6ac61806f86c6f90bf9c79e8160a9098766ab6ed7caabe1962df81219e3a7ad7N

General

Target

6ac61806f86c6f90bf9c79e8160a9098766ab6ed7caabe1962df81219e3a7ad7N
Size

176KB
MD5

f147672dc90afec9877d57d846fd58d0
SHA1

9b7bce4b3abf68ea54989bc7d85856e6604bb074
SHA256

6ac61806f86c6f90bf9c79e8160a9098766ab6ed7caabe1962df81219e3a7ad7
SHA512

7cb4ce8319c166586e61ee2f8af39d3b9d43e58242cd44f19f0d98381012dd9ab383f050582d7585a7bc3b288a3c2ecf001253d94352699fe92e3582d8a77936
SSDEEP

3072:aO06qhKP9uDuZb0CkKh0aAu0zEdrjvgTHqQE669cukKlKnNzMk:aO0HhKHb0Ck60aNtzgyBv7Lk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ac61806f86c6f90bf9c79e8160a9098766ab6ed7caabe1962df81219e3a7ad7N

Files

6ac61806f86c6f90bf9c79e8160a9098766ab6ed7caabe1962df81219e3a7ad7N
.exe windows:4 windows x86 arch:x86

b0d8f82b3663c3ce814e7e6cdcea2345

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterClassA
LoadAcceleratorsA
EndPaint
DestroyWindow
ReleaseDC
EqualRect
SetFocus
BeginPaint
OffsetRect
SetWindowRgn
GetActiveWindow
DefWindowProcA
IntersectRect
MoveWindow
GetDC
GetWindowRect
SetDlgItemTextA
GetKeyState
SetWindowLongA
CharNextA
PtInRect
GetDlgItem
SetParent

clusapi

CloseCluster

kernel32

LoadLibraryA
GetLongPathNameW
GetProcAddress
IsBadWritePtr
HeapReAlloc
GetVersion
LockResource
DisableThreadLibraryCalls
SetThreadContext
lstrcatA
InterlockedDecrement
lstrlenW
FindResourceA
LoadResource
WideCharToMultiByte
DeleteCriticalSection
GetWindowsDirectoryA
lstrcpynA
GetFileAttributesA
EnumResourceTypesA
HeapFree
HeapAlloc
ExitProcess
lstrcpyA
GetModuleFileNameA
LeaveCriticalSection
InitializeCriticalSection
GetProcessHeap
InterlockedIncrement
lstrlenA
EnterCriticalSection
MultiByteToWideChar
GetLocaleInfoA

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0d8f82b3663c3ce814e7e6cdcea2345

Headers

File Characteristics

Imports

user32

clusapi

kernel32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: 74KB - Virtual size: 73KB

.edata Size: 1024B - Virtual size: 248KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: 74KB - Virtual size: 73KB

.edata
Size: 1024B - Virtual size: 248KB