c6cbfa9f31db3010aff71beb9d734e73

Sharing

Copy URL Twitter E-mail

General

Target

c6cbfa9f31db3010aff71beb9d734e73
Size

13KB
MD5

c6cbfa9f31db3010aff71beb9d734e73
SHA1

40c403e18ce65ed57e2d52c26aabc2434297456c
SHA256

4ca832a23bea78de6a30f8951672844960fb7dfb21af9c416a116fb949288b0d
SHA512

3f1b332bb59f7ee18495d7408cc8c9cd99875b30a8ac4b545bdd8631eeb0830a1fbea737cc67ee59769ea37be0de9ad62b6092752da667bf61123b5159ce4e58
SSDEEP

384:9XYwX6PSOxrae6le5qTtXobXnOrRgEdA38i5:9Iw+S2Wg5q5YbXnUgF38i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6cbfa9f31db3010aff71beb9d734e73

Files

c6cbfa9f31db3010aff71beb9d734e73
.dll windows:4 windows x86 arch:x86

6b0467572d31504db664b0825eb644af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatA
lstrlenA
lstrcpyA
GetProcAddress
LoadLibraryA
GetCurrentProcessId
CreateEventA
SetEvent
ResetEvent
OpenEventA
MultiByteToWideChar
WriteProcessMemory
ReadProcessMemory
LocalFree
GlobalLock
GlobalAlloc
GetModuleHandleA
GetVersionExA
CreateThread
lstrcpynA
WaitForSingleObject
SetLastError
GetLastError
CloseHandle
lstrcmpiA
GetModuleFileNameA
GetCurrentProcess
LocalAlloc

user32

DestroyWindow
DefDlgProcA
GetWindowThreadProcessId
CallNextHookEx
SetWindowsHookExA
GetClientRect
BringWindowToTop
DispatchMessageA
TranslateMessage
PostQuitMessage
GetMessageA
CreateWindowExA
ShowWindow
RegisterClassExA
LoadIconA
LoadCursorA
wsprintfA
SetWindowTextW
MessageBoxA
IsDialogMessageA
SendMessageA

gdi32

GetStockObject

shell32

ShellExecuteA

ole32

OleInitialize
OleUninitialize
CoInitialize
CoCreateInstance
CoUninitialize

wininet

InternetCloseHandle
InternetReadFile
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA

Exports

Exports

Con1fig
Inter1cept
Set1up

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharred
Size: - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b0467572d31504db664b0825eb644af

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

wininet

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 200B

Sharred Size: - Virtual size: 101KB

.reloc Size: 1024B - Virtual size: 804B

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 200B

Sharred
Size: - Virtual size: 101KB

.reloc
Size: 1024B - Virtual size: 804B