07b40ef4bcc97899ca6ec82da0ef2d1d

General

Target

07b40ef4bcc97899ca6ec82da0ef2d1d
Size

183KB
MD5

07b40ef4bcc97899ca6ec82da0ef2d1d
SHA1

05f7721964dfc8310f0c555a4fbf5486d92e0baa
SHA256

aa2092839472e25bf06b8b51f54b1fd8fa4d3dc3a7343dd2422761bd3248ab43
SHA512

a85818b3baddb42ace343d6b8c63710b0479730e1e465d0ebcd71c6f10d7f20b4d48deed24355f1f567c4ef5bf10c6498758138f67c1372ecdaeec9630f9c08d
SSDEEP

3072:paAlSXgF2Pj32tPYmjdwZGqiOILFvtG277+mtYzc2MJNyZ3BT8e/vOjaVvy1Vp8P:pa/Qx1bZwZsLZP7CCYRyyZxT8vjaS8CO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07b40ef4bcc97899ca6ec82da0ef2d1d

Files

07b40ef4bcc97899ca6ec82da0ef2d1d
.exe windows:4 windows x86 arch:x86

f8c21a07c893221bd38d3610b24af988

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

CharNextA
wsprintfW
MonitorFromWindow
CharNextW

psapi

GetProcessMemoryInfo

msvfw32

ICInfo

kernel32

GetFileAttributesW
GetOEMCP
DeleteFileW
lstrlenA
CreateFiberEx
ReadFile
GetFileAttributesA
FindClose
SetFileAttributesW
EscapeCommFunction
EndUpdateResourceW
GetFullPathNameA
RemoveDirectoryA
AreFileApisANSI
CopyFileA
CreateDirectoryW
EnumResourceNamesW
LoadLibraryExW
DebugBreak
CopyFileW
UpdateResourceW
FatalExit
FreeLibrary
BeginUpdateResourceW
GetFullPathNameW
LoadLibraryExA
DeleteFileA
SetFileAttributesA
CreateDirectoryA
OutputDebugStringA
RemoveDirectoryW
GetFileInformationByHandle

imagehlp

ImageRvaToVa
ImageGetDigestStream
ImageNtHeader
ImageDirectoryEntryToData

shell32

CommandLineToArgvW

advapi32

CryptCreateHash
CryptReleaseContext
CryptGetHashParam
CryptAcquireContextA
CryptHashData
CryptDestroyHash

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8c21a07c893221bd38d3610b24af988

Headers

File Characteristics

Imports

user32

psapi

msvfw32

kernel32

imagehlp

shell32

advapi32

Sections

.text Size: 157KB - Virtual size: 157KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 22KB - Virtual size: 21KB

.lib Size: 512B - Virtual size: 76KB

.text
Size: 157KB - Virtual size: 157KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 22KB - Virtual size: 21KB

.lib
Size: 512B - Virtual size: 76KB