c6d6f8f85cc43f634cede4de34e4b482 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6d6f8f85cc43f634cede4de34e4b482
Size

120KB
MD5

c6d6f8f85cc43f634cede4de34e4b482
SHA1

00ed0ba0e033bc2a9759ae5372755ef64d9db2fe
SHA256

6d2fea1716419a7644d48866f2d8e3d215f036bb7bc16fcde36c86a5f92b50c0
SHA512

c67d0acb904ae4ed399311970709ecca6fd26020ef4c45a31c972e80a6b6211eaa3a993fa70eea7eb2ed803013c7f0de05c09527a90511e0b8f075b5477c0b12
SSDEEP

3072:GEEqigeml7lrz41nA/wUP0pEO+Va496+XxWd5:Ggemnz41nA/xP0poaM6+6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6d6f8f85cc43f634cede4de34e4b482

Files

c6d6f8f85cc43f634cede4de34e4b482
.exe windows:4 windows x86 arch:x86

1b6f71e5fa7c99d95bd8b74522c1d546

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextW
CommDlgExtendedError
FindTextW
ChooseColorW
GetOpenFileNameW
dwLBSubclass

gdi32

GetFontData
GetEnhMetaFileW
GetMapMode
GetClipBox

Sections

.text
Size: 73KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE