7a61f78056e65a5e39197ec2689d6199

General

Target

7a61f78056e65a5e39197ec2689d6199
Size

1.4MB
MD5

7a61f78056e65a5e39197ec2689d6199
SHA1

df9df47c06deb633d647d8747db39ef09c4f1c24
SHA256

e31a487f2fe234c6ec1c09d8b5b5d6a8bd79082f98932c2f3b0fe6722db71263
SHA512

6abc7a4498d23f60d0c2fc37d3ae6ba0b7d1b96333e285b3eef8ea382e55191da8d5f70cc316bc0975ee0caded3cb7259a14a816bf9fb7799c34ec65948af862
SSDEEP

12288:MIdw9+RPncxP5r85tZNrw7Q2pCJis3FzaF3LoZWJonDeyPgPV6L:8+OP5rutZO7QRxaZLoZWJi8PV6L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a61f78056e65a5e39197ec2689d6199

Files

7a61f78056e65a5e39197ec2689d6199
.exe windows:4 windows x86 arch:x86

e4c4d8af6081760a3ca2b4fa7a372e4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
SendMessageA
SetTimer
KillTimer
DestroyWindow
PeekMessageA
PostQuitMessage
DefWindowProcA
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
GetDC
GetMessageA
TranslateMessage
DispatchMessageA

gdi32

TextOutA
SetBkMode

comctl32

ord17

kernel32

GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
VirtualQuery
GetStringTypeW
RtlUnwind
HeapReAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
GetLocaleInfoA
GetSystemInfo
VirtualProtect
InterlockedExchange
TerminateProcess
CloseHandle
GetFileSize
CreateFileA
GetModuleHandleA
SearchPathA
GetCommandLineA
GetVersion
VirtualFree
WriteFile
ReadFile
SetFilePointer
VirtualAlloc
DeviceIoControl
GetStartupInfoA
GetVersionExA
ExitProcess
GetProcAddress
GetCurrentProcess
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4c4d8af6081760a3ca2b4fa7a372e4f

Headers

File Characteristics

Imports

user32

gdi32

comctl32

kernel32

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 928B

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 928B