7414c90d65993872f2349bf7651a849717a10eba660b93e4a800fec1ec477407

Sharing

Copy URL

Twitter E-mail

General

Target

7414c90d65993872f2349bf7651a849717a10eba660b93e4a800fec1ec477407
Size

345KB
MD5

61c8fe39b077f450f2bbdbb0412746bf
SHA1

e4a1406e292e3eedec5ecd054ad9fb495d26de30
SHA256

7414c90d65993872f2349bf7651a849717a10eba660b93e4a800fec1ec477407
SHA512

2f7a033714a79827d642bd7d976e820daf116bccc583744975be6e667782a45995b44475bd507f3a6355a6c0459c4e9646451441a4856393cb11a891e6d86e56
SSDEEP

6144:Hu1KKZlfdwyaPnZEmkCBD1136vmJBlKoJjd63CXTW43nyn2Hi+h4ykgtPRe:HYNlFwyKnNZV19JB4oJjA3CXi43yn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7414c90d65993872f2349bf7651a849717a10eba660b93e4a800fec1ec477407

Files

7414c90d65993872f2349bf7651a849717a10eba660b93e4a800fec1ec477407
.exe windows:5 windows x86

777242d48c869f1514990c781bd5d658

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetCurrentProcess
HeapFree
SetEvent
GetTickCount
WideCharToMultiByte
Sleep
GetLastError
CreateEventW
CreateThread
GetStringTypeW
GetStringTypeA
InitializeCriticalSectionAndSpinCount
CloseHandle
GetProcAddress
TerminateProcess
GetModuleHandleW
WaitForSingleObject
GetLocaleInfoA
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetHandleCount
GetStartupInfoA
HeapCreate
GetModuleFileNameA
QueryPerformanceCounter
LoadLibraryA
FlushFileBuffers
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleCP
LCMapStringW
GetVersionExW
LoadLibraryW
GetStdHandle
MultiByteToWideChar
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetFileType
GetSystemTimeAsFileTime
GetProcessAffinityMask
GetSystemInfo
GlobalMemoryStatus
GetModuleHandleA
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
GetConsoleMode
ResumeThread
SetThreadAffinityMask
ResetEvent
CreateSemaphoreW
ReleaseSemaphore
InitializeCriticalSection
SetFilePointer
SetLastError
WriteFile
GetCurrentProcessId
GetCurrentThreadId
FreeLibrary
GetModuleFileNameW
InterlockedIncrement
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
ExitThread
HeapReAlloc
ExitProcess
GetCPInfo
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
SetStdHandle
LCMapStringA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

CharUpperW

advapi32

RegisterServiceCtrlHandlerW
SetServiceStatus
StartServiceCtrlDispatcherW

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen
VariantClear
VariantCopy
SysStringLen

Sections

.text
Size: - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx0
Size: - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.upx1
Size: 253KB - Virtual size: 253KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

777242d48c869f1514990c781bd5d658

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

Sections

.text Size: - Virtual size: 260KB

.rdata Size: - Virtual size: 52KB

.data Size: - Virtual size: 116KB

.upx0 Size: - Virtual size: 31KB

.upx1 Size: 253KB - Virtual size: 253KB

.rsrc Size: 90KB - Virtual size: 90KB

.text
Size: - Virtual size: 260KB

.rdata
Size: - Virtual size: 52KB

.data
Size: - Virtual size: 116KB

.upx0
Size: - Virtual size: 31KB

.upx1
Size: 253KB - Virtual size: 253KB

.rsrc
Size: 90KB - Virtual size: 90KB