7474a569eb3eec5e65a6f722834b9a02

Sharing

Copy URL

Twitter E-mail

General

Target

7474a569eb3eec5e65a6f722834b9a02
Size

134KB
MD5

7474a569eb3eec5e65a6f722834b9a02
SHA1

ede9659bf35066e299706dc875240916b633812c
SHA256

e441c6eaaf3a49be7b69d1953062b17cacf8fb8b17282ace74c7a978adea4f94
SHA512

c1b6ff5d7dd266f085aae029cf0fb2c50c5dfcdd2ef8c49c915d00c63566c7159e85525a1c184fd4e4101d89e70d7523e0c4499185815c0dfb6b277a63827756
SSDEEP

3072:awqfndUvoU7EDDrTMOY3loWZgL3KcO7FILQCO6SjhC2lEgC53Ui23:awAUQU7EHrU3lop3KcQIS6oCyC5kr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7474a569eb3eec5e65a6f722834b9a02

Files

7474a569eb3eec5e65a6f722834b9a02
.dll windows:4 windows x86 arch:x86

cb0631f6944774b7c506e8dc01367c9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ExitWindowsEx

gdi32

DeleteObject

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CreateStreamOnHGlobal

ws2_32

listen

shlwapi

StrCmpW

psapi

GetModuleFileNameExA

imm32

ImmReleaseContext

avicap32

capCreateCaptureWindowA

winmm

waveInUnprepareHeader

msvcrt

malloc

kernel32

lstrcatW
GetModuleHandleA
GetProcAddress
VirtualProtect

Exports

Exports

DoMainWork
DoService
ServiceMain

Sections

��
Size: - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�e��
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�[��
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�X��
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�[��
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�h��
Size: - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

�Z��
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb0631f6944774b7c506e8dc01367c9d

Headers

File Characteristics

Imports

user32

gdi32

advapi32

shell32

ole32

ws2_32

shlwapi

psapi

imm32

avicap32

winmm

msvcrt

kernel32

Exports

Exports

Sections

��� Size: - Virtual size: 66KB

�e�� Size: - Virtual size: 7KB

�[�� Size: - Virtual size: 2KB

�X�� Size: - Virtual size: 4KB

�[�� Size: - Virtual size: 3KB

�h�� Size: - Virtual size: 78KB

�Z�� Size: 125KB - Virtual size: 124KB

��� Size: 512B - Virtual size: 180B

��
Size: - Virtual size: 66KB

�e��
Size: - Virtual size: 7KB

�[��
Size: - Virtual size: 2KB

�X��
Size: - Virtual size: 4KB

�[��
Size: - Virtual size: 3KB

�h��
Size: - Virtual size: 78KB

�Z��
Size: 125KB - Virtual size: 124KB

��
Size: 512B - Virtual size: 180B