07b9ccf7cfccf870b83193325ced5d4c

Sharing

Copy URL Twitter E-mail

General

Target

07b9ccf7cfccf870b83193325ced5d4c
Size

75KB
MD5

07b9ccf7cfccf870b83193325ced5d4c
SHA1

98838411cc141095a855dd045787e1b16d236037
SHA256

6b7d71db68e0fb1f4d53cc32daeef687c8baf807826966f08b2d1770d2c2a2cb
SHA512

e17c66b428f7773ed7fbf2a5dbdfd7eae8b78e8f7448377132a406bbd313d8dfd0572541fe3548ada51c3f6dc517fab8b543f61f39ac2bcda46a2f0dd060ceab
SSDEEP

1536:WK3bW0HqA2s69QbeKiYVlOw9G8aOjOYMio5JMGrxpmdeTU4Y:WKPKCaKiYVEv3OiYMiwa4Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07b9ccf7cfccf870b83193325ced5d4c

Files

07b9ccf7cfccf870b83193325ced5d4c
.exe windows:5 windows x86 arch:x86

b5ee7051539480865e076cf9784760c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
_except_handler3
_XcptFilter
__p___initenv
_stricmp
free
_cexit
fputc
calloc
atoi
_vsnprintf
_adjust_fdiv
fprintf
_onexit
_exit
__p__commode
_controlfp
__getmainargs
__p__fmode
__setusermatherr
malloc
__set_app_type

kernel32

GetShortPathNameA
WriteConsoleA
GetProcAddress
CreateDirectoryA
SetEnvironmentVariableA
CompareStringA
GetSystemInfo
IsBadWritePtr
GetFileAttributesA
GetModuleHandleW
GetTimeZoneInformation
GetExitCodeProcess
VirtualProtectEx
FileTimeToDosDateTime
GetCommandLineW
LocalFree
GetTempPathW
CreateProcessA
GetProcessHeap
Sleep

advapi32

RegOpenKeyA
RegEnumValueA
IsValidSid
RegEnumKeyExW
AllocateAndInitializeSid
CloseServiceHandle
RegCreateKeyExW
RevertToSelf
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegDeleteKeyA
RegSetValueExW
DeleteService

gdi32

CreateICW
CreateDCW
TextOutW
LineDDA
SetWindowExtEx
StartDocW
SetTextCharacterExtra
SetTextJustification
SetMetaFileBitsEx
CopyEnhMetaFileA
OffsetClipRgn
PtVisible

ole32

CoTaskMemRealloc
CreateBindCtx
ReleaseStgMedium
CoInitializeEx
OleSetClipboard
IIDFromString
RevokeDragDrop
CoInitializeSecurity
CoSetProxyBlanket
CoTaskMemFree
CLSIDFromProgID
CreateStreamOnHGlobal
CoCreateInstance
StringFromCLSID
OleIsCurrentClipboard

user32

WaitMessage
GetWindowThreadProcessId
SendMessageA
SendDlgItemMessageA
RegisterClipboardFormatA
IsWindowVisible
LoadIconA
KillTimer
WinHelpA
DefWindowProcA
GetCapture

comctl32

ImageList_Remove
ImageList_DragEnter
ImageList_Read
ImageList_Destroy
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Write
ImageList_Create

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5ee7051539480865e076cf9784760c0

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

gdi32

ole32

user32

comctl32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 60KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 60KB

.rsrc
Size: 3KB - Virtual size: 3KB