61f75078b49cf492b77ba1574d295b8b0aac5087ef7a3c18e81791bf05195b15

Sharing

Copy URL

Twitter E-mail

General

Target

61f75078b49cf492b77ba1574d295b8b0aac5087ef7a3c18e81791bf05195b15
Size

6.7MB
MD5

d819769baf21bcfbc131337340974e56
SHA1

f79fe55b5d01c9647707e84f97d58fc60bb108b1
SHA256

61f75078b49cf492b77ba1574d295b8b0aac5087ef7a3c18e81791bf05195b15
SHA512

c5ddf5d0185698faf86675ecb5e7eab0bad537eb896a051470e9c1a01eef54e7d32a7328899978a8c0593a8f51e5564505d6bd01d4fea79350f61ea98d0b2bef
SSDEEP

196608:IJPxDPPUaVOA1alGZtp1QVU1oB/fqBXOYJnJ:IJZcaVO9G/bLokxnJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61f75078b49cf492b77ba1574d295b8b0aac5087ef7a3c18e81791bf05195b15

Files

61f75078b49cf492b77ba1574d295b8b0aac5087ef7a3c18e81791bf05195b15
.exe windows:4 windows x86 arch:x86

de6185b8cdae1e84cb8f9add0b5f8afc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcatA
InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 53KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 27KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 6KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9
Size: 45KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

10
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

11
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

de6185b8cdae1e84cb8f9add0b5f8afc

Headers

File Characteristics

Imports

kernel32

user32

Sections

0 Size: 53KB - Virtual size: 124KB

1 Size: 512B - Virtual size: 164B

2 Size: 27KB - Virtual size: 37KB

3 Size: 3KB - Virtual size: 9KB

4 Size: - Virtual size: 1KB

5 Size: 6KB - Virtual size: 19KB

6 Size: 512B - Virtual size: 52B

7 Size: 512B - Virtual size: 32B

8 Size: 37KB - Virtual size: 37KB

9 Size: 45KB - Virtual size: 70KB

10 Size: 3KB - Virtual size: 3KB

11 Size: 28KB - Virtual size: 32KB

0
Size: 53KB - Virtual size: 124KB

1
Size: 512B - Virtual size: 164B

2
Size: 27KB - Virtual size: 37KB

3
Size: 3KB - Virtual size: 9KB

4
Size: - Virtual size: 1KB

5
Size: 6KB - Virtual size: 19KB

6
Size: 512B - Virtual size: 52B

7
Size: 512B - Virtual size: 32B

8
Size: 37KB - Virtual size: 37KB

9
Size: 45KB - Virtual size: 70KB

10
Size: 3KB - Virtual size: 3KB

11
Size: 28KB - Virtual size: 32KB