7c906558786ded9573739050d762a67dfa932b27dd70435c2002528cb03cffe2

Sharing

Copy URL Twitter E-mail

General

Target

7c906558786ded9573739050d762a67dfa932b27dd70435c2002528cb03cffe2
Size

227KB
MD5

ab8b17382c4656c4a4aa6cd3f0abf123
SHA1

f368566cf20ad13ea514bc257cd8ef975543cbf6
SHA256

7c906558786ded9573739050d762a67dfa932b27dd70435c2002528cb03cffe2
SHA512

fcd85e7df0f6af83d1cd4d40737a25e4077d3ca186138db4fd7affc5104b9ac86451692a49b590f4577b22086c5cef815d4d977d6d56a4a13290d0793172094d
SSDEEP

3072:SD+llLRfgk3SCCL+qEPAN3TqmM/tjd81RzTY6TDZmzKum0FL/p8kex6Zx7t:blRB3SCk+kBRYiR3Y6TdmzHOTw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c906558786ded9573739050d762a67dfa932b27dd70435c2002528cb03cffe2

Files

7c906558786ded9573739050d762a67dfa932b27dd70435c2002528cb03cffe2
.exe windows:4 windows x86

e1822c40d4a00a82e2aa63f99bb8536b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetBkColor
GetClipRgn
GetDCBrushColor
GetDCPenColor
GetFontLanguageInfo
GetGraphicsMode
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetPixelFormat
GetPolyFillMode
GetSystemPaletteUse
GetTextAlign
GetTextCharacterExtra
GetTextCharset
GetTextCharsetInfo
GetTextColor
SetTextAlign

kernel32

CloseHandle
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalFlags
LockResource
MoveFileA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_itoa
_lock
_onexit
_stat
_strlwr
_unlock
_vsnprintf
abort
atoi
calloc
exit
fclose
fflush
fopen
fprintf
free
fwrite
malloc
memcmp
memmove
memset
memcpy
rand
realloc
signal
sprintf
srand
strcat
strcmp
strcpy
strlen
strncmp
strstr
time
vfprintf

user32

BeginPaint
CheckDlgButton
DrawTextA
EndDialog
EndPaint
GetDlgItem
GetDlgItemInt
GetForegroundWindow
GetMenu
GetMenuCheckMarkDimensions
GetMenuItemCount
GetMenuItemID
GetMenuState
GetWindowContextHelpId
GetWindowLongA
IsWindowUnicode
RemovePropA
SendMessageA
SetDlgItemTextA
SetFocus
SetWindowTextA
ShowWindow
WindowFromDC

Sections

.text
Size: 198KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 285KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e1822c40d4a00a82e2aa63f99bb8536b

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 198KB - Virtual size: 197KB

.data Size: 512B - Virtual size: 64B

.rdata Size: 21KB - Virtual size: 20KB

.eh_fram Size: 2KB - Virtual size: 2KB

.bss Size: - Virtual size: 285KB

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.text
Size: 198KB - Virtual size: 197KB

.data
Size: 512B - Virtual size: 64B

.rdata
Size: 21KB - Virtual size: 20KB

.eh_fram
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 285KB

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B