6711d0fdbfdcf438d95ffb7e54753c836204e7f3809c3b0549549e18f7e27ae7

Sharing

Copy URL

Twitter E-mail

General

Target

6711d0fdbfdcf438d95ffb7e54753c836204e7f3809c3b0549549e18f7e27ae7
Size

185KB
MD5

4ed3d9662b6bebc1d418d4760d2fe758
SHA1

01059b62ec767a0c2bf384839a7a193794fe36f9
SHA256

6711d0fdbfdcf438d95ffb7e54753c836204e7f3809c3b0549549e18f7e27ae7
SHA512

00026d571f9ec8fea839c8a34e4ce73e049778fe3516453e5f87576264b8008a2c0f4bddd4f4b509089b2cd70b10edfbebbcad89a171e52c84578fc0e2b5031d
SSDEEP

3072:zhQrPf22bq8ksY8AvlDtCnhJrcTVwR6P9gwsokdq:zIf5bq8gCcTVwR6Zs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6711d0fdbfdcf438d95ffb7e54753c836204e7f3809c3b0549549e18f7e27ae7

Files

6711d0fdbfdcf438d95ffb7e54753c836204e7f3809c3b0549549e18f7e27ae7
.exe windows:4 windows x86 arch:x86

e9413fcd930d8967b2d261a9d9de01ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegCreateKeyA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegEnumKeyA

user32

CreateMenu
CreateWindowExA
GetSystemMenu
ShowWindow
GetForegroundWindow
AppendMenuA
SetScrollInfo
GetMessageA
GetDoubleClickTime
GetClientRect
SetWindowPos
SendMessageA
UpdateWindow
GetDesktopWindow
GetWindowRect
DispatchMessageA
PeekMessageA
LoadIconA
RegisterClassA
LoadCursorA
GetDC
MessageBoxA
ReleaseDC
EndDialog
ReleaseCapture
MoveWindow
CreateDialogParamA
GetWindowLongA
SetFocus
GetDlgItem
SetWindowLongA
DestroyWindow
EnableWindow
DialogBoxParamA
SetDlgItemInt
GetDlgItemInt
IsDlgButtonChecked
SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
GetParent
CheckRadioButton
CheckDlgButton
GetClipboardData
MessageBeep
ScrollWindow
SetClipboardData
OpenClipboard
EmptyClipboard
SetKeyboardState
CloseClipboard
GetKeyboardState
PostQuitMessage
ToAscii
GetMessageTime
BeginPaint
DefWindowProcA
SetWindowTextA
IsIconic
EndPaint
InvalidateRect
SetCapture

gdi32

SetBkMode
SetPaletteEntries
Polyline
UnrealizeObject
SetTextColor
SetBkColor
TextOutA
CreatePen
MoveToEx
LineTo
DeleteObject
UpdateColors
CreateFontA
SelectObject
GetTextMetricsA
GetDeviceCaps
CreatePalette
SelectPalette
RealizePalette
GetStockObject

wsock32

socket
recv
send
ioctlsocket
gethostbyname
WSAGetLastError
htonl
htons
bind
connect
WSAAsyncSelect
WSAStartup
ntohl
WSACleanup

comctl32

ord17

comdlg32

ChooseColorA
ChooseFontA

kernel32

RtlUnwind
GetACP
FlushFileBuffers
GetCPInfo
VirtualAlloc
VirtualFree
GetLastError
HeapDestroy
MultiByteToWideChar
HeapCreate
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
GetCommandLineA
GetStartupInfoA
GetVersion
HeapReAlloc
HeapAlloc
GetModuleHandleA
GetCurrentProcess
TerminateProcess
HeapFree
GetTickCount
QueryPerformanceCounter
ExitProcess
GetSystemTimeAdjustment
GetSystemPowerStatus
GetSystemTime
GetEnvironmentVariableA
GetWindowsDirectoryA
WriteFile
FindNextFileA
FindClose
FindFirstFileA
ReadFile
GlobalAlloc
CreateFileA
GlobalUnlock
GlobalFree
GlobalLock
GetModuleFileNameA
CreateProcessA
CreateFileMappingA
UnmapViewOfFile
CloseHandle
MapViewOfFile
SetStdHandle
SetFilePointer
GetStdHandle
GetFileType
SetHandleCount
GetProcAddress
LoadLibraryA
SetConsoleCtrlHandler
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetOEMCP
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9413fcd930d8967b2d261a9d9de01ff

Headers

File Characteristics

Imports

advapi32

user32

gdi32

wsock32

comctl32

comdlg32

kernel32

Sections

.text Size: 116KB - Virtual size: 116KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 23KB - Virtual size: 67KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 116KB - Virtual size: 116KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 23KB - Virtual size: 67KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 9KB - Virtual size: 8KB