7c98b4da2c634da5cdcc49cccafd7233

General

Target

7c98b4da2c634da5cdcc49cccafd7233
Size

10KB
MD5

7c98b4da2c634da5cdcc49cccafd7233
SHA1

b4ce3b9690481163b9ada80254e47b50cae0ff83
SHA256

6da97609a7bcce73988b5cfd18883a91db92b9ac8a30fdab7cccfe43db1c8c5a
SHA512

b5fd94ed03e4f886b83c5abae5700832224fe32876598847ca019d0dec772102f1fbd425d1cc38d5d408d018043a5c05629b6f629e865dea7b14845202e97132
SSDEEP

192:LN85qLrDT5TaNZ9dPvQ3kXVNhpwWmoQi+YDctWds1kaPtdIsNFAdYIpvKT1o:JY8f5Fkldwl2D2csPIs4Uo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c98b4da2c634da5cdcc49cccafd7233

Files

7c98b4da2c634da5cdcc49cccafd7233
.exe windows:4 windows x86 arch:x86

ff3e895e6f0bd47f8fb2f12777f58769

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsA
CancelIo
CreateFileW
EscapeCommFunction
ExitProcess
FreeEnvironmentStringsW
FreeLibraryAndExitThread
GetCurrencyFormatW
GetDiskFreeSpaceExA
GetFileSize
GetModuleFileNameA
GetPrivateProfileIntA
GetProcessAffinityMask
GetQueuedCompletionStatus
HeapSize
IsBadCodePtr
IsDebuggerPresent
IsSystemResumeAutomatic
LoadResource
MoveFileExW
ResumeThread
RtlUnwind
SetLocaleInfoA
VerLanguageNameA
WriteConsoleInputA

user32

ClientToScreen
CreateAcceleratorTableA
DdeQueryNextServer
EnumDesktopsW
FlashWindowEx
FrameRect
GetClipboardViewer
GetDesktopWindow
GetMenuStringW
GetMessagePos
GetPropA
GetWindowRect
GetWindowRgn
GetWindowTextW
IMPGetIMEA
IsCharAlphaNumericA
IsDialogMessageA
NotifyWinEvent
SetDlgItemTextW
WINNLSGetIMEHotkey

gdi32

CreateColorSpaceA
CreateHatchBrush
CreatePatternBrush
EnumFontFamiliesExW
EnumFontsW
EnumICMProfilesA
ExcludeClipRect
ExtFloodFill
FixBrushOrgEx
GetAspectRatioFilterEx
GetBkColor
GetCharWidthFloatA
GetEnhMetaFilePaletteEntries
GetLogColorSpaceW
GetPath
GetTextExtentPointW
MaskBlt
OffsetWindowOrgEx
PatBlt
PlayEnhMetaFile
PolyTextOutA
Rectangle
ResetDCW
SetBrushOrgEx
SetMiterLimit
SetStretchBltMode
SetWindowExtEx
SetWorldTransform

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ff3e895e6f0bd47f8fb2f12777f58769

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 8KB - Virtual size: 20KB

.rdata Size: - Virtual size: 4KB

.rsrc Size: - Virtual size: 36KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 20KB

.rdata
Size: - Virtual size: 4KB

.rsrc
Size: - Virtual size: 36KB