6ff58a814e2b1bf5c8901cb505f6828ec121aa6b3be49cf4eafe8f5d31d8a532

Sharing

Copy URL

Twitter E-mail

General

Target

6ff58a814e2b1bf5c8901cb505f6828ec121aa6b3be49cf4eafe8f5d31d8a532
Size

2.1MB
MD5

42de07a7e1fb7ad83392330465c29144
SHA1

0f9bce02cff35c4acaeb5845d3991b077eb70c64
SHA256

6ff58a814e2b1bf5c8901cb505f6828ec121aa6b3be49cf4eafe8f5d31d8a532
SHA512

675ba03ea55ed3bd6ccde951eeff9ae292c639c8da3038ef54b3973307111e9781ba2a0d5b834326a5d876bb8e575c4c2d500d458d4fcdb16c4114173f78ea3f
SSDEEP

24576:gezTCz8rsD2FZ/NKly7Kcx2I68fu41+Nj+j4uNzl6dVAwbv14kjLP4gq2jqnRA9x:J3FZ/7KcPk+PNMZvTQgKRyQw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ff58a814e2b1bf5c8901cb505f6828ec121aa6b3be49cf4eafe8f5d31d8a532

Files

6ff58a814e2b1bf5c8901cb505f6828ec121aa6b3be49cf4eafe8f5d31d8a532
.exe windows:4 windows x86 arch:x86

27a9b77df2d553769b78a281f000218b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInStop

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_except_handler3
_exit

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetLastError
WritePrivateProfileStringW
WriteFile
WriteConsoleW
WinExec
WideCharToMultiByte
WaitForSingleObjectEx
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
LoadLibraryA
LeaveCriticalSection
ExitProcess
GetTickCount
EnterCriticalSection
InitializeCriticalSection
IsValidCodePage
SetErrorMode
UnhandledExceptionFilter
UnlockFile
UnlockFileEx

user32

GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetTopWindow
GetUpdateRect
GetWindowDC
GetWindowPlacement
GetWindowRect
GetWindowRgn
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
GrayStringW
HideCaret
InflateRect
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
InvalidateRgn
InvertRect
IsCharLowerW
IsChild
IsClipboardFormatAvailable
IsDialogMessageW
IsIconic
IsMenu
IsRectEmpty
IsWindow
IsWindowEnabled
EqualRect
IsZoomed
KillTimer
LoadAcceleratorsW
LoadBitmapW
LoadCursorW
LoadIconW
LoadMenuW
LoadStringW
LockWindowUpdate
MapDialogRect
MapVirtualKeyExW
MapVirtualKeyW
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
EndDialog
OffsetRect
OpenClipboard
PeekMessageW
PostMessageW
PostThreadMessageW
PtInRect
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetClipboardData
SetCursorPos
SetFocus
SetForegroundWindow
SetMenuDefaultItem
GetSubMenu
SetMenuItemInfoW
SetParent
SetPropW
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowOwnedPopups
ShowScrollBar
ShowWindow
SubtractRect
SystemParametersInfoW
TabbedTextOutW
ToUnicodeEx
TrackPopupMenu
TranslateAcceleratorW
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassW
UpdateWindow
ValidateRect
WaitForInputIdle
WaitMessage
WindowFromPoint
WinHelpW
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawStateW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateDialogIndirectParamW
CreateAcceleratorTableW
CopyRect
CopyImage
CopyIcon
CopyAcceleratorTableW
CloseClipboard
ClientToScreen
CheckMenuItem
CheckDlgButton
LoadCursorA
LoadIconA
LoadImageW
GetWindowLongW
GetWindowTextLengthA
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetKeyNameTextW
GetKeyboardState
GetKeyboardLayout
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowW
SetMenuItemBitmaps
FillRect
IsWindowVisible
MoveWindow

gdi32

SetROP2
SetRectRgn
SetPolyFillMode
SetPixelV
SetPixel
SetPaletteEntries
SetMapMode
SetDIBColorTable
SetBkMode
SetBkColor
SelectPalette
SetTextAlign
SetTextColor
SetTextJustification
SetViewportExtEx
SelectObject
SelectClipRgn
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
Rectangle
RealizePalette
PtVisible
PtInRegion
Polyline
PatBlt
OffsetWindowOrgEx
OffsetViewportOrgEx
OffsetRgn
MoveToEx
LPtoDP
LineTo
IntersectClipRect
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
SetViewportOrgEx
GetTextMetricsW
GetTextFaceW
GetTextExtentPointW
GetTextExtentPoint32W
GetTextColor
GetTextCharsetInfo
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
GetPaletteEntries
GetObjectW
GetObjectType
GetNearestPaletteIndex
GetMapMode
GetDeviceCaps
GetClipBox
GetBoundsRect
GetBkColor
FrameRgn
FillRgn
ExtTextOutW
ExtSelectClipRgn
ExtFloodFill
ExcludeClipRect
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
Ellipse
DPtoLP
DeleteObject
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateHatchBrush
CreateFontIndirectW
CreateEllipticRgn
GetViewportExtEx

winspool.drv

OpenPrinterW

advapi32

RegQueryValueW
RegQueryValueExW
RegSetValueExW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
DoDragDrop
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleDraw
OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleInitialize
OleIsCurrentClipboard
OleLockRunning
OleTranslateAccelerator
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
StringFromCLSID

Sections

.text
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ge25ba
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.he25bb
Size: 4KB - Virtual size: 14.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ie25bc
Size: 4KB - Virtual size: 29B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.react19
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

27a9b77df2d553769b78a281f000218b

Headers

File Characteristics

Imports

winmm

msvcrt

version

kernel32

user32

gdi32

winspool.drv

advapi32

ole32

Sections

.text Size: 404KB - Virtual size: 402KB

.ge25ba Size: 12KB - Virtual size: 9KB

.he25bb Size: 4KB - Virtual size: 14.0MB

.ie25bc Size: 4KB - Virtual size: 29B

.rsrc Size: 364KB - Virtual size: 364KB

.react19 Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 404KB - Virtual size: 402KB

.ge25ba
Size: 12KB - Virtual size: 9KB

.he25bb
Size: 4KB - Virtual size: 14.0MB

.ie25bc
Size: 4KB - Virtual size: 29B

.rsrc
Size: 364KB - Virtual size: 364KB

.react19
Size: 1.4MB - Virtual size: 1.4MB