7008af4d6c8a792cc119540ed6591c07[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

7008af4d6c8a792cc119540ed6591c07.exe
Size

104KB
MD5

7008af4d6c8a792cc119540ed6591c07
SHA1

744e314b4ad2f840b863fe27e3d0f50dcbb48440
SHA256

f05410be61773c8019254c58a2932d47da169ad47887fe14cc26a43b55399f17
SHA512

f131a14e56e24ceb3a1960bf752f488d98d4e9d64b8d391eb5d9a1547c91a7b75abe80a4dfeeed7c89ae8e142e6af401abcc469bbcde7321029c214b6795ea72
SSDEEP

3072:WOcuw0MOFPPKd0BfIMTQnonApINeKQNcZPoPgNrKQ:Z9MOFPPyCzsaApMwNmrKQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7008af4d6c8a792cc119540ed6591c07.exe

Files

7008af4d6c8a792cc119540ed6591c07.exe
.exe windows x86

d4c40d2e91e0691f544d9090d8b1a19b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
CreatePipe
GlobalAlloc
GetVersion
TerminateProcess
CompareStringA
LCMapStringW
GetLastError
SetEnvironmentVariableA
RaiseException
GetFileType
PeekNamedPipe
GetEnvironmentVariableA
GetCurrentProcess
FileTimeToSystemTime
GetACP
GetVersionExA
DuplicateHandle
CreateDirectoryA
HeapReAlloc
FreeEnvironmentStringsA
SetEndOfFile
HeapAlloc
GetEnvironmentStringsW
WideCharToMultiByte
GetProcessHeap
FileTimeToLocalFileTime
MultiByteToWideChar
CreateProcessA
GetTimeZoneInformation
RtlUnwind
GetLocalTime
GetStringTypeA
FlushFileBuffers
SetStdHandle
GlobalUnlock
GlobalLock
GetSystemTimeAsFileTime
GetPrivateProfileIntA
CreateThread
GetFileInformationByHandle
GetOEMCP
Sleep
SetCurrentDirectoryA
GetPrivateProfileStringA
GetStdHandle
WriteFile
LCMapStringA
GetCurrentDirectoryA
HeapDestroy
SetHandleCount
VirtualFree
GetEnvironmentStrings
FreeEnvironmentStringsW
HeapFree
SetFilePointer
CompareStringW
VirtualAlloc
GetCPInfo
FreeLibrary
GetStartupInfoA
GetStringTypeW
CloseHandle
VirtualProtect
GetModuleHandleA
GetModuleFileNameA
LockResource
LoadLibraryA
GetProcAddress
ReadFile
CreateFileA
HeapCreate
ExitProcess

user32

LoadIconA
EnableWindow
SetTimer
IsClipboardFormatAvailable
GetCursorPos
SetWindowLongA
RegisterWindowMessageA
SendMessageA
IsWindow
SetForegroundWindow
DialogBoxParamA
BeginPaint
EmptyClipboard
ClientToScreen
MoveWindow
TrackPopupMenu
OpenClipboard
GetWindowRect
SetMenuDefaultItem
ReleaseCapture
GetSystemMetrics
IsIconic
GetKeyState
CopyRect
DispatchMessageA
CloseClipboard
IsZoomed
PostQuitMessage
GetSysColor
CheckMenuItem
GetDlgItem
LoadCursorA
DefMDIChildProcA
ReleaseDC
EndDialog
GetWindowPlacement
PtInRect
LoadMenuA
RegisterClassExA
DefFrameProcA
AppendMenuA
SetFocus
GetClientRect
SetCapture
KillTimer
GetMessageA
EnableMenuItem
EndPaint
DeleteMenu
ModifyMenuA
LoadImageA
MessageBoxA
ShowWindow
UpdateWindow
MessageBeep
SetWindowPos
DestroyIcon
GetClipboardData
InvalidateRect
GetDC
PostMessageA
SetWindowTextA
SendDlgItemMessageA
GetWindowTextA
SetClassLongA
CreateWindowExA
DestroyMenu
TranslateMessage
SetClipboardData
GetWindow
GetWindowTextLengthA
GetSubMenu

gdi32

DeleteDC
MoveToEx
CreateSolidBrush
StretchBlt
Rectangle
CreateCompatibleBitmap
LineTo
SetBkColor
GetObjectA
SelectObject
SetStretchBltMode
SetPolyFillMode
SelectClipRgn
GetTextExtentPoint32A
ExtSelectClipRgn
GetMapMode
Polygon
CreateRectRgn
GetStockObject
BitBlt
CreateBitmap
SetTextColor
DeleteObject
ExtTextOutA
CreatePen
GetDeviceCaps
GetPixel
CreateFontIndirectA
CreateDCA
SetMapMode
CreateCompatibleDC

comdlg32

GetOpenFileNameA
ChooseFontA
ChooseColorA
GetSaveFileNameA

shell32

SHAppBarMessage
ShellExecuteA
Shell_NotifyIconA
SHGetSpecialFolderPathA

wsock32

WSACleanup
WSAStartup
closesocket
WSAAsyncSelect
htons
WSAGetLastError
socket
gethostname
gethostbyname
connect
send
recv

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4c40d2e91e0691f544d9090d8b1a19b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

wsock32

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 29KB - Virtual size: 104KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 29KB - Virtual size: 104KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB