60ee58aa5465ca9db1678c8465a43cf0N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

60ee58aa5465ca9db1678c8465a43cf0N.exe
Size

413KB
MD5

60ee58aa5465ca9db1678c8465a43cf0
SHA1

8c90b969443a9f9d19b74d2c5adb2f1d540f3aa7
SHA256

58df6ef89b1f78d71813dcd3f6324a7c07649596c3412caf7971d4eaab30343d
SHA512

a1d444d88c9c0407f9356122b22be938683dd43f978d3967e7d596fb56e4c4d2003098c49e624b3d8761fcbda48c19101869bfabb497ddd1000405585880f287
SSDEEP

6144:qIAMFxrrMM2E4+Q6XqOW+lR0uz1IzQ80atcFMe5NP0BhL4wcn0Jf8Mt1TYDK7rrr:q9XeDz65y50Jf/ttcKTWdSFlD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60ee58aa5465ca9db1678c8465a43cf0N.exe

Files

60ee58aa5465ca9db1678c8465a43cf0N.exe
.exe windows:4 windows x86 arch:x86

20f517a0be77ec8c1f864c66dc0f87f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextFaceW
CreateFontA
GetTextAlign
GetMetaFileA
LPtoDP
GetCharacterPlacementA
GetPaletteEntries
CombineRgn
SetGraphicsMode
SetPaletteEntries
GetNearestColor
ExtTextOutW
SetArcDirection
GetMetaFileBitsEx

wininet

SetUrlCacheEntryGroupW
InternetReadFileExW
GopherOpenFileA
FtpCommandW

shell32

SHGetFileInfoA
ExtractAssociatedIconA
SHGetSpecialFolderPathA
ExtractAssociatedIconW
SHFreeNameMappings

comdlg32

ChooseColorA
GetSaveFileNameA
GetFileTitleW
PageSetupDlgA
ReplaceTextA
PrintDlgW
PrintDlgA
ReplaceTextW
ChooseFontA
ChooseFontW
LoadAlterBitmap
FindTextA
GetOpenFileNameA
GetFileTitleA
PageSetupDlgW
ChooseColorW
GetOpenFileNameW

kernel32

GetStringTypeA
TlsAlloc
GetEnvironmentStrings
GetLastError
GetTimeZoneInformation
WriteFile
HeapAlloc
GetLocaleInfoW
HeapSize
ExitProcess
HeapCreate
RtlUnwind
TerminateProcess
EnumSystemLocalesA
IsValidLocale
GetMailslotInfo
GetTimeFormatA
TlsSetValue
HeapReAlloc
LeaveCriticalSection
lstrcmpiA
GetCPInfo
LoadLibraryA
GetOEMCP
GetStringTypeW
FreeEnvironmentStringsA
DeleteCriticalSection
GetSystemInfo
SetHandleCount
QueryPerformanceCounter
HeapFree
GetUserDefaultLCID
GetCurrentProcessId
GetLocaleInfoA
FreeLibraryAndExitThread
InitializeCriticalSection
GetVersionExA
WideCharToMultiByte
GetProcAddress
GetModuleFileNameA
CompareStringA
InterlockedExchange
SetEnvironmentVariableA
VirtualAlloc
HeapDestroy
EnterCriticalSection
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetConsoleCursorInfo
TlsFree
GetTickCount
GetDateFormatA
VirtualFree
CompareStringW
LCMapStringA
IsBadWritePtr
GetACP
GetFileType
GetCommandLineA
GetStdHandle
UnhandledExceptionFilter
GetCurrentProcess
LCMapStringW
IsValidCodePage
MultiByteToWideChar
VirtualProtect
GetCurrentThreadId
GetStartupInfoA
LocalHandle
TlsGetValue
FreeEnvironmentStringsW
GetCurrentThread
VirtualQuery
GetModuleHandleA
SetLastError

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20f517a0be77ec8c1f864c66dc0f87f9

Headers

File Characteristics

Imports

gdi32

wininet

shell32

comdlg32

kernel32

Sections

.text Size: 135KB - Virtual size: 135KB

.data Size: 272KB - Virtual size: 297KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 135KB - Virtual size: 135KB

.data
Size: 272KB - Virtual size: 297KB

.rsrc
Size: 5KB - Virtual size: 4KB