609eb4862c41a919cc3b4c84b26aebebeda53cb6898fbd4577d18e1d05d88a22

Sharing

Copy URL Twitter E-mail

General

Target

609eb4862c41a919cc3b4c84b26aebebeda53cb6898fbd4577d18e1d05d88a22
Size

39KB
MD5

cee2374d4d3f3021c25d4513d0dc10a8
SHA1

29550fe911db3ef529d1e67b9a1d9f630e24e7c4
SHA256

609eb4862c41a919cc3b4c84b26aebebeda53cb6898fbd4577d18e1d05d88a22
SHA512

7178d4acf8ce3caaf68ba2881271914de5cb68ce9eaa0994b3121c4493949641eca4c6a476728837d4b0c27078e1d7577e9afd02c9bdcadae869fca4266eb443
SSDEEP

768:AqF2MB9UG7s8tDVeSrH3iZrL82bK5Po0M:qwZtDUM+L7N0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
609eb4862c41a919cc3b4c84b26aebebeda53cb6898fbd4577d18e1d05d88a22

Files

609eb4862c41a919cc3b4c84b26aebebeda53cb6898fbd4577d18e1d05d88a22
.exe windows:4 windows x86 arch:x86

76be1b675f2d665899bdb3472bc5b359

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
TranslateMessage
LoadCursorA
GetMessageA
RegisterClassA
ShowWindow
LoadIconA
UpdateWindow
SetScrollPos
CreateWindowExA
LoadMenuA
EndPaint
SendMessageA
DefWindowProcA
SetTimer
SetScrollRange
BeginPaint
KillTimer
PostQuitMessage

gdi32

DeleteObject
CreateSolidBrush
GetStockObject
SelectObject
SetBkColor
TextOutA
Rectangle
SetTextColor
SetBkMode

6128

ord1
ord3

kernel32

HeapFree
LoadLibraryA
ExitProcess
HeapReAlloc
CloseHandle
CompareStringW
CompareStringA
SetEnvironmentVariableA
GetStringTypeW
FlushFileBuffers
SetStdHandle
SetFilePointer
GetStringTypeA
GetTimeZoneInformation
WriteFile
GetLastError
HeapCreate
GetStdHandle
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
UnhandledExceptionFilter
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapAlloc
GetProcAddress
FreeEnvironmentStringsW
RtlUnwind
GetEnvironmentStringsW
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
GetCPInfo
GetACP
GetOEMCP
GetFileType

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 229B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76be1b675f2d665899bdb3472bc5b359

Headers

File Characteristics

Imports

user32

gdi32

6128

kernel32

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 512B - Virtual size: 229B

.data Size: 5KB - Virtual size: 9KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 136B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 512B - Virtual size: 229B

.data
Size: 5KB - Virtual size: 9KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 136B

.reloc
Size: 2KB - Virtual size: 2KB