c6633842f3172ba868ef4edacdbaf601

Sharing

Copy URL

Twitter E-mail

General

Target

c6633842f3172ba868ef4edacdbaf601
Size

205KB
MD5

c6633842f3172ba868ef4edacdbaf601
SHA1

1886fb440f1f65319a397d7337d89862aca58435
SHA256

5d7ac27420c062df0bb7ef4ee0787d3041bf18b24921b0202eaea6f5e0d6030c
SHA512

1d1c9a83fb4207e6f5f3f49159521b277114a3abedc2b7317f370a0829f4dfa29d4440694dee0fb19c7f2efc106a184fc5dec27b1033734b6b084d0f2c4b14c0
SSDEEP

3072:SizdaRhHfyIQ8phUZjvZfqsTwbObZy30GWid3O5cShK1OYdrShZOuNojLIsE67RG:Siofy4GjvIspYvd+hK1OYd2n9uPE6h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6633842f3172ba868ef4edacdbaf601

Files

c6633842f3172ba868ef4edacdbaf601
.dll windows:5 windows x86 arch:x86

3f06ad98fa72ef4698954dddddbde967

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

S:\oubPmco\prchilJbtbeT\OXkrndiEwhgQUL\ohbzlhZYXe\jwyUipiozKal.pdb

Imports

user32

GetWindowLongA
PostQuitMessage
wvsprintfW
PostThreadMessageA
PtInRect
GetKeyboardLayoutNameW
DefFrameProcA
WindowFromPoint
GetKeyState
AppendMenuA
GetClipCursor
SetWindowRgn
GetDlgItem
GetMenuItemCount
EndTask
UnloadKeyboardLayout
GetClientRect
PeekMessageA
LookupIconIdFromDirectory
InternalGetWindowText
SetWindowTextW
SwitchToThisWindow
GetWindow
mouse_event
GetLastActivePopup
GetWindowTextA
RegisterClassExA
GetMenuItemRect
WaitForInputIdle
GetWindowPlacement
DefFrameProcW
SetCursor
GetClassNameW
DispatchMessageA
CallWindowProcA
FindWindowExW
SystemParametersInfoA
BeginDeferWindowPos
CreateIconFromResource
SetActiveWindow
CascadeWindows
DestroyMenu
MessageBoxExA
GetParent
CreateDialogParamW
AttachThreadInput
EnumChildWindows
SendDlgItemMessageW
IsCharAlphaNumericW
EnableWindow
GrayStringW
LoadIconA
HiliteMenuItem
ShowWindow
OpenInputDesktop
EnumWindows
RegisterWindowMessageW
GetDesktopWindow
WaitMessage
GetMenuItemInfoW
RegisterClassExW
DrawTextExW
IsWindow
PeekMessageW
SetPropW
IsWindowVisible
GetMenu
LockWindowUpdate
GetMenuStringW
LoadImageA
SetRectEmpty
SetScrollRange
AppendMenuW
InSendMessage
DrawAnimatedRects
InvalidateRgn
MapVirtualKeyA
DragObject
BringWindowToTop
CharLowerA
GetNextDlgTabItem
GetSysColorBrush
MonitorFromRect
CharNextExA
RedrawWindow
DestroyIcon
GetKeyboardLayout
CharPrevA
CreateWindowExA
IsZoomed
TranslateMessage
GetDlgCtrlID
SetFocus
SetLastErrorEx
FindWindowA
DefWindowProcW
SetRect
ReplyMessage
ValidateRect
RegisterHotKey
LoadIconW
CheckRadioButton
ScrollWindowEx
GetMonitorInfoW
GetFocus
DrawTextA
CreateDialogParamA
ChildWindowFromPoint
SetWindowPos
wvsprintfA
AdjustWindowRect
SetScrollPos
AdjustWindowRectEx
TrackPopupMenu
CopyAcceleratorTableW
DefDlgProcA
DefDlgProcW
MessageBoxExW
EqualRect
GetMenuCheckMarkDimensions
InSendMessageEx
TrackPopupMenuEx
GetIconInfo
GetClassInfoA
MessageBoxA
CharUpperBuffW
LoadCursorW
ShowCursor

