6c7fba8502532b420e7c8b50b73faf30N[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

6c7fba8502532b420e7c8b50b73faf30N.exe
Size

6.5MB
MD5

6c7fba8502532b420e7c8b50b73faf30
SHA1

ab4823f1f2a2cd42421291e74b95a820b7c95d33
SHA256

4d9e533a5f9378c588ad1c7131704ac90d9434ba9696d3367a86332a50a0903d
SHA512

6c83d37ee0907b3d5ec7884e507828679c4ec56f29d1e95343b6b7f85cd98bcc1fe1c43965e79e97ea170d98fdd959784c857bc575c2b60ad312b8c6f2335c42
SSDEEP

98304:2TNIbuTU+C3BbigWUg3Pp9JxLS4Mp7k7zk8jS+JJeUyBRX7Oyao+UD7MLBtaclYi:KNqabgWf7L70k3i+jaTao9MLBtacOi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c7fba8502532b420e7c8b50b73faf30N.exe

Files

6c7fba8502532b420e7c8b50b73faf30N.exe
.dll windows:6 windows x86 arch:x86

9f1469b63cb635ffd7e30b4ef96f46bd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateProcessA
GetModuleFileNameW
MultiByteToWideChar
WritePrivateProfileStringW
RaiseException
GetPrivateProfileIntW
CreateNamedPipeA
EnterCriticalSection
GlobalFree
GetDiskFreeSpaceW
ResetEvent
LoadLibraryA
LockResource
GetOEMCP
GetUserDefaultUILanguage
FileTimeToLocalFileTime
GetVersion
DeleteFileW
GetCurrentProcessId
GetSystemTime
SuspendThread
ExpandEnvironmentStringsW
Beep
FillConsoleOutputAttribute
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
CreateFileW
ReadConsoleW
SetStdHandle
SetFilePointerEx
ReadFile
GetConsoleMode
FlushFileBuffers
CloseHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
OutputDebugStringW
WriteFile
GetProcessHeap
HeapSize
lstrcpynW
ReadProcessMemory
IsValidLocale
LoadLibraryW
WideCharToMultiByte
GetSystemDirectoryW
GetConsoleCP
TlsSetValue
SetCommTimeouts
GetSystemTimeAsFileTime
VirtualFree
GetTickCount
ExitProcess
SetCommBreak
GetLogicalDrives
SignalObjectAndWait
WaitForSingleObject
SetHandleInformation
CreateDirectoryW
QueryPerformanceCounter
SystemTimeToFileTime
SetDllDirectoryW
LoadLibraryExW
LoadResource
FreeLibrary
FindResourceW
GetCPInfo
TlsGetValue
GlobalMemoryStatus
CreateFileA
GetTempFileNameW
GetEnvironmentVariableW
GetCommandLineW
FillConsoleOutputCharacterA
GetACP
IsValidCodePage
IsDebuggerPresent
EnumSystemLocalesW
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
GetStringTypeW
GetLastError
HeapReAlloc
RtlUnwind
HeapAlloc
HeapFree
GetStdHandle
GetFileType
GetModuleHandleExW
WriteConsoleW
GetCommandLineA
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsFree
GetStartupInfoW
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
LCMapStringW
GetLocaleInfoW
GetUserDefaultLCID

user32

GetSubMenu
LoadStringA
AttachThreadInput
CharLowerBuffW
GetDlgItemInt
CreateDialogIndirectParamA
SystemParametersInfoW
GetClassNameW
SetWindowLongW
GetDesktopWindow
EnableScrollBar
GetKeyboardType
ToUnicode
CheckMenuItem
GetDC

gdi32

SetWindowOrgEx
SetLayout
ExtFloodFill
SetWindowExtEx
GetMetaFileBitsEx
SetTextColor
CreateFontIndirectW
StretchBlt
GetRgnBox
GetEnhMetaFileHeader
PtInRegion
Ellipse
StretchDIBits
GetBkColor
GetCharABCWidthsW
SetStretchBltMode
CloseEnhMetaFile
CreateHatchBrush

comdlg32

FindTextW
GetOpenFileNameW

advapi32

RegUnLoadKeyW
AdjustTokenPrivileges
RegEnumKeyExW
ControlService
ChangeServiceConfigW
RegDeleteKeyA
RegQueryInfoKeyW
RegQueryValueExW
OpenSCManagerW

shell32

Shell_NotifyIconW

oleaut32

VariantInit
VariantCopy
SafeArrayGetLBound

Sections

.text
Size: 526KB - Virtual size: 525KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f1469b63cb635ffd7e30b4ef96f46bd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 526KB - Virtual size: 525KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 526KB - Virtual size: 525KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 12KB