7a120e12834e0f5424b5b257bca2b12c5b58c65dd59d429f945b5f7cffbb3eaf

Sharing

Copy URL

Twitter E-mail

General

Target

7a120e12834e0f5424b5b257bca2b12c5b58c65dd59d429f945b5f7cffbb3eaf
Size

7.0MB
MD5

e5b119b7f060522ee8551c0b3c962cd3
SHA1

8fe0f5f819b9b10d6650a8a199f73a6645d71fa1
SHA256

7a120e12834e0f5424b5b257bca2b12c5b58c65dd59d429f945b5f7cffbb3eaf
SHA512

5149d644899b51e6483bafefb6ad3d848ae26ccb530f0bf56d15a28ee12913515be99bdeb02cd8ab89e3e1b025ed304cf6ddb61e6244be65cbabae06491d2926
SSDEEP

49152:EwTqcFrg/7rczCbVXeQqZUhh4r5VC9PI+Kt/KaDZL/kUkDU199XPUprpB5Qxb/Dg:EwTqcFrg/7AzCbwQqZUha5jtSyZIUb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a120e12834e0f5424b5b257bca2b12c5b58c65dd59d429f945b5f7cffbb3eaf

Files

7a120e12834e0f5424b5b257bca2b12c5b58c65dd59d429f945b5f7cffbb3eaf
.exe windows:5 windows x86

3826cf1ed6741008ff14e6a4b2c6b9bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msacm32

acmMetrics

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
__setusermatherr
memset

winmm

mixerSetControlDetails
mixerOpen
timeGetTime

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_Write
ord17

version

VerQueryValueA
GetFileVersionInfoSizeA

kernel32

GetStartupInfoA
GetModuleHandleA
GetLastError
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCurrentThreadId
SetErrorMode
LoadLibraryA
LeaveCriticalSection
GetOEMCP
GetTickCount
InitializeCriticalSection
GetVersion
GetDriveTypeA
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentDirectoryA
GetCPInfo
GetComputerNameA
GetCommandLineA
FreeResource
FreeLibrary
FreeEnvironmentStringsA
FormatMessageA
FlushInstructionCache
FindResourceA
FindNextFileA
FindNextChangeNotification
FindFirstFileA
FindFirstChangeNotificationA
FindCloseChangeNotification
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsA
ExitThread
EnumSystemLocalesA
EnumCalendarInfoA
EnterCriticalSection
DuplicateHandle
DeviceIoControl
DeleteFileA
DeleteCriticalSection
CreateThread
CreateProcessA
CreateMutexA
CreateFileMappingA
CreateFileA
ExitProcess
GetACP

user32

DestroyMenu
DestroyIcon
DestroyCursor
DestroyCaret
DeleteMenu
DefWindowProcA
DefMDIChildProcA
DefFrameProcA
DrawEdge
DrawFocusRect
DrawFrameControl
DrawIconEx
DrawMenuBar
CreateWindowExA
DestroyWindow
CreateMenu
CreateIcon
CreateDialogParamA
CreateCaret
CopyRect
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckMenuItem
CharUpperBuffA
CharUpperA
CharToOemA
CharNextW
CharNextA
CharLowerBuffA
DialogBoxParamA
DispatchMessageA
CreatePopupMenu
DrawTextA
DrawTextExA
DrawTextW
EmptyClipboard
DispatchMessageW

gdi32

MaskBlt
MoveToEx
OffsetClipRgn
LineTo
IntersectClipRect
GetWinMetaFileBits
GetWindowOrgEx
GetTextMetricsA
GetTextExtentPointA
GetTextExtentPoint32W
GetTextExtentPoint32A
GetSystemPaletteEntries
GetStockObject
GetRgnBox
GetPixel
PatBlt
GetObjectA
GetNearestPaletteIndex
GetNearestColor
GetMapMode
GetEnhMetaFilePaletteEntries
GetEnhMetaFileHeader
GetEnhMetaFileBits
GetDIBits
GetDIBColorTable
GetDeviceCaps
GetDCOrgEx
GetCurrentPositionEx
GetCurrentObject
GetClipRgn
GetClipBox
GetBrushOrgEx
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
ExtTextOutW
ExtTextOutA
ExtCreatePen
ExcludeClipRect
EndPage
EndDoc
Ellipse
DeleteObject
DeleteEnhMetaFile
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreatePolygonRgn
CreatePenIndirect
CreatePalette
CreateICA
CreateHalftonePalette
CreateFontIndirectA
CreateFontA
CreateEllipticRgn
Pie
PlayEnhMetaFile
Polygon
Polyline
PolyPolyline
RealizePalette
Rectangle
RectVisible
RestoreDC
DeleteDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
GetPaletteEntries
TranslateCharsetInfo
TextOutA
StretchDIBits
StretchBlt
StartPage
StartDocA
SetWinMetaFileBits
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetTextJustification
SetTextColor
SetStretchBltMode
SetROP2
SetPixel
SetMapMode
SetEnhMetaFileBits
SetDIBits
SetDIBColorTable
SetBrushOrgEx
SetBkMode
SetViewportExtEx
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateDIBSection
SetBkColor

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA
EnumPrintersA

advapi32

LookupPrivilegeNameA
FreeSid
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetTokenInformation
GetUserNameA
LookupAccountNameA
LookupPrivilegeValueA
OpenProcessToken
OpenSCManagerA
OpenServiceA
OpenThreadToken
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
EqualSid
RegEnumValueA
RegFlushKey
RegOpenKeyExA
StartServiceA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA

shell32

SHGetFileInfoA
SHFileOperationA

ole32

ReleaseStgMedium
StgOpenStorage
StgCreateDocfile
RevokeDragDrop
OleInitialize
OleSetClipboard
OleUninitialize
PropVariantClear
RegisterDragDrop
CoUninitialize
StgIsStorageFile
StringFromCLSID
OleGetClipboard
DoDragDrop

oleaut32

SafeArrayPtrOfIndex
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
SysReAllocStringLen
VariantChangeType
VariantClear
VariantCopyInd
VariantInit
SafeArrayPutElement

ws2_32

WSAGetLastError
WSACleanup
WSAAsyncSelect
socket
send
recv
ioctlsocket
WSAStartup

Sections

.text
Size: 424KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sif
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 916KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3826cf1ed6741008ff14e6a4b2c6b9bf

Headers

File Characteristics

Imports

msacm32

msvcrt

winmm

comctl32

version

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

ws2_32

Sections

.text Size: 424KB - Virtual size: 423KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 12.1MB

.data1 Size: 4KB - Virtual size: 648B

.sif Size: 8KB - Virtual size: 4KB

.rsrc Size: 916KB - Virtual size: 912KB

.text
Size: 424KB - Virtual size: 423KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 12.1MB

.data1
Size: 4KB - Virtual size: 648B

.sif
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 916KB - Virtual size: 912KB