c6ecd2f1bde58158e1d8f2f65cf6174b[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

c6ecd2f1bde58158e1d8f2f65cf6174b.bin
Size

174KB
MD5

c6ecd2f1bde58158e1d8f2f65cf6174b
SHA1

3939dfebd6b7fc79fcaf3407f85d8f0ffb95e0f9
SHA256

e05c07cc7cd3960110b4aec362201634b9904612d788de51d535aa6ceb2c2859
SHA512

22daca3ed4164321bbb890f23e43432a0a2f250146c5551c56efc94d1272db386ec2a99e73d9d38b024fd71d26eb4d84c8718c6652533d3ab7a1702689dfba63
SSDEEP

3072:WVT5LdyYhZuwTFb/JQwr0k8Lc0vu1RcMiIESusMlZGH3OdzVbuwWik9fwWIvv:WzEmJTFbpQRLc0vGc5qudfKOdzswW99W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6ecd2f1bde58158e1d8f2f65cf6174b.bin

Files

c6ecd2f1bde58158e1d8f2f65cf6174b.bin
.exe windows:4 windows x86 arch:x86

292aef5ca90f1dc030ad1744825918d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
CreateFileA
GetLongPathNameW
Sleep
GlobalSize
ReadFile
DisableThreadLibraryCalls
GetProcessHandleCount
GlobalAlloc
WideCharToMultiByte
GlobalFree
CreateFileW
CreateFileMappingA
EnumResourceTypesA
GetTickCount
LocalAlloc
GetFileAttributesA
LocalFree
SetFilePointer
WriteFile
UnmapViewOfFile
MapViewOfFile
CloseHandle

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

user32

wvsprintfA
GetClientRect
CreateWindowExA
SetCapture
EndPaint
EnumDisplayDevicesA
GetWindowTextLengthA
GetWindowRect
EqualRect
SendMessageA
GetActiveWindow
FillRect
SetWindowLongA
CallWindowProcA
RegisterClassExA
CreateAcceleratorTableA
RedrawWindow
SendNotifyMessageA
PostThreadMessageA
GetDesktopWindow
GetClassNameA
IsChild
ReleaseCapture
DefWindowProcA
GetParent
CreateDialogParamA
CopyRect
GetQueueStatus
MsgWaitForMultipleObjects
SetWindowTextA
ShowWindow
BeginPaint
GetWindow
wsprintfA
IsWindow
SetFocus
DispatchMessageA
GetFocus
InvalidateRgn
FindWindowA
SetTimer
GetDC
DestroyWindow
RegisterWindowMessageA
PeekMessageA
SendMessageTimeoutA
InvalidateRect
UnregisterClassA
KillTimer
MoveWindow
GetSysColor
SetRect
PostMessageA
CharNextA
ReleaseDC
SetParent
LoadCursorA
GetDlgItem
DestroyAcceleratorTable
GetWindowLongA
GetWindowTextA
DrawTextA
GetClassInfoExA
SetWindowPos

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

shlwapi

PathFileExistsW
PathCombineW

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

advapi32

CryptAcquireContextA
CryptReleaseContext
RegSetValueExA
CryptGetHashParam
CryptEncrypt
CryptDestroyHash
RegQueryValueExA
RegCreateKeyExA
CryptDestroyKey
CryptHashData
RegDeleteValueA
RegEnumValueA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegQueryInfoKeyA
CryptImportKey
CryptCreateHash
RegDeleteKeyA

gdi32

GetDeviceCaps
DeleteDC
BitBlt
CreateDIBitmap
SelectPalette
CreateSolidBrush
CreateCompatibleBitmap
CreateFontA
CreateDIBSection
SelectObject
SetStretchBltMode
GetDIBits
DeleteObject
ExtEscape
CreateCompatibleDC
GetStockObject
StretchDIBits
RealizePalette
GetObjectA
SetBkMode

ole32

StgOpenStorage
CoCreateInstance
CreateBindCtx
BindMoniker
CreateItemMoniker
CoInitialize
CoGetClassObject
OleLockRunning
CreateStreamOnHGlobal
GetRunningObjectTable
StgCreateDocfile
CoTaskMemFree
CoTaskMemRealloc
CLSIDFromProgID
CoInitializeSecurity
StringFromGUID2
CoUninitialize
OleUninitialize
OleInitialize
CoSetProxyBlanket
CoTaskMemAlloc
StgIsStorageFile
CLSIDFromString

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

292aef5ca90f1dc030ad1744825918d4

Headers

File Characteristics

Imports

kernel32

wininet

user32

setupapi

shlwapi

shell32

advapi32

gdi32

ole32

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 66KB - Virtual size: 65KB

.tls Size: 1024B - Virtual size: 88KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 66KB - Virtual size: 65KB

.tls
Size: 1024B - Virtual size: 88KB