c6bcde8a221efe84ff436553ab36780b

Sharing

Copy URL Twitter E-mail

General

Target

c6bcde8a221efe84ff436553ab36780b
Size

396KB
MD5

c6bcde8a221efe84ff436553ab36780b
SHA1

cb0fe8ebdae069d7fed242b38b6a947ae1c6eca9
SHA256

e99a1d6aa029bf524f64653da2270c94a2b5a968c9fe7afbc7e689bba01e095d
SHA512

37700b003c30787fb9a43660510fd979c86d9d78873e626869b5a0b61b9eccdc553d73ccd5405c51c7a77c957868fa54cf6f91f6dff64e8a4d4a5759aea4ba04
SSDEEP

6144:LsL/5wh0OfGh4GiWujcS3S/y9hb+my4KzxmEYDM3xByEyGrAVFgpn:E/2q0GaWujcS3SK9SYQVyGUVFgpn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6bcde8a221efe84ff436553ab36780b

Files

c6bcde8a221efe84ff436553ab36780b
.exe windows:4 windows x86 arch:x86

5d5c3141cdd571135f5aa0808072ba2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\vvrt

Imports

user32

DestroyWindow
ShowWindow
PeekMessageW
GetMessagePos
LoadKeyboardLayoutW
DdeConnectList
UnregisterClassW
DdeInitializeW
SetMenu
GetWindowInfo
DefWindowProcW
SetMessageQueue
DdeSetQualityOfService
InvalidateRgn
CreateCaret
SetMenuItemInfoA
UnionRect
GetClassInfoExA
LockWindowUpdate
SetScrollInfo
SetClassLongA
EnumDesktopsW
FlashWindow
LoadMenuA
GetCapture
CharPrevW
CountClipboardFormats
CreateDesktopW
GetKeyNameTextW
OemToCharW
GetClipboardFormatNameA
SetWindowsHookExA
DdeQueryStringA
SwapMouseButton
ReuseDDElParam
MessageBoxA
GetInputState
DeferWindowPos
WindowFromPoint
ShowCaret
DlgDirSelectComboBoxExA
SetMenuContextHelpId
MapWindowPoints
MsgWaitForMultipleObjectsEx
SetUserObjectInformationA
DdeFreeStringHandle
DrawEdge
ShowWindowAsync
WindowFromDC
RegisterClassExA
GetDlgCtrlID
CreateWindowExW
GetShellWindow
PostMessageA
PostMessageW
GetScrollInfo
BlockInput
GetClipboardSequenceNumber
SwitchDesktop
GetKeyboardType
RegisterClassA
GetWindowWord
SetWindowWord
CreateIconIndirect
DefFrameProcW
GetSysColorBrush
IsMenu

comctl32

ImageList_SetImageCount
ImageList_Create
_TrackMouseEvent
CreateStatusWindowA
CreateStatusWindowW
ImageList_GetDragImage
ImageList_EndDrag
ImageList_SetDragCursorImage
CreateUpDownControl
ImageList_SetIconSize
ImageList_LoadImageW
DrawStatusTextW
InitCommonControlsEx
CreateToolbar

kernel32

FreeEnvironmentStringsW
VirtualAlloc
GetSystemTimeAsFileTime
FindFirstFileExW
WriteConsoleW
WideCharToMultiByte
LCMapStringW
HeapReAlloc
GetStringTypeW
GetStdHandle
GetACP
EnterCriticalSection
AddAtomW
GetConsoleCP
OpenMutexA
SetLastError
WritePrivateProfileSectionA
CreateFileA
GetConsoleMode
GetLocaleInfoW
GetStringTypeA
GetEnvironmentStrings
GetCurrentThreadId
EnumSystemLocalesA
RemoveDirectoryW
lstrcpyA
GetVersionExA
GetOEMCP
WriteConsoleA
VirtualQuery
GetCommandLineA
IsValidCodePage
HeapFree
TlsAlloc
DeleteFiber
DeleteCriticalSection
WriteFile
FillConsoleOutputCharacterW
TlsGetValue
ExitProcess
TlsSetValue
VirtualFree
GetStartupInfoA
OpenProcess
TlsFree
MultiByteToWideChar
GetCurrentProcessId
GetLocaleInfoA
UnhandledExceptionFilter
SetLocaleInfoW
InterlockedDecrement
CloseHandle
HeapDestroy
SetFilePointer
LoadLibraryA
TerminateProcess
GetFileType
HeapCreate
GetLastError
GetModuleFileNameA
FlushFileBuffers
SetEnvironmentVariableA
IsValidLocale
CompareStringA
ReadConsoleInputW
LCMapStringA
SetUnhandledExceptionFilter
GetConsoleOutputCP
IsDebuggerPresent
CreateMutexA
SetStdHandle
QueryPerformanceCounter
ReadFile
FreeLibrary
GetProcAddress
GetCurrentProcess
GetUserDefaultLCID
GetTickCount
HeapAlloc
CompareStringW
FreeEnvironmentStringsA
GetCPInfo
LeaveCriticalSection
GetNamedPipeHandleStateA
OpenFile
SetHandleCount
SetComputerNameA
GetEnvironmentStringsW
GetDateFormatA
GetCurrentThread
SetConsoleCtrlHandler
GetModuleHandleA
HeapSize
RtlUnwind
Sleep
InterlockedExchange
GetTimeFormatA
InitializeCriticalSection
InterlockedIncrement
GetTimeZoneInformation
GetProcessHeap

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d5c3141cdd571135f5aa0808072ba2e

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

kernel32

Sections

.text Size: 140KB - Virtual size: 139KB

.rdata Size: 132KB - Virtual size: 131KB

.data Size: 100KB - Virtual size: 110KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 140KB - Virtual size: 139KB

.rdata
Size: 132KB - Virtual size: 131KB

.data
Size: 100KB - Virtual size: 110KB

.rsrc
Size: 20KB - Virtual size: 19KB