7d7fed5f46ec28cc53b5169af07e4855

Sharing

Copy URL Twitter E-mail

General

Target

7d7fed5f46ec28cc53b5169af07e4855
Size

73KB
MD5

7d7fed5f46ec28cc53b5169af07e4855
SHA1

055afe8b397f36ad23160e94702a635696e2a18d
SHA256

77fa93f650cbad4d87bd5582dd0f83b265d32b0410c0eb5920e411954b11b1ac
SHA512

b09477c8c583a7016169884427a0499316f800876bed36eebaff15c5491326f177b7967e17a814053963b91f015e678627a1fc104a6e13f7b0ec5143a6eb340c
SSDEEP

1536:3dumD1jUAQ4c/t3VB/F+P7pYdYtngxoBaBvaq2S9TDjRq:Qj99nF2VtnVaB1tTD1q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7d7fed5f46ec28cc53b5169af07e4855

Files

7d7fed5f46ec28cc53b5169af07e4855
.exe windows:4 windows x86 arch:x86

ca3a28bc74281c1ef3173cdcdb999920

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalReAlloc
VirtualProtect
ConvertThreadToFiber
FileTimeToLocalFileTime
VirtualAlloc
GetLastError
LocalLock
GetModuleHandleW
DisableThreadLibraryCalls
EnumResourceTypesA
GetModuleHandleA
LoadLibraryA
GetModuleHandleA
GetCurrentDirectoryA
UnlockFileEx
GetTempFileNameA
GetFullPathNameA
LocalHandle
GetFullPathNameW
ExitProcess
OutputDebugStringA

msvcrt

_spawnlpe
isspace
memcpy
_wcsupr
__p___winitenv
isprint
__CxxLongjmpUnwind
sprintf
_get_osfhandle
isalnum
_mbscspn
_endthread
strncmp
ispunct
wprintf
_mbsrev
isleadbyte
_CIlog
_mbctokata
time
isupper
abs
_wfopen
iswascii
_setmbcp
strlen
malloc
getc

user32

IsDialogMessageW
LoadStringW
SetClassLongW
FindWindowW
GetAncestor
MapWindowPoints
LoadStringA
EqualRect
PostQuitMessage
DestroyWindow
LookupIconIdFromDirectory
LoadStringW
ModifyMenuA
SetWindowPos
GetNextDlgTabItem
GetClassNameW
EmptyClipboard
SetFocus
SetCursor

gdi32

SetBkMode
LineTo
CreateFontIndirectW
GetTextExtentExPointW
SetViewportExtEx
GetObjectW
SetTextColor
CreateRectRgn

opengl32

wglCreateLayerContext
glReadPixels
GlmfPlayGlsRecord
wglMakeCurrent
glGetFloatv
glTexCoord1i
wglGetLayerPaletteEntries
glTexCoord4iv
glMatrixMode
glTexParameteriv
glTexCoord2f
glLoadMatrixd
glLightModelfv
glGetTexGenfv
glAccum
glMapGrid2d
glMap2d

Exports

Exports

Kfldwc
ZmTxgoeBiitf
FjbXobgypXdntahvNh
YiqesVkidcWi
MukzpweOmjxirEoi

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca3a28bc74281c1ef3173cdcdb999920

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 26KB - Virtual size: 26KB

.reloc Size: 512B - Virtual size: 484B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 26KB - Virtual size: 26KB

.reloc
Size: 512B - Virtual size: 484B