fc6e55fa1a2fee55507322b0368f8095249f1212da89b83aa0f18ddb7fed062e

Sharing

Copy URL Twitter E-mail

General

Target

fc6e55fa1a2fee55507322b0368f8095249f1212da89b83aa0f18ddb7fed062e
Size

494KB
MD5

934235a64dc9b41b19bd0809870e4574
SHA1

60af5cc357ff5e0dcc4a945d9b2fc7304a5eee63
SHA256

fc6e55fa1a2fee55507322b0368f8095249f1212da89b83aa0f18ddb7fed062e
SHA512

9110073be16a580034796e01f0d2b00f2a313ca2f4eb0747899d14ddc335a51e2fd216a18f1b043d782b6a04283ffe41d595a36cfff640f202731d8d15b9e035
SSDEEP

6144:/b3Ns+EoksINhvj6n0/SHPHmPjDKYuahqpYXOmjpDJtUIGRdkss6mb8LGC33g1Jh:/b3JksIfAEg5ujRtGLsqLGy3GJh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc6e55fa1a2fee55507322b0368f8095249f1212da89b83aa0f18ddb7fed062e

Files

fc6e55fa1a2fee55507322b0368f8095249f1212da89b83aa0f18ddb7fed062e
.dll windows:6 windows x86 arch:x86

aeb95892df8a0f7603b888771aaae263

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapReAlloc
SetFilePointerEx
ReadFile
CloseHandle
GetModuleFileNameW
WriteFile
GetOEMCP
GetACP
LoadLibraryExW
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
GetStartupInfoW
CreateFileW
GetLastError
CompareStringW
GetConsoleMode
WideCharToMultiByte
GetConsoleCP
GetCommandLineA
GetModuleHandleW
GetTickCount
WaitForSingleObjectEx
ConnectNamedPipe
GetEnvironmentStringsW
GetDateFormatW
FlushFileBuffers
GetSystemDefaultLangID
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
GetStringTypeW
HeapFree
GetCurrentThreadId
GetCPInfo
RaiseException
RtlUnwind
HeapAlloc
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetProcAddress
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
GetProcessHeap
ExitProcess
GetModuleHandleExW
HeapSize
GetStdHandle
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
IsValidCodePage

user32

DeleteMenu
SendMessageA
RegisterWindowMessageA
PeekMessageW
ToAsciiEx
HideCaret
SendDlgItemMessageA
ShowCaret
GetCapture
SetPropA
GetWindowLongA
EndDialog
BeginDeferWindowPos
InsertMenuA
AdjustWindowRect
GetDlgItemTextA

gdi32

CreatePen
IntersectClipRect
ExtCreatePen
Pie
SetMetaFileBitsEx
GetCharWidthW
CreateHatchBrush
DeleteDC
StretchBlt
GetRgnBox
GetEnhMetaFileHeader
CreateBitmap
Ellipse
GetTextExtentPointW
GetBrushOrgEx
CopyEnhMetaFileA

advapi32

GetUserNameA
SetSecurityDescriptorDacl
RegCreateKeyA
EqualSid
RegEnumKeyA

Sections

.text
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

istqcsr
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nytorglu
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vxcbi
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jybfwej
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aeb95892df8a0f7603b888771aaae263

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 374KB - Virtual size: 374KB

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 7KB - Virtual size: 15KB

istqcsr Size: 12KB - Virtual size: 11KB

nytorglu Size: 5KB - Virtual size: 4KB

vxcbi Size: 1KB - Virtual size: 1KB

jybfwej Size: 512B - Virtual size: 220B

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 374KB - Virtual size: 374KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 7KB - Virtual size: 15KB

istqcsr
Size: 12KB - Virtual size: 11KB

nytorglu
Size: 5KB - Virtual size: 4KB

vxcbi
Size: 1KB - Virtual size: 1KB

jybfwej
Size: 512B - Virtual size: 220B

.reloc
Size: 13KB - Virtual size: 12KB