6c8f66b3bbc8e650496c5d676336b37ebab6640a8e2eaf148aa032708ff9e993N | Triage

Sharing

General

Target

6c8f66b3bbc8e650496c5d676336b37ebab6640a8e2eaf148aa032708ff9e993N
Size

157KB
MD5

2e830f9c96a996cd28dc19a65fae38a0
SHA1

aff0ccb06d12c6e2810c0b7060bb8d02e851ed8b
SHA256

6c8f66b3bbc8e650496c5d676336b37ebab6640a8e2eaf148aa032708ff9e993
SHA512

953da6fe2ba1189455a5104abcb38d44e156cb0f23d7948e1940a05a7392b1cd23d3a17ef42144e4eb59c14e8da7f4de7e00c5b2d52e5b60d8ea4423e6e38a47
SSDEEP

3072:hkni61BofLgY1WmM0KPwpky34IihM/au0/Rze/rYLd1ySQg:hk18wIKP0Fria/au0U/8Tl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c8f66b3bbc8e650496c5d676336b37ebab6640a8e2eaf148aa032708ff9e993N

Files

6c8f66b3bbc8e650496c5d676336b37ebab6640a8e2eaf148aa032708ff9e993N
.dll windows:4 windows x86 arch:x86

17db30584459669f2211e41d212cb528

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
ExitProcess
FindResourceA
FlushFileBuffers
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetPriorityClass
GetStartupInfoA
GetSystemTimeAsFileTime
GlobalReAlloc
HeapAlloc
HeapCreate
HeapReAlloc
IsBadStringPtrA
LocalFree
MultiByteToWideChar
OpenEventA
RtlUnwind
SetEndOfFile
SetLastError
SetUnhandledExceptionFilter
TlsAlloc
VirtualFree
WideCharToMultiByte
lstrcmpA
lstrcpyA

msvcrt

__p__commode
__set_app_type
exit
strspn
swscanf
vswprintf
__getmainargs

user32

GetCursorPos
GetWindowTextA
SystemParametersInfoA

winmm

mmioAscend
mmioGetInfo
mmioRenameA
mmioSetBuffer
waveOutGetNumDevs
mmioAdvance

Exports

Exports

NxScaleCookedConvexMesh

Sections

.text
Size: 96KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