LoadCursorFromFileA
TrackPopupMenuEx
MapVirtualKeyExW
HideCaret
GetWindowTextLengthA
EnumDisplayDevicesA
GetClassLongA
GetWindowTextA

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23f6069cb803db01a11935c2f54082db

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 42KB - Virtual size: 42KB

.idata Size: 2KB - Virtual size: 14KB

.rsrc Size: 149KB - Virtual size: 149KB

.text
Size: 42KB - Virtual size: 42KB

.idata
Size: 2KB - Virtual size: 14KB

.rsrc
Size: 149KB - Virtual size: 149KB