69c0a0d9e9035007f812cb3a364599271f28cf2873731b507e03b27ca8066e4bN

Sharing

Copy URL Twitter E-mail

General

Target

69c0a0d9e9035007f812cb3a364599271f28cf2873731b507e03b27ca8066e4bN
Size

6.5MB
MD5

8acdf70fe90d10f37be2dee3d158d6c0
SHA1

c1d0b82933bbc4b3c465836186d798bc37b8c8a2
SHA256

69c0a0d9e9035007f812cb3a364599271f28cf2873731b507e03b27ca8066e4b
SHA512

f8ed407b1d7d68e640b27f8f6d5849278e0c6032bc1257f08ac447118ff300fc7d660368a2b55b25c61f914ed1d7df6341a44a6a3c413ab3f844325050d8d3cd
SSDEEP

98304:G5AjTHGs5SxxjWA6MXBHzBKQLdZMnPbFm/hK6SVLJ1o0yOMPgZGN966dwYVOf:G5AfuxxKEBHz0/DQrCQ0wIZN6hVOf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69c0a0d9e9035007f812cb3a364599271f28cf2873731b507e03b27ca8066e4bN

Files

69c0a0d9e9035007f812cb3a364599271f28cf2873731b507e03b27ca8066e4bN
.dll windows:6 windows x86 arch:x86

2c90077b03530937ec748188f49f8834

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsValidCodePage
FindClose
LoadLibraryA
GetFileType
QueryDosDeviceW
IsDebuggerPresent
GetStringTypeW
DeleteCriticalSection
GetWindowsDirectoryW
FileTimeToLocalFileTime
TlsFree
DeleteFileA
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
FindFirstFileA
LoadLibraryExW
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
GetModuleFileNameW
WriteFile
FreeEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetStdHandle
GetTempPathW
MultiByteToWideChar
FileTimeToSystemTime
TerminateProcess
IsProcessorFeaturePresent
GetExitCodeProcess
GetVersionExW
ReadProcessMemory
IsValidLocale
GetSystemDirectoryW
SetCommTimeouts
SetCommState
GetUserDefaultLangID
GetSystemTimeAsFileTime
ExpandEnvironmentStringsA
InitializeSListHead
GetEnvironmentStringsW
SystemTimeToFileTime
GetFileSize
SetDllDirectoryW
MapViewOfFile
GetLocaleInfoA
SetFilePointer
FindFirstFileW
GetDateFormatW
GetLocalTime
SetThreadPriority
GetACP
GetSystemTimeAdjustment
HeapFree
FindResourceW
RtlCaptureContext
OutputDebugStringW
GetProcessHeap
GetOEMCP
HeapSize
GetModuleHandleExW
ExitProcess
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
GetLastError
HeapReAlloc
RaiseException
RtlUnwind
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
GetStartupInfoW
GetModuleHandleW
GetProcAddress
LCMapStringW
GetLocaleInfoW
GetUserDefaultLCID
EnumSystemLocalesW

user32

ClientToScreen
DestroyAcceleratorTable
DrawIconEx
LoadStringA
ModifyMenuW
GetMenu
GetClassNameW
DestroyCursor
SendDlgItemMessageW
GetSysColorBrush
DrawMenuBar
BeginDeferWindowPos
SetDlgItemTextW
GetDlgCtrlID
ToUnicode
SetMenuItemInfoW
IsRectEmpty
CharLowerBuffW
GetDC
GetDesktopWindow
MonitorFromWindow

gdi32

SetViewportOrgEx
SetWindowExtEx
CreateHatchBrush
Polygon
Ellipse
OffsetRgn
StretchDIBits
SetStretchBltMode
GetNearestPaletteIndex
CreatePatternBrush
SetViewportExtEx
GetTextExtentPoint32W
GetRgnBox
CombineRgn
SetPolyFillMode
Arc

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegSetValueExW
RegLoadKeyW
ControlService
RegConnectRegistryW
QueryServiceStatus
StartServiceW
RegOpenKeyExA
LookupPrivilegeValueW
SetSecurityDescriptorDacl
RegDeleteKeyA
RegQueryInfoKeyW
RegEnumKeyExW

oleaut32

SysFreeString
SafeArrayPtrOfIndex
VariantChangeType
SysAllocStringLen
VariantCopy
SafeArrayGetLBound

Sections

.text
Size: 522KB - Virtual size: 522KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 59.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c90077b03530937ec748188f49f8834

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

oleaut32

Sections

.text Size: 522KB - Virtual size: 522KB

.data Size: 5.9MB - Virtual size: 59.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 522KB - Virtual size: 522KB

.data
Size: 5.9MB - Virtual size: 59.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 12KB