msvcrt

puts
setlocale
gets
strtok
wcstombs
fputc
fseek
time
_controlfp
__set_app_type
__p__fmode
__p__commode
bsearch
ungetc
memset
srand
strerror
sprintf
putchar
wcscat
atoi
iswxdigit
swprintf
wcsncmp
fputs
_amsg_exit
iswalpha
_initterm
wcschr
strncpy
_acmdln
exit
localtime
isprint
iswspace
isspace
_ismbblead
_XcptFilter
iswctype
islower
towlower
fprintf
fwrite
_exit
_cexit
wcscpy
__setusermatherr
mbtowc
__getmainargs
isupper
strpbrk
mktime

kernel32

GetOEMCP
SetThreadExecutionState
CreateSemaphoreA
ConnectNamedPipe
GetSystemInfo
LocalSize
CreatePipe
GetSystemDirectoryA
CompareFileTime
WriteFile
WaitForMultipleObjectsEx
GetTickCount
GlobalAddAtomW
CreateFileA
RemoveDirectoryA
GlobalFree
SetThreadPriority
GetTempFileNameW
GetCommModemStatus
GetCommConfig
GlobalAddAtomA
GetSystemTimeAdjustment
GlobalFlags
GetShortPathNameW
SetEndOfFile
VirtualAlloc
GetComputerNameExA
GetLocaleInfoA
GetTempFileNameA
LocalReAlloc
LoadLibraryW
RemoveDirectoryW
GetThreadTimes
SetThreadLocale
AreFileApisANSI
GetUserDefaultLangID
LockFile
GetModuleFileNameA
SetCommState
GetCommTimeouts
lstrcpyW
GetExitCodeThread
SetLastError
SetCommBreak
LoadResource
FileTimeToSystemTime
lstrlenW
GetUserDefaultLCID
QueryPerformanceCounter
LocalFree
HeapLock
DisconnectNamedPipe
CreateMutexA
GlobalDeleteAtom
GetSystemDefaultLangID
ReadFile
VerifyVersionInfoW
GetTimeFormatA
GlobalFindAtomW
GetModuleHandleA

gdi32

MoveToEx
GetDIBits
SetBitmapBits
TextOutA
GetBitmapBits
GetClipBox
CreateFontA
GetTextExtentExPointW
SetBrushOrgEx
StretchDIBits
DeleteDC
SetDIBitsToDevice
SetPixel
PatBlt
ExtFloodFill
StretchBlt
TextOutW
ExcludeClipRect
SetBkMode
GetCharWidth32W
GetObjectA
ScaleViewportExtEx
SetMapMode
CreateFontW
SetAbortProc
GetTextColor
StartPage
DeleteObject
GetPaletteEntries
CreateBitmap
GetLayout
SetPaletteEntries
GetMapMode
CreateCompatibleDC
CreateHalftonePalette
CreateICW
RoundRect
SetLayout
SelectPalette
GetDeviceCaps
CreateBitmapIndirect
OffsetRgn
SetWindowOrgEx
OffsetViewportOrgEx
BeginPath
RemoveFontResourceW
WidenPath
CombineRgn
CreatePatternBrush
CreateDIBitmap
GetNearestPaletteIndex
GetTextExtentPointW
SetBkColor
ResizePalette

Exports

Exports

?KillFilePathW@@IJPAKPAKPAKHPAK@X
?CancelStateA@@IJHMF@X
?SetMutexEx@@IJPAGEGPAIPAM@X
?DecrementMediaTypeNew@@IJPAXPAMPAGF@X

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f06ad98fa72ef4698954dddddbde967

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 131KB - Virtual size: 130KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 61KB - Virtual size: 60KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 131KB - Virtual size: 130KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 61KB - Virtual size: 60KB

.reloc
Size: 2KB - Virtual size: 1KB