207bf147572e33493e2b8b2738c871fa

General

Target

207bf147572e33493e2b8b2738c871fa
Size

171KB
MD5

207bf147572e33493e2b8b2738c871fa
SHA1

3fc1ae5412ca7f0258d2a581546051b2ab4e387d
SHA256

2b574cfa91ba769040767beb99f785db1d64740c00bcccff8fb38f3848be303c
SHA512

81a691eae5371974b10c1ccf7618579f196598b8d36999558b5d66437302733499c89d156b701c631b6be00d0517f3d0ec9031cae3720bf212b79b2988815173
SSDEEP

3072:J1+xDWxZXIXqwmgtjnkImtzrJcMLV+7G7368CRw2OSYe6U7G3H:J1+cTX6jkvzrNyKNCRw2DYePi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
207bf147572e33493e2b8b2738c871fa

Files

207bf147572e33493e2b8b2738c871fa
.exe windows:5 windows x86 arch:x86

a2cb55a0ef4e7c8db05cc02e226e267d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontIndirectW
SetDIBits
CreatePalette
GetTextAlign
SetWindowOrgEx
TextOutW
GetWindowOrgEx
AddFontResourceW

user32

GetDialogBaseUnits
CharNextA
OemToCharA
TabbedTextOutW
KillTimer
GetClassLongA
SetActiveWindow
MenuItemFromPoint
GetPropW
RegisterHotKey
GetWindowTextW
GetMenu
GetWindow
LoadCursorW

kernel32

GetSystemDefaultLCID
GetThreadLocale
GetTickCount
GetModuleHandleW
FlushFileBuffers
GlobalFlags
CreateEventW
ReadFile
EscapeCommFunction
GetModuleHandleA
GetProcAddress
CancelWaitableTimer
CloseHandle
GetCommProperties
GetModuleFileNameW

Exports

Exports

?BeoPhSsaT@@YGXPADF@Z
?kheDvYQamYlsuyuJn@@YGPAJM@Z
?mgNDbRcnaGuIktq@@YGPAFPAMI@Z
?qfBdbappripXyB@@YGXJG@Z
?eupshwsdwtGzearavbx@@YGMIPAJ@Z

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 245B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2cb55a0ef4e7c8db05cc02e226e267d

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

.data Size: 2KB - Virtual size: 86KB

.edata Size: 512B - Virtual size: 245B

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 145KB - Virtual size: 145KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 16KB - Virtual size: 16KB

.data
Size: 2KB - Virtual size: 86KB

.edata
Size: 512B - Virtual size: 245B

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 145KB - Virtual size: 145KB

.reloc
Size: 2KB - Virtual size: 1KB