6fee262b52c4b5c94e2f9e6adf52e07b325d730b9b67991f0726e20d5d7d6316

Sharing

Copy URL Twitter E-mail

General

Target

6fee262b52c4b5c94e2f9e6adf52e07b325d730b9b67991f0726e20d5d7d6316
Size

50KB
MD5

fc2c714fe49960dfa171f04243b85d59
SHA1

1d5022e2303ec2fc35d721b13be5aae48bc89f83
SHA256

6fee262b52c4b5c94e2f9e6adf52e07b325d730b9b67991f0726e20d5d7d6316
SHA512

d431504f016e0142c6b5deac54838baf170f8c57623a6df1b3aef105fa5bd2cc886fb8f91dc431c65bef9f06567c31b95f95e8f222bc27285fa5ca521dbb6416
SSDEEP

768:LQBqGUe+792hqwlqDYrL+LUflG1+KUhn:Wq1HDXLUw0R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fee262b52c4b5c94e2f9e6adf52e07b325d730b9b67991f0726e20d5d7d6316

Files

6fee262b52c4b5c94e2f9e6adf52e07b325d730b9b67991f0726e20d5d7d6316
.exe windows:4 windows x86 arch:x86

747c50250d3a28c95c71f724c9961f92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

skdll

ord2

advapi32

ControlService
RegCreateKeyA
CloseServiceHandle
DeleteService
QueryServiceStatus
StartServiceA
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCloseKey
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA

kernel32

lstrlenA
Sleep
GetLastError
GetFileAttributesA
GetWindowsDirectoryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
lstrcpyA
TerminateProcess
GetCurrentProcess
RtlUnwind
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
HeapCreate
WriteFile
HeapFree
HeapAlloc
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetVersion
lstrcatA
GetCurrentThreadId
ExitProcess

gdi32

DeleteObject
GetBkColor
CreateSolidBrush
UnrealizeObject
SetBrushOrgEx
GetStockObject

user32

MessageBoxA
LoadStringA
wvsprintfA
GetMessageA
DispatchMessageA
TranslateMessage
UpdateWindow
ShowWindow
CreateWindowExA
GetSystemMetrics
RegisterClassA
LoadCursorA
LoadIconA
SetForegroundWindow
FindWindowA
DialogBoxParamA
SystemParametersInfoA
CheckMenuItem
GetMenu
WinHelpA
SendMessageA
DefWindowProcA
PostMessageA
GetKeyState
DestroyWindow
GetMenuItemCount
PostQuitMessage
UnhookWindowsHookEx
GetSubMenu
SetWindowsHookExA
DrawMenuBar
DeleteMenu
EndDialog
CallNextHookEx
GetParent
ClientToScreen
GetSysColor
GetDlgItem
SetDlgItemTextA
SetScrollPos
SetScrollRange
CheckDlgButton
CheckRadioButton
InvalidateRect
EnableWindow
IsWindowEnabled
GetWindowLongA
IsDlgButtonChecked
SetDlgItemInt
SendDlgItemMessageA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

747c50250d3a28c95c71f724c9961f92

Headers

File Characteristics

Imports

skdll

advapi32

kernel32

gdi32

user32

Sections

.text Size: 24KB - Virtual size: 23KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 15KB - Virtual size: 15KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 24KB - Virtual size: 23KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 15KB - Virtual size: 15KB

.reloc
Size: 3KB - Virtual size: 2KB