6fbd3df137cd1a0a9750636eae5b674c7cd76d18e75cd805118e92c863f8180d

Sharing

Copy URL Twitter E-mail

General

Target

6fbd3df137cd1a0a9750636eae5b674c7cd76d18e75cd805118e92c863f8180d
Size

472KB
MD5

b42cccf90049fad57cc4f4ad25fde6c3
SHA1

2e36b37eb041fdd8cc11a74cb29e58cfb92740be
SHA256

6fbd3df137cd1a0a9750636eae5b674c7cd76d18e75cd805118e92c863f8180d
SHA512

5b7734b9332b4bdeba5f6353b8d7ac8c8cc56524dd4b42a87cbedce72f2a93f3694bae717f262ee718783a413eb6a569b5a26a2a440218447aa2d4219b352bbf
SSDEEP

12288:CeEKxSrRtPEveDmDNtzvS8qqXqlEKTr2IwoTPl0G+wA:yRRtMve4NSEqr2I8G7A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fbd3df137cd1a0a9750636eae5b674c7cd76d18e75cd805118e92c863f8180d

Files

6fbd3df137cd1a0a9750636eae5b674c7cd76d18e75cd805118e92c863f8180d
.exe windows:4 windows x86 arch:x86

3bf14f3ddcb1ae596857e7eafd4b02a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
VirtualFree
GetFileType
GetEnvironmentVariableA
GetVersionExA
IsBadWritePtr
GetStdHandle
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
VirtualAlloc
SetHandleCount
LCMapStringA
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetEnvironmentStrings
CompareStringW
SetEnvironmentVariableA
GetVersion
lstrcpyA
lstrlenA
_llseek
_lread
GlobalAlloc
GlobalReAlloc
GlobalLock
_hread
_lwrite
OpenFile
_lclose
LocalAlloc
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
RaiseException
HeapFree
HeapAlloc
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SizeofResource
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GlobalFlags
GetProcessVersion
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
WriteFile
FlushFileBuffers
GlobalUnlock
LocalFree
SetFilePointer
GetCurrentProcess
ReadFile
CreateFileA
GetLastError
DuplicateHandle
SetFileTime
GlobalFree
GetDiskFreeSpaceA
GetFileTime
GetFileAttributesA
GetFullPathNameA
GetTempFileNameA
MultiByteToWideChar
MulDiv
SetLastError
InterlockedIncrement
WideCharToMultiByte
InterlockedDecrement
GetCurrentThread
CloseHandle
GetModuleFileNameA
FreeLibrary
lstrcmpA
LoadLibraryA
LockResource
FindResourceA
LoadResource
GlobalFindAtomA
GetCurrentThreadId
lstrcmpiA
GetProcAddress
GlobalDeleteAtom
GetModuleHandleA
GlobalGetAtomNameA
lstrcatA
lstrcpynA
GlobalAddAtomA
CompareStringA
IsBadCodePtr
SetStdHandle
GlobalHandle
GetProfileStringA

user32

EndPaint
TabbedTextOutA
BeginPaint
DrawTextA
GrayStringA
CharUpperA
DestroyCursor
LoadCursorA
SetRect
FillRect
PtInRect
FindWindowA
IsRectEmpty
IsZoomed
SetParent
AppendMenuA
DeleteMenu
GetSystemMenu
SetTimer
KillTimer
WindowFromPoint
GetSysColorBrush
GetClassNameA
LoadStringA
InsertMenuA
GetMenuStringA
DestroyIcon
GetTabbedTextExtentA
InflateRect
SetCapture
InvertRect
GetDCEx
LockWindowUpdate
GetCursorPos
ShowOwnedPopups
PostQuitMessage
EndDialog
CreateDialogIndirectParamA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
ClientToScreen
GetWindowDC
GetTopWindow
MessageBoxA
RegisterClassA
ValidateRect
GetWindowTextA
DefWindowProcA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
InvalidateRect
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
PostMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetActiveWindow
wsprintfA
GetParent
GetMenuItemID
AdjustWindowRectEx
RedrawWindow
SetWindowPos
GetWindowLongA
SetWindowLongA
IsWindow
DefMDIChildProcA
SendMessageA
DrawMenuBar
TranslateMessage
TranslateAcceleratorA
TranslateMDISysAccel
GetMessageA
SetScrollPos
GetScrollPos
GetWindowTextLengthA
DefFrameProcA
CreateWindowExA
BringWindowToTop
GetMenu
GetMenuItemCount
GetSubMenu
GetClientRect
GetDC
ReleaseDC
EnableWindow
LoadBitmapA
UpdateWindow
SetPropA
GetClassLongA
IsChild
UnregisterClassA
HideCaret
DrawFocusRect
ShowCaret
ExcludeUpdateRgn
CharNextA
DefDlgProcA
IsWindowUnicode

gdi32

DeleteDC
SelectPalette
SelectObject
CreateDIBitmap
CreateCompatibleDC
SetDIBitsToDevice
CreateCompatibleBitmap
SetStretchBltMode
GetDIBits
StretchDIBits
GetPaletteEntries
CreatePalette
GetObjectA
GetStockObject
GetNearestPaletteIndex
SetTextColor
SetBkColor
GetClipBox
StartDocA
SaveDC
CreateBitmap
SetBkMode
SetPolyFillMode
RestoreDC
SetMapMode
SetViewportOrgEx
SetROP2
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
Rectangle
DPtoLP
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
LPtoDP
GetTextExtentPoint32A
GetTextMetricsA
GetCharWidthA
CreateFontA
CreateFontIndirectA
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
BitBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
IntersectClipRect
RealizePalette
DeleteObject
GetTextExtentPointA

comdlg32

PrintDlgA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCreateKeyA
RegDeleteValueA
RegSetValueA
RegOpenKeyA
RegSetValueExA
RegDeleteKeyA
RegQueryValueA
RegCloseKey
RegEnumKeyA
RegOpenKeyExA
SetFileSecurityA
GetFileSecurityA
RegQueryValueExA
RegCreateKeyExA

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA

comctl32

ord17

Sections

.text
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bf14f3ddcb1ae596857e7eafd4b02a1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 356KB - Virtual size: 355KB

.rdata Size: 52KB - Virtual size: 49KB

.data Size: 36KB - Virtual size: 144KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 356KB - Virtual size: 355KB

.rdata
Size: 52KB - Virtual size: 49KB

.data
Size: 36KB - Virtual size: 144KB

.rsrc
Size: 24KB - Virtual size: 23KB