d6b8d6a3d1e38d810ad453f5b8bfc9be

General

Target

d6b8d6a3d1e38d810ad453f5b8bfc9be
Size

936KB
MD5

d6b8d6a3d1e38d810ad453f5b8bfc9be
SHA1

f91506e4401a6d645749f4aa4bb58145a2a0a7ca
SHA256

6b5733ac3a78eb0eb1f616370159f25efb64dc1c9c191994f45e84122782fa76
SHA512

e992d521d28e5e3fd4b001a794d188c9ce2b9ff4da6894462f61984239e42b84eb632b7f7a0880747f81bf7c5d5035f7e9c7489d6dccdcdc4e5c91ccc7885179
SSDEEP

24576:QVgtB3nd0SWQJ0r/QeUTy02aBWV+44ox1qyW:qY5Gz2Nx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6b8d6a3d1e38d810ad453f5b8bfc9be

Files

d6b8d6a3d1e38d810ad453f5b8bfc9be
.exe windows:4 windows x86 arch:x86

e2619b36937fdb1e8385f35a1c54c037

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
SetTextColor
ExtTextOutA
CreateDIBitmap
GetCurrentPositionEx
RestoreDC
CreatePenIndirect
DeleteObject
CreatePalette
CreateBrushIndirect
CreateFontIndirectA
CreateCompatibleBitmap
GetPixel
GetDCOrgEx
CreateHalftonePalette
DeleteDC
CreateBitmap
GetBrushOrgEx
GetClipBox
CreateDIBSection
ExcludeClipRect
CreateSolidBrush
CreateCompatibleDC
GetPixel

kernel32

DeleteAtom
FindFirstFileA
GetStdHandle
GetFileTime
DeleteFileW
CreateThread
ExitThread
OpenFileMappingA
GetLastError
GetFileSize
SetLastError
DeleteFileA
GetCPInfo
GlobalFree
ReadFile
GetCommandLineA
WriteFile
GetConsoleMode
OpenFile
FindAtomA
GetComputerNameA
Sleep
CreateProcessA
ReadConsoleA

comctl32

InitCommonControls
ImageList_LoadImageW
CreateUpDownControl
ImageList_Destroy
ImageList_EndDrag
ImageList_DragEnter
MenuHelp
DrawStatusTextW
ImageList_GetIconSize
ImageList_Copy
DllGetVersion
CreateStatusWindow
ImageList_LoadImageA
ImageList_Add
CreateMappedBitmap
CreateToolbar
ImageList_Create
CreateToolbarEx
ImageList_DrawEx
ImageList_Draw
CreateStatusWindowW
DrawStatusText
ImageList_GetIcon
ImageList_AddIcon

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 902KB - Virtual size: 901KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 3KB - Virtual size: 21.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2619b36937fdb1e8385f35a1c54c037

Headers

File Characteristics

Imports

gdi32

kernel32

comctl32

Sections

.text Size: 23KB - Virtual size: 22KB

.data Size: 902KB - Virtual size: 901KB

.tls Size: 3KB - Virtual size: 21.0MB

.rdata Size: 4KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 2KB

.text
Size: 23KB - Virtual size: 22KB

.data
Size: 902KB - Virtual size: 901KB

.tls
Size: 3KB - Virtual size: 21.0MB

.rdata
Size: 4KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 2KB