7e1f04ab672cd2c0ab0715f9cb1687b74e2da0859c6e457994a422686b71b336

Sharing

Copy URL Twitter E-mail

General

Target

7e1f04ab672cd2c0ab0715f9cb1687b74e2da0859c6e457994a422686b71b336
Size

392KB
MD5

d9511ab123355999e68851d257df687a
SHA1

cc9a8a03c9ea3a42dac9ed33ae73bf515d1f11dd
SHA256

7e1f04ab672cd2c0ab0715f9cb1687b74e2da0859c6e457994a422686b71b336
SHA512

1c5b335fc841e8e21e374fc4e6781a6e79b2c466d0c10d6b2511f00d7ae0f420281089196e64ec946bf3869b4ba2c3b6567a0c60a3f1c5874182c3e80d22d5f1
SSDEEP

6144:oQKCCW41fzSGlT6o/iss+Ia+aUoqu/ySCZF+Mjw3FopO24pKI:xr0/lTNX8aU+QF+O2C4dr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e1f04ab672cd2c0ab0715f9cb1687b74e2da0859c6e457994a422686b71b336

Files

7e1f04ab672cd2c0ab0715f9cb1687b74e2da0859c6e457994a422686b71b336
.exe windows x86

c918bdc62c55ff82bc283836a3a482d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
HeapCreate
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapDestroy
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
ExitThread
CreateThread
HeapAlloc
HeapFree
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetCurrentThread
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
GetModuleFileNameA
lstrcmpA
lstrcpynA
LocalFree
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
GetVersionExA
InterlockedDecrement
LoadLibraryA
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
ReleaseMutex
OpenMutexA
CreateMutexA
SetEvent
ResetEvent
WaitForSingleObject
SizeofResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
MulDiv
GlobalFree
CloseHandle
CreateEventA
lstrcatA
WinExec
lstrcpyA
lstrcmpiA
FindResourceA
LoadResource
LockResource
GetCPInfo
lstrlenW
lstrlenA
GetVersion
GetStringTypeW

user32

DispatchMessageA
PeekMessageA
MapWindowPoints
SendDlgItemMessageA
GetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
CheckMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetWindowDC
BeginPaint
EndPaint
ValidateRect
TranslateMessage
GetMessageA
SetRectEmpty
LoadStringA
CharUpperA
GetClassNameA
ReleaseCapture
SetTimer
KillTimer
SetCapture
GetDCEx
LockWindowUpdate
SetParent
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
GetFocus
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
RegisterWindowMessageA
IntersectRect
GetWindowPlacement
EndDialog
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
UpdateWindow
SetActiveWindow
PtInRect
UnregisterHotKey
EnableMenuItem
PostQuitMessage
IsIconic
DrawIcon
RegisterHotKey
LoadIconA
GetCursorPos
SetForegroundWindow
MessageBeep
SetWindowLongA
GetIconInfo
LoadImageA
DrawStateA
GetClientRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
GetWindowRect
TrackPopupMenuEx
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
SendMessageA
GetWindowLongA
DestroyCursor
DestroyMenu
GetSubMenu
GrayStringA
TabbedTextOutA
LoadBitmapA
GetSysColorBrush
SetFocus
AdjustWindowRectEx
GetMenuStringA
CreateMenu
CreatePopupMenu
GetMenuItemID
GetMenuState
ModifyMenuA
GetMenuItemCount
AppendMenuA
GetSystemMetrics
GetDesktopWindow
GetDC
DrawTextA
ReleaseDC
ScreenToClient
EqualRect
DeferWindowPos
IsWindowVisible
SetWindowsHookExA
DrawIconEx
DestroyIcon
SystemParametersInfoA
GetSysColor
CopyRect
FillRect
DrawEdge
SetRect
GetMenuItemInfoA
LoadCursorA
EnableWindow
PostMessageA
SetWindowPos
UnregisterClassA

gdi32

SetTextColor
SetBkColor
CreateBitmap
GetClipBox
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
GetStockObject
CreateRectRgn
CreatePatternBrush
SetRectRgn
CombineRgn
StretchDIBits
GetCharWidthA
CreateFontA
GetTextMetricsA
Escape
ExtTextOutA
TextOutA
PatBlt
RectVisible
PtVisible
GetObjectA
GetPixel
SetPixel
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
CreatePen
GetBkMode
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

shell32

Shell_NotifyIconA
ShellExecuteA
ShellExecuteExA

comctl32

ImageList_GetIcon
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
_TrackMouseEvent
ord17
ImageList_Destroy
ImageList_GetImageCount
ImageList_Create

ole32

CreateStreamOnHGlobal

olepro32

ord251

Sections

.text
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c918bdc62c55ff82bc283836a3a482d5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

Sections

.text Size: 164KB - Virtual size: 162KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 8KB - Virtual size: 21KB

.rsrc Size: 180KB - Virtual size: 179KB

.text
Size: 164KB - Virtual size: 162KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 180KB - Virtual size: 179KB