07615ae1ea51b0447f6d89eed1403034

Sharing

Copy URL Twitter E-mail

General

Target

07615ae1ea51b0447f6d89eed1403034
Size

84KB
MD5

07615ae1ea51b0447f6d89eed1403034
SHA1

a4a391e616c455f4f87d15be752c1b4c515c2c66
SHA256

781c8d7e87d02602e5ed58449ef526350577b45eec40b04556c18644c9f43f7b
SHA512

ca912f368cad045238053b8502a0b2e549250d4a0becfe731d46fcfe56bdccde144aa07fda6bb12a1144024c9646c1fafc51ae5001913abf9f846cd1e77623ee
SSDEEP

1536:Imz7sCD5seS+2YO19DZsemqAhwwMVOFZdN7EwDp1S:I+7pd2PZsfqAPNzdN7LFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07615ae1ea51b0447f6d89eed1403034

Files

07615ae1ea51b0447f6d89eed1403034
.exe windows:4 windows x86 arch:x86

bc7cf5e424eb09567b9698bc4c3080f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyA
RegLoadKeyW
RegReplaceKeyW
RegEnumKeyExW
RegCreateKeyW
RegEnumValueW
RegCreateKeyExA
RegFlushKey
RegEnumValueA
RegOpenKeyExA
RegQueryInfoKeyW
RegDeleteKeyA
RegLoadKeyA
RegQueryValueW
RegOpenKeyW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueA

kernel32

SetLastError
GetCommandLineA
GetFileType
lstrcpynA
HeapFree
GetFileAttributesA
GlobalFree
GetCPInfo
GetFileSize
GetModuleHandleA
lstrcpyA
WideCharToMultiByte
lstrlenA
Sleep
lstrcatA
GetStringTypeA
GetLastError
lstrcmpA
GetStdHandle
HeapAlloc

gdi32

AddFontResourceTracking
AbortPath
AddFontResourceExA
GetDCOrgEx
AddFontMemResourceEx
SetTextColor
AddFontResourceW
DeleteDC
CloseMetaFile
GetBrushOrgEx
CancelDC
CopyMetaFileA
AddFontResourceA
GetPixel
BitBlt
GetClipBox
GetBitmapBits

user32

AppendMenuW
CopyImage
AlignRects
IsWindow
CalcMenuBar
DialogBoxParamW
GetCursor
GetWindowTextA
DrawIconEx
DialogBoxParamA
IsMenu
GetDC
DrawTextA
DrawIcon
GetWindowTextLengthA
AppendMenuA
CopyIcon
GetFocus
LoadCursorA
CopyRect

comctl32

ImageList_LoadImageA
ImageList_Destroy
ImageList_Copy
ImageList_DragEnter
ImageList_Create
ImageList_GetIcon
ImageList_Remove
ImageList_LoadImage
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageRect
InitCommonControls
ImageList_AddMasked
ImageList_Draw
ImageList_DragShowNolock
ImageList_GetImageInfo

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc7cf5e424eb09567b9698bc4c3080f8

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.data Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 80KB

.rsrc Size: 4KB - Virtual size: 956B

.text
Size: 8KB - Virtual size: 4KB

.data
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 80KB

.rsrc
Size: 4KB - Virtual size: 956B