7008c1b3a3512b7f13a31b853587ad58

Sharing

Copy URL Twitter E-mail

General

Target

7008c1b3a3512b7f13a31b853587ad58
Size

112KB
MD5

7008c1b3a3512b7f13a31b853587ad58
SHA1

598a2f5128b96c4ac46b5eee102bc7665362de6e
SHA256

967157856348e2b3199023cac3591502108449e0c9ad27d6d8b73db01555d7d0
SHA512

e33296224c897278a3c03b674cd30dbf12900638f51923609aa29218d3cf97a69bcfbafe070aa8b7bf7c66d76521c30753120beb2220abce0095c8cd4ec16683
SSDEEP

1536:sNhtcIbbyzrPM2EIb087rYjKQd9kwRKX05bIBkzIPwglEVdmm7BxjVKVcXR9/:sDtcyyRGjKQkkKkJIBigwggB7BJ//

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7008c1b3a3512b7f13a31b853587ad58

Files

7008c1b3a3512b7f13a31b853587ad58
.exe windows:4 windows x86 arch:x86

b47c45ff8d62e2402cc3561d0115a70f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

LoadCursorA
DialogBoxParamA
CreateIcon
DrawTextA
DrawTextW
EndDialog
CloseWindow
GetMenu
DrawIconEx
GetCursor
CopyRect
DialogBoxParamW
IsWindow
LoadMenuA

kernel32

GetComputerNameA
OpenFileMappingA
OpenFile
GetFileTime
DeleteFileA
Sleep
CreateThread
GetConsoleMode
ReadConsoleA
ReadFile
GetLastError
GlobalFree
CreateProcessA
SetLastError
DeleteAtom
GetFileSize
WriteFile
GetStdHandle
GetCommandLineA
DeleteFileW
FindAtomA
GetCPInfo
ExitThread

advapi32

RegCreateKeyW
RegQueryValueA
RegDeleteValueW
RegOpenKeyW
RegCreateKeyExA
RegQueryValueW
RegEnumKeyExA
RegSetValueA
RegEnumKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegEnumKeyA
RegOpenKeyA
RegDeleteValueA
RegSetValueW
RegEnumKeyW

comctl32

CreateToolbar
ImageList_GetIconSize
DllGetVersion
ImageList_EndDrag
DrawStatusText
ImageList_Destroy
CreateStatusWindow
ImageList_Copy
ImageList_DragEnter
ImageList_AddIcon
ImageList_GetIcon
ImageList_Add
ImageList_Create

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 60KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 47B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 255B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b47c45ff8d62e2402cc3561d0115a70f

Headers

File Characteristics

Imports

user32

kernel32

advapi32

comctl32

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 59KB - Virtual size: 58KB

.bbs Size: - Virtual size: 60KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 47B

.rdata Size: 512B - Virtual size: 255B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 59KB - Virtual size: 58KB

.bbs
Size: - Virtual size: 60KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 47B

.rdata
Size: 512B - Virtual size: 255B

.rsrc
Size: 1024B - Virtual size: 516B