c6acd59e1e1ac211556c74a47474378a

Sharing

Copy URL Twitter E-mail

General

Target

c6acd59e1e1ac211556c74a47474378a
Size

509KB
MD5

c6acd59e1e1ac211556c74a47474378a
SHA1

db8a18eb20ded90c3135671310be8cfbd0d21666
SHA256

4856b28f647fd5311727bb7c1670e76b9f8feb7702f7a87b060a7cc79200f240
SHA512

c58bc0988beef97fb125e55c8258ed89eb2dffb7759fb8c18a75e1418ec6c0cf323cd15c5b7ba29a00f02593fc7a52599ea8f0fe689cf1c6abc5ec150348ae60
SSDEEP

12288:DehRNsIx9F6nUiAcsZJGN2qE73bDTFOnAhtexvHE0TjL:Deh/sIx9sPAcsZJGNsr3FThteV1T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6acd59e1e1ac211556c74a47474378a

Files

c6acd59e1e1ac211556c74a47474378a
.exe windows:4 windows x86 arch:x86

4c178f75f4d5d21c1bde44e6387c3b00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

shell32

ExtractIconExW
SHGetFileInfoA
InternalExtractIconListW
SHGetMalloc

kernel32

EnumSystemLocalesA
LoadLibraryA
WriteFile
VirtualAlloc
GetCurrentProcessId
TlsGetValue
CloseHandle
FreeEnvironmentStringsA
ExitProcess
GetFileType
GetSystemInfo
GetTimeZoneInformation
GetLocaleInfoW
UnhandledExceptionFilter
GetCPInfo
GetStdHandle
GetEnvironmentStringsW
EnterCriticalSection
LCMapStringW
GetStringTypeA
IsBadWritePtr
GetProcAddress
GetCurrentThreadId
CreateMutexA
SetEnvironmentVariableA
VirtualQuery
VirtualFree
TlsFree
GetLastError
GetACP
InitializeCriticalSection
RtlUnwind
QueryPerformanceCounter
SetLastError
LCMapStringA
GetEnvironmentStrings
GetSystemTimeAsFileTime
InterlockedExchange
GetTimeFormatA
IsValidCodePage
SetStdHandle
GetCommandLineA
HeapSize
HeapAlloc
FreeEnvironmentStringsW
HeapDestroy
GetTickCount
GetCurrentThread
SetFileAttributesA
GetVersionExA
ReadFile
GetLocaleInfoA
OpenMutexA
FlushFileBuffers
TerminateProcess
WideCharToMultiByte
GetModuleHandleA
GetOEMCP
CompareStringW
MultiByteToWideChar
SetFilePointer
TlsSetValue
CompareStringA
GetCurrentProcess
GetDateFormatA
IsValidLocale
HeapFree
SetHandleCount
GetUserDefaultLCID
TlsAlloc
HeapReAlloc
HeapCreate
VirtualProtect
LeaveCriticalSection
GetModuleFileNameA
GetStartupInfoA
GetStringTypeW
DeleteCriticalSection

gdi32

CreateHatchBrush
CreatePenIndirect
GetTextExtentPointA
GetGlyphOutlineW
GetMetaFileW
ExtTextOutW
GetKerningPairs
GetObjectW
SetBitmapBits
CreateScalableFontResourceW
GetTextExtentPointW
SetTextCharacterExtra
DeleteEnhMetaFile
CreateICW
SetICMProfileW
DeviceCapabilitiesExA
SetPixelFormat
GetCharABCWidthsA
TextOutA
GetICMProfileA
CreateDiscardableBitmap
SetMapperFlags
Polyline

user32

DdeImpersonateClient
CallMsgFilterA
SetDoubleClickTime
GetDC
GetWindowRgn
GetPropW
OpenWindowStationA
WinHelpA
InvalidateRgn
CreateDialogIndirectParamW
IsClipboardFormatAvailable
UnloadKeyboardLayout
SetWindowLongW
DialogBoxIndirectParamW
EnumDesktopsW
RegisterClassExA
InflateRect
RegisterClassA
DrawTextExW
GetDlgCtrlID
PostMessageA
GetWindowTextA
SetWindowTextW
PtInRect
GetScrollRange

wininet

InternetCloseHandle
InternetQueryDataAvailable
FindNextUrlCacheGroup
HttpSendRequestExW
ShowClientAuthCerts

comdlg32

ReplaceTextW
PrintDlgA
GetOpenFileNameA
ReplaceTextA

Sections

.text
Size: 338KB - Virtual size: 338KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c178f75f4d5d21c1bde44e6387c3b00

Headers

File Characteristics

Imports

comctl32

shell32

kernel32

gdi32

user32

wininet

comdlg32

Sections

.text Size: 338KB - Virtual size: 338KB

.rdata Size: 45KB - Virtual size: 52KB

.data Size: 103KB - Virtual size: 103KB

.rsrc Size: 21KB - Virtual size: 21KB

.text
Size: 338KB - Virtual size: 338KB

.rdata
Size: 45KB - Virtual size: 52KB

.data
Size: 103KB - Virtual size: 103KB

.rsrc
Size: 21KB - Virtual size: 21KB