077b9d5114f07b5203607fe268b79a83

Sharing

Copy URL Twitter E-mail

General

Target

077b9d5114f07b5203607fe268b79a83
Size

43KB
MD5

077b9d5114f07b5203607fe268b79a83
SHA1

06c838855c95e17f5adefa95d28602a11f8187e0
SHA256

0f77dd05f3fa632ee5934361d80ac00619320ed5eefecd2ca70e1c0a0c072033
SHA512

0f09ce0d79c54aa22eb10ff65f2175a34b1a3535947e6c34f6a0bb6946445164204c1b9ed20054c0b805ba386abb5947319282082380e2eeb1095e24ea02bd6b
SSDEEP

768:VNaZVWcOcUAhyKzvFWaE+CpabYykLB19PBQwK6oCppGSnwpTbXZ2kg:ybWcOVKcV+DY/paCp/nOTbXZ2kg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077b9d5114f07b5203607fe268b79a83

Files

077b9d5114f07b5203607fe268b79a83
.exe windows:4 windows x86 arch:x86

35f7576782ab440cb39cd7a526ad2229

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA

ole32

SetErrorInfo
CreateBindCtx
CoTaskMemAlloc
CoCreateInstance

advapi32

RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA
RegDeleteValueA

kernel32

GetEnvironmentStringsW
GetCommandLineA
GetModuleFileNameA
SetHandleCount
ExitProcess
FreeLibrary
lstrlenW
DeleteCriticalSection
WriteFile
InterlockedDecrement
LoadResource
WideCharToMultiByte
SetLastError
GetCurrentProcess
IsBadReadPtr
TlsGetValue
GetShortPathNameA
LoadLibraryExA
DisableThreadLibraryCalls
HeapCreate
IsBadCodePtr
LoadLibraryA
VirtualAlloc
RtlUnwind
TlsAlloc
lstrcatA
IsDBCSLeadByte
GetCPInfo
GetStdHandle
GetStringTypeA
GetModuleHandleA
GetCurrentThreadId
GetOEMCP
lstrcmpiA
FindResourceA
HeapReAlloc
TerminateProcess
IsBadWritePtr
InterlockedIncrement
FreeEnvironmentStringsW
LeaveCriticalSection
GetProcAddress
GetCurrentThread
SizeofResource
SetConsoleCtrlHandler
HeapFree
lstrcpynA
VirtualFree
LCMapStringA
GetStartupInfoA
EnterCriticalSection
HeapDestroy
GetVersion
GetACP
GetFileType
LCMapStringW
TlsFree
lstrcpyA
TlsSetValue
InitializeCriticalSection
GetLastError
GetEnvironmentStrings
MultiByteToWideChar
FatalAppExitA
lstrlenA
GetStringTypeW
HeapAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA

cmdial32

AutoDialFunc

Sections

.text
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

35f7576782ab440cb39cd7a526ad2229

Headers

File Characteristics

Imports

user32

ole32

advapi32

kernel32

cmdial32

Sections

.text Size: 512B - Virtual size: 416B

.rsrc Size: 29KB - Virtual size: 29KB

.idata Size: 3KB - Virtual size: 3KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: - Virtual size: 1.3MB

.text
Size: 512B - Virtual size: 416B

.rsrc
Size: 29KB - Virtual size: 29KB

.idata
Size: 3KB - Virtual size: 3KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: - Virtual size: 1.3MB