573cf21b7882bb43aa8d5bffeb4814cf

Sharing

Copy URL

Twitter E-mail

General

Target

573cf21b7882bb43aa8d5bffeb4814cf
Size

140KB
MD5

573cf21b7882bb43aa8d5bffeb4814cf
SHA1

5c4421f6758c4527bd784745d42730106ba235c3
SHA256

57bde93c80b9b52ad5a9510c40ce5c3c0af786381945151463d32039585ceddd
SHA512

6842700a4d3f15e1fefa7e75295d4a8ec82cfd484ff8f67311b86ecb8677a2f32122333e592b9be6af13f9f85b1bf33d2ff06bfe85d32784109ac87102e12719
SSDEEP

3072:o0gRSy11/9kakrDWyQGryO0XIP2kH0DlPKN2xidkb/5QvCVI4xO:o0gZPkbQuHHMlPKgoq/5QyrxO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Restaurant.Express.Professional.v3.2.143.GERMAN.WinALL.Cracked-DVT/Crack/PATCH.EXE

Files

573cf21b7882bb43aa8d5bffeb4814cf
.zip
Restaurant.Express.Professional.v3.2.143.GERMAN.WinALL.Cracked-DVT/Crack/PATCH.EXE
.exe windows:5 windows x86 arch:x86

76e97f9b64ce763a7ae09d94031bf7d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

ChrCmpIA
PathUndecorateA
StrPBrkA
StrFormatKBSizeW
PathCombineW

shell32

ord716

kernel32

GetStartupInfoW
VerifyVersionInfoW
CreateSemaphoreW
GetCommMask
SetMessageWaitingIndicator
WriteProfileStringW
CloseHandle
TlsFree
UnlockFile
FileTimeToDosDateTime
DefineDosDeviceW
BackupWrite
LoadLibraryExW
CreateFiber
lstrcpyA
OpenMutexA
LoadLibraryA
GetNamedPipeInfo
OpenSemaphoreA
CancelTimerQueueTimer

user32

TranslateAcceleratorW
CheckMenuItem
LoadCursorA
ScrollWindowEx
ReleaseCapture
WindowFromDC
IsCharLowerW
CheckDlgButton
DlgDirSelectComboBoxExW
EndDialog
ChangeDisplaySettingsExA
GetDC
CreateIconIndirect
GetMenuCheckMarkDimensions
DrawTextExW
GetClipCursor
TrackPopupMenu
DestroyAcceleratorTable
GetClassNameA
SetWindowPlacement
WaitForInputIdle
wsprintfA
GetTabbedTextExtentW
SendMessageA
SetSysColors
LoadMenuW
PeekMessageW
DrawStateW
GetRawInputDeviceInfoA
RedrawWindow
SetMenuContextHelpId
ClipCursor
DispatchMessageA
HiliteMenuItem
SetCaretPos
GetPropW
GetMessagePos
ToUnicodeEx
GetWindow
GetWindowTextLengthA

gdi32

GetPixel
SetPixelV
GetCurrentPositionEx
CreateBrushIndirect
CreatePolygonRgn
AddFontResourceExA
GetCharWidthFloatA
GetTextExtentPoint32A
BitBlt
GetEnhMetaFileBits
EndPath
SetTextJustification
SetBitmapDimensionEx
RoundRect

advapi32

FindFirstFreeAce
AreAnyAccessesGranted
AddAccessAllowedAce
CloseEventLog

Exports

Exports

__SetWindowTextW@12

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memo0
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c_mem
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datse
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Restaurant.Express.Professional.v3.2.143.GERMAN.WinALL.Cracked-DVT/dvt.nfo
Restaurant.Express.Professional.v3.2.143.GERMAN.WinALL.Cracked-DVT/file_id.diz

Sharing

General

Malware Config

Signatures

Files

76e97f9b64ce763a7ae09d94031bf7d2

Headers

File Characteristics

Imports

shlwapi

shell32

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.exdata Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 388B

.memo0 Size: 512B - Virtual size: 92B

.c_mem Size: 3KB - Virtual size: 2KB

.datse Size: 1024B - Virtual size: 612B

.rsrc Size: 127KB - Virtual size: 126KB

.reloc Size: 1024B - Virtual size: 948B

.text
Size: 10KB - Virtual size: 9KB

.exdata
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 388B

.memo0
Size: 512B - Virtual size: 92B

.c_mem
Size: 3KB - Virtual size: 2KB

.datse
Size: 1024B - Virtual size: 612B

.rsrc
Size: 127KB - Virtual size: 126KB

.reloc
Size: 1024B - Virtual size: 948B