7bffaa8f2c57681181e0d36a67469995

Sharing

Copy URL Twitter E-mail

General

Target

7bffaa8f2c57681181e0d36a67469995
Size

98KB
MD5

7bffaa8f2c57681181e0d36a67469995
SHA1

bd8b1a3c816c536c7a81dc9fd0d3c738e809f258
SHA256

1fbc76260d4d69216023a359566a52247725426099f04cf8ed147d051b4ffec1
SHA512

b0a30191da2c053fcccf67e75efb5315b49630fd55cccea690fe2de3f187a055a1027e3e9f9dad22244e2c722f21c9ebde7f91383ba3aec41f40629864bf76e5
SSDEEP

1536:sFKMz7PqF9uUEsdhzvlo3Yh/9AYkLq+XJATNEbuKvtotr:sF3TqF9uUEoZoIh/9W5ABTKvtotr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7bffaa8f2c57681181e0d36a67469995

Files

7bffaa8f2c57681181e0d36a67469995
.exe windows:5 windows x86 arch:x86

f154b8f39109b2ba81f2c28f4163121a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueW

comctl32

ImageList_Destroy
ImageList_ReplaceIcon
ImageList_Create
ImageList_AddMasked
CreateStatusWindowA
DestroyPropertySheetPage

advapi32

RegOpenKeyW
InitializeAcl
RegDeleteValueW

kernel32

GetFileTime
ExitProcess
VirtualAlloc

msvcrt

_except_handler3
wprintf
isxdigit
towlower
_itow
wcscpy
wcscmp
_osver
_fullpath
_mbscmp
__p__commode
_fileno
_sopen
div
_mbsnbcpy
fseek
time
_write
isalnum
__setusermatherr
_lock

gdi32

CreateDIBSection
CreateBitmapIndirect
SetLayout
ExtTextOutA
GetDCOrgEx
LineTo
GetDIBits
SetROP2
PlayMetaFileRecord
SelectPalette
GetBitmapBits
GetPixel
EndDoc
EnumMetaFile
FillRgn
GetRgnBox
GetDeviceCaps
CreateDCW
GetPaletteEntries
ExtTextOutW
EndPage
OffsetRgn
CreateFontIndirectA
GetObjectType
CreateSolidBrush
GetNearestColor
SetWindowExtEx
GetObjectW
SetViewportOrgEx
GetTextColor
DeleteDC
GetTextExtentPointA
GetCurrentObject
PolyBezierTo
CreateBrushIndirect
CreatePalette
SetWinMetaFileBits
StartDocA
TextOutA
CreateMetaFileW
DeleteEnhMetaFile
GetEnhMetaFileBits
GetBkMode
OffsetViewportOrgEx
GetTextExtentPoint32W
AngleArc
BitBlt

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 31KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f154b8f39109b2ba81f2c28f4163121a

Headers

File Characteristics

Imports

version

comctl32

advapi32

kernel32

msvcrt

gdi32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 31KB - Virtual size: 77KB

.idata Size: 14KB - Virtual size: 32KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 31KB - Virtual size: 77KB

.idata
Size: 14KB - Virtual size: 32KB

.rsrc
Size: 20KB - Virtual size: 19KB