MigRegDB[.]exe

General

Target

MigRegDB.exe
Size

11KB
MD5

815f45ce3293ba22d4ee10f88de922cc
SHA1

3893856646a0f60742a9f360c9d9db6b472483f6
SHA256

2a9a0ae521832b1f81d3a1f5607f902bea25370cdfdc7f4dc7e9f8540d3ead95
SHA512

0486b15908eee8e953fe113c3db32661b8eb29e0adaf607c99b76a58282d093679383e057c01e41323cece040759b3e7ec0029f69b505ff1cd4f450e5d980ebd
SSDEEP

192:JJH+LPoAuXXk1TQODuUtVp/xMVTIYB4EW1wW:JJkuXXIu4/iiM4EW1wW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MigRegDB.exe

Files

MigRegDB.exe
.exe windows:10 windows x86

a5f1e46c2c91679d6f57e2fac9178b63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegCloseKey
RegDeleteValueW

kernel32

FindNextFileW
FindClose
GetLastError
ExpandEnvironmentStringsW
TerminateProcess
GetCurrentProcess
FindFirstFileW
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
Sleep
ExitProcess
HeapSetInformation
lstrlenW
UnhandledExceptionFilter

msvcrt

_except_handler4_common
?terminate@@YAXXZ
_initterm
__setusermatherr
__p__fmode
_cexit
_exit
exit
__set_app_type
__wgetmainargs
_amsg_exit
__p__commode
_XcptFilter
swscanf
_wtol
_vsnwprintf
_controlfp
__CxxFrameHandler3

clbcatq

ComPlusMigrate
OpenComponentLibraryEx

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5f1e46c2c91679d6f57e2fac9178b63

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

msvcrt

clbcatq

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 400B

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 400B