6e6e088cf130e883f2ad32f2a73f1d0b22c97ba66b3dcc655e16d0020fdc10ebN[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

6e6e088cf130e883f2ad32f2a73f1d0b22c97ba66b3dcc655e16d0020fdc10ebN.exe
Size

193KB
MD5

7aa3bbee9323a1e34452ccd4c6bb8230
SHA1

53f303da8a0e18533538f91a66639e696d9036dd
SHA256

6e6e088cf130e883f2ad32f2a73f1d0b22c97ba66b3dcc655e16d0020fdc10eb
SHA512

4e2a8f4a0e4645e2f2a558fd809c847d36458642689ae5f6df23f82cca19338f9cbd6468caa7fc290def77350ae35d7202d08182fa76fa4473a7120195ff4244
SSDEEP

3072:pdw8KI2FAwZXhgEYHTWglAGib6nYNw56Fdw0wAIFhgJTZO9/6OCTMFkp3:pd5hMWNHrlabBw5OwA49ijTGe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6e6e088cf130e883f2ad32f2a73f1d0b22c97ba66b3dcc655e16d0020fdc10ebN.exe

Files

6e6e088cf130e883f2ad32f2a73f1d0b22c97ba66b3dcc655e16d0020fdc10ebN.exe
.exe windows:4 windows x86 arch:x86

d8e381cb8ed27127a4cc6359b9e030b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerQueryValueA

gdi32

SetStretchBltMode
GetStockObject
CreateFontA
StretchDIBits
RealizePalette
CreateDIBitmap
SelectObject
BitBlt
DeleteDC
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
SelectPalette
GetDIBits
CreateDIBSection
DeleteObject
ExtEscape
GetDeviceCaps
SetBkMode

user32

GetWindowTextLengthA
IsChild
GetWindowTextA
ReleaseCapture
DispatchMessageA
SendMessageTimeoutA
SendNotifyMessageA
PostMessageA
SetFocus
CopyRect
wvsprintfA
SetCapture
GetClassInfoExA
CharNextA
GetClientRect
FindWindowA
IsWindow
RegisterClassExA
SetWindowTextA
PostThreadMessageA
GetWindowLongA
GetDC
GetActiveWindow
SetParent
UnregisterClassA
DefWindowProcA
RegisterWindowMessageA
SetTimer
EnumDisplayDevicesA
EndPaint
ReleaseDC
ShowWindow
DestroyWindow
CallWindowProcA
GetWindow
GetParent
LoadCursorA
MoveWindow
GetDesktopWindow
KillTimer
RedrawWindow
InvalidateRect
CreateWindowExA
CreateDialogParamA
BeginPaint
SendMessageA
EqualRect
GetWindowRect
GetDlgItem
GetSysColor
FillRect
MsgWaitForMultipleObjects
SetWindowLongA
PeekMessageA
DrawTextA
DestroyAcceleratorTable
GetFocus
CreateAcceleratorTableA
GetQueueStatus
InvalidateRgn
wsprintfA
SetRect
GetClassNameA
SetWindowPos

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

kernel32

GetLongPathNameW
GlobalFree
GetTickCount
CreateFileMappingA
UnmapViewOfFile
GetProcessId
GlobalSize
WriteFile
WideCharToMultiByte
GetFileSize
LocalFree
SetFilePointer
CreateFileW
EnumResourceTypesA
ReadFile
Sleep
GetFileAttributesA
DisableThreadLibraryCalls
MapViewOfFile
GlobalAlloc
LocalAlloc
CreateFileA
CloseHandle

wininet

InternetOpenUrlA
InternetOpenA
InternetReadFile
InternetCloseHandle

advapi32

RegCreateKeyExA
CryptCreateHash
RegQueryValueExA
CryptEncrypt
RegQueryInfoKeyA
RegEnumValueA
CryptReleaseContext
RegDeleteValueA
RegOpenKeyExA
CryptImportKey
CryptGetHashParam
RegEnumKeyExA
CryptHashData
CryptAcquireContextA
RegSetValueExA
CryptDestroyHash
CryptDestroyKey
RegCloseKey
RegDeleteKeyA

ole32

CreateStreamOnHGlobal
CreateItemMoniker
StgCreateDocfile
StringFromGUID2
CreateBindCtx
StgIsStorageFile
CoInitialize
CoUninitialize
CoTaskMemRealloc
OleInitialize
OleUninitialize
StgOpenStorage
BindMoniker
CoTaskMemAlloc
CoGetClassObject
GetRunningObjectTable
CoSetProxyBlanket
CLSIDFromProgID
OleLockRunning
CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CLSIDFromString

winmm

timeGetTime
timeSetEvent

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

shlwapi

PathFileExistsW
PathCombineW

gdiplus

GdipCreateBitmapFromFileICM
GdipDisposeImage
GdipFree
GdipAlloc
GdipGetImagePixelFormat
GdipCreateBitmapFromFile
GdipCloneImage

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8e381cb8ed27127a4cc6359b9e030b3

Headers

File Characteristics

Imports

version

gdi32

user32

setupapi

kernel32

wininet

advapi32

ole32

winmm

shell32

shlwapi

gdiplus

Sections

.text Size: 109KB - Virtual size: 108KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 77KB - Virtual size: 76KB

.tls Size: 1024B - Virtual size: 108KB

.text
Size: 109KB - Virtual size: 108KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 77KB - Virtual size: 76KB

.tls
Size: 1024B - Virtual size: 108KB