7d26c7f8364be694a2b9fa6f72054515

Sharing

Copy URL

Twitter E-mail

General

Target

7d26c7f8364be694a2b9fa6f72054515
Size

245KB
MD5

7d26c7f8364be694a2b9fa6f72054515
SHA1

c8e517041c445c8e626938dbef352376144d7c83
SHA256

e3f48b38efc41515b7da119909f148508cae7b1987c443acf12785b8a65f80c0
SHA512

28b070e63575e6ea082232e485a5073b372542996a8cbb29e960445d2ce6e8e55981386feedbbd57302e561b80082d5809b3c0705f7c43507779ddf72a4bf62f
SSDEEP

3072:qE3+Gu1kqx1AHAddocitKe6WNYsJBr4O7GVbxgzZsT2YdCzIf9tdTF:qE3+GumWdu7KW3JiOiVd4KcY9td

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d26c7f8364be694a2b9fa6f72054515

Files

7d26c7f8364be694a2b9fa6f72054515
.exe windows:5 windows x86 arch:x86

4bcff8aa6ce3877bcf8ccd9636a0ce12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

imagehlp

ImageDirectoryEntryToDataEx

comdlg32

GetFileTitleW

user32

LoadImageW
KillTimer
RegisterHotKey
SetActiveWindow
IsWindow
GetSysColor
GetClassInfoA
GetClipboardData
SendDlgItemMessageW
BeginPaint
ShowWindow
LoadImageA
InvalidateRect
SetWindowsHookExA
SetClassLongW
ShowCursor
SetRectEmpty
CreateWindowExW
DestroyWindow
PostMessageA
LockWorkStation
GetMessageW
CloseDesktop
TranslateMessage
TranslateAcceleratorA
DdeSetQualityOfService
OemToCharBuffA
RedrawWindow
GetFocus
CallNextHookEx
DispatchMessageW
IsWindowVisible
EndPaint
TrackPopupMenuEx
SubtractRect
TileWindows
CallWindowProcW
IsDlgButtonChecked

dbghelp

SymGetModuleInfo64

kernel32

GetTickCount
GetExitCodeThread
OutputDebugStringA
InterlockedExchange
SetProcessShutdownParameters
ScrollConsoleScreenBufferA
GetSystemDefaultLCID
WaitForDebugEvent
FreeLibrary
SetConsoleCursorInfo
GetComputerNameExW
DuplicateHandle
GetConsoleInputWaitHandle
DosDateTimeToFileTime
GetCPInfo
GetStartupInfoA
SizeofResource
GetThreadTimes
WaitNamedPipeW
CreateHardLinkW
MoveFileA
GetModuleHandleExA
CreateDirectoryA
GlobalReAlloc
SearchPathA
OpenEventA
FormatMessageW
CreateMutexA
GetDiskFreeSpaceExA
GetFileAttributesA
SystemTimeToFileTime
UnregisterWaitEx
SuspendThread
SetEndOfFile
GetLocalTime
GetACP
GetConsoleCommandHistoryW
FoldStringW
VirtualAlloc
ScrollConsoleScreenBufferW
WritePrivateProfileStringA
WaitForSingleObject
GetModuleHandleExW
TransactNamedPipe
LoadLibraryA
ReleaseMutex
CompareStringW
HeapAlloc

msvcrt

_vsnprintf
toupper
fgetwc
strtol
perror
memmove
fopen

gdi32

GetObjectA
CreateFontW
ResetDCA
CreateCompatibleDC
SelectObject
DeleteObject
UpdateColors

Exports

Exports

?DeleteFlag@@YGHKK@Z
UiQSfgunJxla@8
?GetWinInfo@@YGHK@Z
OhkUjjjekjvbys@8
ZsnJolbEpcdgL@12

Sections

.code
Size: - Virtual size: 259KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.base
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

GLOBAL
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 614B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bcff8aa6ce3877bcf8ccd9636a0ce12

Headers

File Characteristics

Imports

imagehlp

comdlg32

user32

dbghelp

kernel32

msvcrt

gdi32

Exports

Exports

Sections

.code Size: - Virtual size: 259KB

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 3KB - Virtual size: 3KB

.base Size: 1KB - Virtual size: 1KB

.data Size: - Virtual size: 4B

GLOBAL Size: 1024B - Virtual size: 656B

.rsrc Size: 229KB - Virtual size: 229KB

.reloc Size: 1024B - Virtual size: 614B

.code
Size: - Virtual size: 259KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 3KB - Virtual size: 3KB

.base
Size: 1KB - Virtual size: 1KB

.data
Size: - Virtual size: 4B

GLOBAL
Size: 1024B - Virtual size: 656B

.rsrc
Size: 229KB - Virtual size: 229KB

.reloc
Size: 1024B - Virtual size: 614B