b6d845cf634e164aac93dbffd99c68d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6d845cf634e164aac93dbffd99c68d4
Size

30KB
MD5

b6d845cf634e164aac93dbffd99c68d4
SHA1

ed61ca5176ff525615fe61dc2953297d03fcad96
SHA256

7947e75896fab71432529ed73432b5e9f30bebcf99e358803cf7c9212dd267cf
SHA512

a10422f3f87703e6f96435d8271ea23b7f1431eb89ece5a76ed8466308252a9a2ed3e620ee37d9c5cfd59b604ae9aa6871252de7dcda56435e159345f772ffd5
SSDEEP

384:BgljiN/HWBrgejIfCvII7JF3pAgEO47ImR:giN/WBrgbOI6JFZAgEzImR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6d845cf634e164aac93dbffd99c68d4

Files

b6d845cf634e164aac93dbffd99c68d4
.exe windows:1 windows x86 arch:x86

5a5933476da512ccdf93a0e1df61b3a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
FreeLibrary
GetCommandLineA
GetComputerNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
CloseHandle
GetTempPathA
GetTickCount
GetVersionExA
GetWindowsDirectoryA
LoadLibraryA
CopyFileA
OpenMutexA
OpenProcess
Process32First
Process32Next
RtlUnwind
CreateFileA
Sleep
TerminateProcess
WriteFile
CreateMutexA
lstrcmpiA
CreateThread
CreateToolhelp32Snapshot

advapi32

GetUserNameA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

crtdll

__GetMainArgs
_strcmpi
atoi
exit
memcpy
memset
raise
rand
signal
srand
strcat
strchr
strcmp
strncpy
strstr
strtok

shell32

ShellExecuteA

user32

wsprintfA

wsock32

WSACleanup
WSAStartup
closesocket
connect
htons
inet_addr
recv
send
socket

Sections

MON0
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avp
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE