6e2e83721eb5a240631cfaa853617e6f70919ec7a3469eecc2b7fb69a3b78b83

Sharing

Copy URL Twitter E-mail

General

Target

6e2e83721eb5a240631cfaa853617e6f70919ec7a3469eecc2b7fb69a3b78b83
Size

199KB
MD5

6db2637c1aa93ac075f5867e65242a5f
SHA1

9e6776e3d4f4234416748976f8416d93dcda9ae2
SHA256

6e2e83721eb5a240631cfaa853617e6f70919ec7a3469eecc2b7fb69a3b78b83
SHA512

fd9341c9556c956f7a0d35317fda992d466478d42de91ba05286ff82c2a8bc6c969fde2a21e795ee22ba823a18b0f7bdceb639e9cd76ea6fd91c0f11d38d260d
SSDEEP

6144:iJMHlybshF2kQTgaXOifiRqpW+H55jnDakk9lGeA7n:iWH2sDQTgaXOifiREWA5lDYY7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6e2e83721eb5a240631cfaa853617e6f70919ec7a3469eecc2b7fb69a3b78b83

Files

6e2e83721eb5a240631cfaa853617e6f70919ec7a3469eecc2b7fb69a3b78b83
.exe windows:4 windows x86 arch:x86

8207f11248e7c621622f6ca454430ca9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GetLogicalDriveStringsA
GetVolumeInformationW
GetSystemDirectoryA
FindResourceA
GetLongPathNameW
EnumTimeFormatsW
Sleep
GetExpandedNameA
FileTimeToSystemTime
InitializeCriticalSection
GetCommandLineW
AddAtomW
ExitProcess
GetProcAddress
GetModuleHandleA
EnumCalendarInfoA
GetModuleFileNameA
GetCurrentDirectoryW
lstrcpyA
GetCalendarInfoW
CreateFileA
OpenMutexW
GlobalAlloc
GetFullPathNameW
GetSystemDirectoryW
GetSystemInfo
FatalAppExitW
WaitForMultipleObjects
HeapCreate
IsBadReadPtr
GetCalendarInfoA
GetStringTypeW
GetThreadLocale
FindAtomW
GetNamedPipeInfo
CopyFileExA

user32

MonitorFromPoint
CloseWindow
GetMenuStringW
GetWindowTextLengthW
DefDlgProcA
MessageBoxIndirectW
GetDC
wsprintfA
IsChild
GetKeyboardLayout
GetScrollPos
DialogBoxIndirectParamW
GetMenuItemInfoA
LoadIconW
SetForegroundWindow
CheckRadioButton
CreateDesktopA
TrackPopupMenuEx
GetDlgItemInt
ArrangeIconicWindows
DefWindowProcW
SetWindowPos
GetClassLongA
LoadMenuIndirectA
WinHelpW
mouse_event
GetWindowRgn
RegisterClassExA
GetClassInfoA
AppendMenuW

gdi32

AddFontResourceA
CreateFontIndirectW
UnrealizeObject
AngleArc
SetICMProfileA
CloseEnhMetaFile
GetTextCharset
InvertRgn
CreateRectRgn
LineTo

advapi32

RegCreateKeyW
RegOpenKeyW
RegDeleteKeyA
RegOpenKeyExW
RegCreateKeyExA
RegQueryInfoKeyW

shlwapi

PathRenameExtensionA
PathCompactPathExA
StrNCatA

ws2_32

getnameinfo
WSAEnumProtocolsW
getservbyname

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.FhIXjm
Size: 1024B - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.YlCdJ
Size: 1KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.doSDux
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MVBrmj
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.YfWrgS
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Uwi
Size: 2KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.w
Size: 512B - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ZMRb
Size: 1KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.UTkDGR
Size: 512B - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8207f11248e7c621622f6ca454430ca9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

ws2_32

Sections

.text Size: 12KB - Virtual size: 12KB

.FhIXjm Size: 1024B - Virtual size: 43KB

.YlCdJ Size: 1KB - Virtual size: 48KB

.doSDux Size: 2KB - Virtual size: 12KB

.MVBrmj Size: 1024B - Virtual size: 2KB

.YfWrgS Size: 1024B - Virtual size: 40KB

.Uwi Size: 2KB - Virtual size: 29KB

.data Size: 8KB - Virtual size: 7KB

.w Size: 512B - Virtual size: 14KB

.ZMRb Size: 1KB - Virtual size: 37KB

.UTkDGR Size: 512B - Virtual size: 121KB

.rsrc Size: 165KB - Virtual size: 164KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 12KB

.FhIXjm
Size: 1024B - Virtual size: 43KB

.YlCdJ
Size: 1KB - Virtual size: 48KB

.doSDux
Size: 2KB - Virtual size: 12KB

.MVBrmj
Size: 1024B - Virtual size: 2KB

.YfWrgS
Size: 1024B - Virtual size: 40KB

.Uwi
Size: 2KB - Virtual size: 29KB

.data
Size: 8KB - Virtual size: 7KB

.w
Size: 512B - Virtual size: 14KB

.ZMRb
Size: 1KB - Virtual size: 37KB

.UTkDGR
Size: 512B - Virtual size: 121KB

.rsrc
Size: 165KB - Virtual size: 164KB

.reloc
Size: 1KB - Virtual size: 1KB